[noise] DoS *is* a problem
Jason A. Donenfeld
Jason at zx2c4.com
Thu Nov 19 05:13:17 PST 2015
On Thu, Nov 19, 2015 at 12:54 PM, Jason A. Donenfeld <Jason at zx2c4.com> wrote:
> Even at 20k/second, each message of NoiseIK has 2 ECDH operations. So,
> 10k/second:
>
> 10000 handshakes/second * 96 bytes / 131072 bytes/megabit = 7.3
> megabits per second
>
> That seems like a big big big problem
And even the argument of "well, that's a lot of packets per second,
even if they're small..." This sub-$100 router [1] forwards 1 million
packets per second, and this is just some commodity device. Real
networks have far more throughput.
[1] https://www.ubnt.com/edgemax/edgerouter-lite/
More information about the Noise
mailing list