VERY interesting - but security implications to others?!?
Posted Feb 3, 2006 18:57 UTC (Fri) by caitlinbestler
In reply to: VERY interesting - but security implications to others?!?
Parent article: Van Jacobson's network channels
The same filter rules that route inbound packets
can be used to validate outbound packets. You
simply do not accept packets from a channel if
the response packet would not be routed to
the matching channel.
So the privileged end of the channel can validate
that every packet on it is for a TCP connection
that is actually assigned to that channel.
to post comments)