Defending Against Sequence Number Attacks, May 1996
- Canonical URL:
- File formats:
- Obsoleted by:
- RFC 6528
- S. Bellovin
Discuss this RFC: Send questions or comments to firstname.lastname@example.org
IP spoofing attacks based on sequence number spoofing have become a serious threat on the Internet (CERT Advisory CA-95:01). While ubiquitous crypgraphic authentication is the right answer, we propose a simple modification to TCP implementations that should be a very substantial block to the current wave of attacks. This memo provides information for the Internet community. This memo does not specify an Internet standard of any kind.
For the definition of Status, see RFC 2026.
For the definition of Stream, see RFC 4844.