IETF Logo Mail Archive

[core] RFC 9175 on Constrained Application Protocol (CoAP): Echo, Request-Tag, and Token Processing

rfc-editor@rfc-editor.org Thu, 24 February 2022 21:54 UTC

Return-Path: <wwwrun@rfc-editor.org>
X-Original-To: core@ietfa.amsl.com
Delivered-To: core@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A1F5E3A0B67; Thu, 24 Feb 2022 13:54:03 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, CTE_8BIT_MISMATCH=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id F5cQKiBU0qZD; Thu, 24 Feb 2022 13:53:59 -0800 (PST)
Received: from rfc-editor.org (rfc-editor.org [4.31.198.49]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E16BA3A0B60; Thu, 24 Feb 2022 13:53:58 -0800 (PST)
Received: by rfc-editor.org (Postfix, from userid 499) id BE806E52EF; Thu, 24 Feb 2022 13:53:58 -0800 (PST)
To: ietf-announce@ietf.org, rfc-dist@rfc-editor.org
From: rfc-editor@rfc-editor.org
Cc: rfc-editor@rfc-editor.org, drafts-update-ref@iana.org, core@ietf.org
Content-type: text/plain; charset="UTF-8"
Message-Id: <20220224215358.BE806E52EF@rfc-editor.org>
Date: Thu, 24 Feb 2022 13:53:58 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/core/YaymVGAAiTm4rvU1l4HNoPmEgTc>
Subject: [core] RFC 9175 on Constrained Application Protocol (CoAP): Echo, Request-Tag, and Token Processing
X-BeenThere: core@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Constrained RESTful Environments \(CoRE\) Working Group list" <core.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/core>, <mailto:core-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/core/>
List-Post: <mailto:core@ietf.org>
List-Help: <mailto:core-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/core>, <mailto:core-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 24 Feb 2022 21:54:04 -0000

A new Request for Comments is now available in online RFC libraries.

        
        RFC 9175

        Title:      Constrained Application Protocol (CoAP):
                    Echo, Request-Tag, and Token Processing 
        Author:     C. Amsüss,
                    J. Preuß Mattsson,
                    G. Selander
        Status:     Standards Track
        Stream:     IETF
        Date:       February 2022
        Mailbox:    christian@amsuess.com,
                    john.mattsson@ericsson.com,
                    goran.selander@ericsson.com
        Pages:      27
        Updates:    RFC 7252

        I-D Tag:    draft-ietf-core-echo-request-tag-14.txt

        URL:        https://www.rfc-editor.org/info/rfc9175

        DOI:        10.17487/RFC9175

This document specifies enhancements to the Constrained Application
Protocol (CoAP) that mitigate security issues in particular use
cases. The Echo option enables a CoAP server to verify the freshness
of a request or to force a client to demonstrate reachability at its
claimed network address. The Request-Tag option allows the CoAP
server to match block-wise message fragments belonging to the same
request. This document updates RFC 7252 with respect to the
following: processing requirements for client Tokens, forbidding
non-secure reuse of Tokens to ensure response-to-request binding when
CoAP is used with a security protocol, and amplification mitigation
(where the use of the Echo option is now recommended).

This document is a product of the Constrained RESTful Environments Working Group of the IETF.

This is now a Proposed Standard.

STANDARDS TRACK: This document specifies an Internet Standards Track
protocol for the Internet community, and requests discussion and suggestions
for improvements.  Please refer to the current edition of the Official
Internet Protocol Standards (https://www.rfc-editor.org/standards) for the 
standardization state and status of this protocol.  Distribution of this 
memo is unlimited.

This announcement is sent to the IETF-Announce and rfc-dist lists.
To subscribe or unsubscribe, see
  https://www.ietf.org/mailman/listinfo/ietf-announce
  https://mailman.rfc-editor.org/mailman/listinfo/rfc-dist

For searching the RFC series, see https://www.rfc-editor.org/search
For downloading RFCs, see https://www.rfc-editor.org/retrieve/bulk

Requests for special distribution should be addressed to either the
author of the RFC in question, or to rfc-editor@rfc-editor.org.  Unless
specifically noted otherwise on the RFC itself, all RFCs are for
unlimited distribution.


The RFC Editor Team
Association Management Solutions, LLC

v2.23.0 | Report a Bug | By Email