RFC 1948

Defending Against Sequence Number Attacks, May 1996

File formats:
icon for text file icon for PDF icon for HTML
Obsoleted by:
RFC 6528
S. Bellovin

Cite this RFC: TXT  |  XML  |   BibTeX

DOI:  https://doi.org/10.17487/RFC1948

Discuss this RFC: Send questions or comments to the mailing list iesg@ietf.org

Other actions: View Errata  |  Submit Errata  |  Find IPR Disclosures from the IETF  |  View History of RFC 1948


IP spoofing attacks based on sequence number spoofing have become a serious threat on the Internet (CERT Advisory CA-95:01). While ubiquitous crypgraphic authentication is the right answer, we propose a simple modification to TCP implementations that should be a very substantial block to the current wave of attacks. This memo provides information for the Internet community. This memo does not specify an Internet standard of any kind.

For the definition of Status, see RFC 2026.

For the definition of Stream, see RFC 8729.

Advanced Search