database logo graphic

RFC 1948

"Defending Against Sequence Number Attacks", May 1996

Canonical URL:
http://www.rfc-editor.org/rfc/rfc1948.txt
This document is also available in this non-normative format: PDF.
Status:
INFORMATIONAL
Obsoleted by:
RFC 6528
Author:
S. Bellovin
Stream:
[Legacy]

Cite this RFC: TXT  |  XML

Other actions: Find Errata (if any)  |  Submit Errata  |  Find IPR Disclosures from the IETF


Abstract

IP spoofing attacks based on sequence number spoofing have become a serious threat on the Internet (CERT Advisory CA-95:01). While ubiquitous crypgraphic authentication is the right answer, we propose a simple modification to TCP implementations that should be a very substantial block to the current wave of attacks. This memo provides information for the Internet community. This memo does not specify an Internet standard of any kind.


For the definition of Status, see RFC 2026.

For the definition of Stream, see RFC 4844.


Go to the RFC Editor Homepage.