Open main menu
Home
Random
Recent changes
Special pages
Community portal
Preferences
About Wikipedia
Disclaimers
Incubator escapee wiki
Search
User menu
Talk
Dark mode
Contributions
Create account
Log in
Editing
Service Location Protocol
(section)
Warning:
You are not logged in. Your IP address will be publicly visible if you make any edits. If you
log in
or
create an account
, your edits will be attributed to your username, along with other benefits.
Anti-spam check. Do
not
fill this in!
== Security == SLP contains a security mechanism, based on [[public key|public-key cryptography]], that allows signing of service announcements. In practice it is rarely used: * The public keys of every service provider must be installed on every UA. This requirement defeats the original purpose of SLP, being able to locate services without prior configuration. * Protecting only the services is not enough. Service URLs contain host names or IP addresses, and in a local network it is almost impossible to prevent [[Internet protocol spoofing|IP or DNS spoofing]]. Thus only guaranteeing the authenticity of the URL is not enough if any device can respond to the address. * As addresses can be spoofed, the authenticity of the device must be proven at a different level anyway, e.g. in the application protocol (e.g. with [[Secure Sockets Layer|SSL]]) or in the packet layer ([[IPsec]]). Doing it additionally in SLP does not provide much additional security.
Edit summary
(Briefly describe your changes)
By publishing changes, you agree to the
Terms of Use
, and you irrevocably agree to release your contribution under the
CC BY-SA 4.0 License
and the
GFDL
. You agree that a hyperlink or URL is sufficient attribution under the Creative Commons license.
Cancel
Editing help
(opens in new window)