Cryptanalysis
STS-MAC is vulnerable to some unknown key-share attacks, whereby an active attacker can inject her own identity into the session establishment procedure in place of either initiator or responder. Blake-Wilson & Menezes (1999) present the vulnerabilities and some solutions
Read more about this topic: Station-to-Station Protocol