A Formal Analysis of SCTP: Attack Synthesis and Patch Verification

arXiv:2403.05663v1 Announce Type: new
Abstract: SCTP is a transport protocol offering features such as multi-homing, multi-streaming, and message-oriented delivery. Its two main implementations were subjected to conformance tests using the PacketDrill tool. Conformance testing is not exhaustive and a recent vulnerability (CVE-2021-3772) showed SCTP is not immune to attacks. Changes addressing the vulnerability were implemented, but the question remains whether other flaws might persist in the protocol design.
We study the security of the SCTP design, taking a rigorous approach …

analysis arxiv attack attacks cs.cr cve delivery features immune main message patch protocol streaming testing tests tool transport verification vulnerability