[saag] Security Assessment of the Transmission Control Protocol (TCP)
Fernando Gont <fernando@gont.com.ar> Sat, 21 February 2009 23:44 UTC
Return-Path: <fernando@gont.com.ar>
X-Original-To: saag@core3.amsl.com
Delivered-To: saag@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 6BA903A677D for <saag@core3.amsl.com>; Sat, 21 Feb 2009 15:44:46 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.437
X-Spam-Level:
X-Spam-Status: No, score=-1.437 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, FH_RELAY_NODNS=1.451, HELO_MISMATCH_NET=0.611, RCVD_IN_DNSWL_LOW=-1, RDNS_NONE=0.1]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id iKXvQS1qpaq3 for <saag@core3.amsl.com>; Sat, 21 Feb 2009 15:44:45 -0800 (PST)
Received: from smtp1.xmundo.net (unknown [201.216.232.80]) by core3.amsl.com (Postfix) with ESMTP id 5376A3A6816 for <saag@ietf.org>; Sat, 21 Feb 2009 15:44:44 -0800 (PST)
Received: from venus.xmundo.net (venus.xmundo.net [201.216.232.56]) by smtp1.xmundo.net (Postfix) with ESMTP id 282FD6B6573 for <saag@ietf.org>; Sat, 21 Feb 2009 20:45:05 -0300 (ART)
Received: from [192.168.0.106] (131-131-17-190.fibertel.com.ar [190.17.131.131]) (authenticated bits=0) by venus.xmundo.net (8.14.1/8.14.1) with ESMTP id n1LNijbE012955; Sat, 21 Feb 2009 21:44:46 -0200
Message-ID: <49A091F4.4010801@gont.com.ar>
Date: Sat, 21 Feb 2009 21:44:52 -0200
From: Fernando Gont <fernando@gont.com.ar>
User-Agent: Thunderbird 2.0.0.19 (X11/20090105)
MIME-Version: 1.0
To: saag@ietf.org
X-Enigmail-Version: 0.95.0
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 7bit
X-Greylist: Sender succeeded SMTP AUTH authentication, not delayed by milter-greylist-3.0 (venus.xmundo.net [201.216.232.56]); Sat, 21 Feb 2009 20:45:04 -0300 (ART)
Subject: [saag] Security Assessment of the Transmission Control Protocol (TCP)
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 21 Feb 2009 23:44:46 -0000
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Hello, folks, Last week the UK CPNI (United Kingdom's Centre for the Protection of National Infrastructure) released the document "Security Assessment of the Transmission Control Protocol (TCP)". The document analyzes the relevant specifications from a security point of view, and also analyzes the implications of some implementation strategies taken by popular TCP implementations. This document is available at: http://www.cpni.gov.uk/Docs/tn-03-09-security-assessment-TCP.pdf As part of the same project, we have produced an IETF I-D version of the UK CPNI document, in the hope that the IETF works on this stuff and hopefully publishes some version of the aforementioned document. The resulting IETF I-D is entitled "Security Assessment of the Transmission Control Protocol (TCP)" (draft-gont-tcp-security-00.txt) and is available at: http://tools.ietf.org/id/draft-gont-tcp-security-00.txt Any comments will be more than welcome. Thanks! Kind regards, - -- Fernando Gont e-mail: fernando@gont.com.ar || fgont@acm.org PGP Fingerprint: 7809 84F5 322E 45C7 F1C9 3945 96EE A9EF D076 FFF1 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iQEcBAEBCAAGBQJJoJHoAAoJEJbuqe/Qdv/xZLwH/iUg1q80GjILHbrjiXsF1kHf kDCtn1AP2fAV5h2VHoVTTOa5OW0S8SoAHck9aqpsP4MIqeY+e8JTN7B4hg8NgSE4 HLIDN4e+uuoZHCqbbB8UHgPHDRwsjTTcHlqMB6msM+aSG5INF4Ng34cS65CGJBsS IdsCsxgUEFfYkrRLFSG6b7gaap6TDSrvczvO0pPLfCzL8lyUy1+4LaLyUrU+TiGZ thSxF6g//Z5MDg6McBZfMaQThg/It4iWzLgInPWLcJlljv5HcloDxjEqnlFuHU9v dm+ZourMytQJ0wLcSLWMWX6Ige9DJ+KitKLdRrYRVBZVdWWPIVXI7HXR9HcEgiM= =z5kP -----END PGP SIGNATURE-----
- [saag] Security Assessment of the Transmission Co… Fernando Gont