Discussion Forums

Information Security   < Previous   Next >

Re: Sending FIX messages across internet
Ryan Pierce / Townsend Analytics Ltd.
20 May 2005 11:34AM ET

> I would like to add "Replay attacks" here. A possible intruder could try
> to replay the encrypted trade, thereby at least disturb the
> communication.

My understanding is that SSL and TLS have mechanisms in place to prevent replay attacks. Assuming a strong ciphersuite is used, and both parties authenticate each other, I think it would be computationally infeasible to replay a trade and have it accepted by either party.

Now disruption of communications is a general risk when using an untrusted network, or any network. But I'd categorize this more broadly as a denial of service attack. Strong crypto can provide reasonable assurances of authentication and message integrity, but it's not going to stop someone who breaks into a telco closet with a pair of wire cutters.

Sending FIX messages across internet
wing tse   18 May 2005 4:37AM ET

Re: Sending FIX messages across internet
Steve Hall / Transacttools Inc   18 May 2005 5:11AM ET

Re: Sending FIX messages across internet
Jörg Thönnes / Macdonald Associates   18 May 2005 5:26AM ET

Re: Sending FIX messages across internet
Kevin Houstoun / HSBC Bank plc   18 May 2005 6:45AM ET

Re: Sending FIX messages across internet
Ryan Pierce / Townsend Analytics Ltd.   19 May 2005 1:28PM ET

Re: Sending FIX messages across internet
Jörg Thönnes / Macdonald Associates   19 May 2005 1:41PM ET

Re: Sending FIX messages across internet
Jörg Thönnes / Macdonald Associates   20 May 2005 5:07AM ET

Re: Sending FIX messages across internet
Ryan Pierce / Townsend Analytics Ltd.   20 May 2005 11:34AM ET