Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

bpp: replay issues between ed25519 and FEC layer #197

Open
pesco opened this issue Aug 8, 2017 · 0 comments
Open

bpp: replay issues between ed25519 and FEC layer #197

pesco opened this issue Aug 8, 2017 · 0 comments
Assignees
@Spritetm

Comments

@pesco
Copy link

pesco commented Aug 8, 2017

The authenticated message layer (ed25519) does not provide a proper secure channel. In particular, replay protection is left to the sequence numbering at the FEC layer. These sequence numbers, however, reset with the special "serial=0" packet which is used to change encoding parameters. This allows an attacker to replay older packets and confuse the update process in various ways.

For example, it implies that an erasure code is used on something that is not an erasure channel (where bits are only detectably dropped). Without further authentication, this allows an attacker to corrupt the firmware image during download by injecting an earlier packet with an appropriate sequence number.

In addition, since the code accepts any packet with a sequence number greater than the last, replaying an old high-numbered packet allows an attacker to cheaply block out the following legitimate packets.

Relatedly, a missed "serial=0" packet will leave a client decoder in a confused state until another "serial=0" is received.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@Spritetm Spritetm

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@pesco @Spritetm