RFC 9065

Considerations around Transport Header Confidentiality, Network Operations, and the Evolution of Internet Transport Protocols, July 2021

File formats:

icon for HTML icon for text file icon for v3pdf icon for XML
Status:
INFORMATIONAL
Authors:
G. Fairhurst
C. Perkins
Stream:
IETF
Source:
tsvwg (tsv)

Cite this RFC: TXT  |  XML

DOI:  10.17487/RFC9065

Discuss this RFC: Send questions or comments to tsvwg@ietf.org

Other actions: Submit Errata  |  Find IPR Disclosures from the IETF


Abstract

To protect user data and privacy, Internet transport protocols have supported payload encryption and authentication for some time. Such encryption and authentication are now also starting to be applied to the transport protocol headers. This helps avoid transport protocol ossification by middleboxes, mitigate attacks against the transport protocol, and protect metadata about the communication. Current operational practice in some networks inspect transport header information within the network, but this is no longer possible when those transport headers are encrypted.

This document discusses the possible impact when network traffic uses a protocol with an encrypted transport header. It suggests issues to consider when designing new transport protocols or features.


For the definition of Status, see RFC 2026.

For the definition of Stream, see RFC 8729.