Closed emanjon closed 3 years ago
Any document that allows multiple responses in the first place (Observe, Q-Block, groupcomm-proxy) emphasizes the dangers of unchecked operation -- but it doesn't hurt to do that here too. (We do already say that a single response needs to be piggy-backed or NON, for the same reason).
What should the consideration be - that the freshness of an Observe request MUST be verified with Echo, updating RFC7641?
Why is Observe allowed without client authentication? And if so, should not the amplification factor be more precisely limited?
PR #76 addresses this issue
Closed by #76.
The current text only talks about large responses, not many responses.
"A server that sends large responses to unauthenticated peers SHOULD mitigate amplification attacks"