RFC 9065
Considerations around Transport Header Confidentiality, Network Operations, and the Evolution of Internet Transport Protocols, July 2021
- File formats:
- Also available: XML file for editing
- Status:
- INFORMATIONAL
- Authors:
- G. Fairhurst
C. Perkins - Stream:
- IETF
- Source:
- tsvwg (wit)
Cite this RFC: TXT | XML | BibTeX
DOI: https://doi.org/10.17487/RFC9065
Discuss this RFC: Send questions or comments to the mailing list tsvwg@ietf.org
Other actions: Submit Errata | Find IPR Disclosures from the IETF | View History of RFC 9065
Abstract
To protect user data and privacy, Internet transport protocols have supported payload encryption and authentication for some time. Such encryption and authentication are now also starting to be applied to the transport protocol headers. This helps avoid transport protocol ossification by middleboxes, mitigate attacks against the transport protocol, and protect metadata about the communication. Current operational practice in some networks inspect transport header information within the network, but this is no longer possible when those transport headers are encrypted.
This document discusses the possible impact when network traffic uses a protocol with an encrypted transport header. It suggests issues to consider when designing new transport protocols or features.
For the definition of Status, see RFC 2026.
For the definition of Stream, see RFC 8729.