RFC Errata
RFC 6704, "Forcerenew Nonce Authentication", August 2012
Source of RFC: dhc (int)
Errata ID: 3353
Status: Held for Document Update
Type: Editorial
Publication Format(s) : TEXT
Reported By: Gaurav Halwasia
Date Reported: 2012-09-14
Held for Document Update by: Brian Haberman
Section 5.1 says:
The mechanism described in this document is vulnerable to a denial- of-service (DoS) attack through flooding a client with bogus FORCERENEW messages. The calculations involved in authenticating the bogus FORECERENEW messages may overwhelm the device on which the client is running.
It should say:
The mechanism described in this document is vulnerable to a denial- of-service (DoS) attack through flooding a client with bogus FORCERENEW messages. The calculations involved in authenticating the bogus FORCERENEW messages may overwhelm the device on which the client is running.
Notes:
Spelling of "FORECERENEW" is incorrect. It should be "FORCERENEW"