Improving TCP's Robustness to Blind In-Window Attacks, August 2010
- File formats:
- PROPOSED STANDARD
- Updated by:
- RFC 9293
- A. Ramaiah
- tcpm (tsv)
Discuss this RFC: Send questions or comments to the mailing list [email protected]
TCP has historically been considered to be protected against spoofed off-path packet injection attacks by relying on the fact that it is difficult to guess the 4-tuple (the source and destination IP addresses and the source and destination ports) in combination with the 32-bit sequence number(s). A combination of increasing window sizes and applications using longer-term connections (e.g., H-323 or Border Gateway Protocol (BGP) [STANDARDS-TRACK]
For the definition of Status, see RFC 2026.
For the definition of Stream, see RFC 8729.