Defending against Sequence Number Attacks, February 2012
- File formats:
- PROPOSED STANDARD
- RFC 1948
- Obsoleted by:
- RFC 9293
- RFC 793
- F. Gont
- tcpm (tsv)
Discuss this RFC: Send questions or comments to the mailing list email@example.com
This document specifies an algorithm for the generation of TCP Initial Sequence Numbers (ISNs), such that the chances of an off-path attacker guessing the sequence numbers in use by a target connection are reduced. This document revises (and formally obsoletes) RFC 1948, and takes the ISN generation algorithm originally proposed in that document to Standards Track, formally updating RFC 793. [STANDARDS-TRACK]
For the definition of Status, see RFC 2026.
For the definition of Stream, see RFC 8729.