Search RFCs

Protecting Internet Key Exchange Protocol Version 2 (IKEv2) Implementations from Distributed Denial-of-Service Attacks,November 2016

File formats:
Status:: PROPOSED STANDARD
Authors:: Y. Nir
V. Smyslov
Stream:: IETF
Source:: ipsecme (sec)

Cite this RFC:TXT | XML | BibTeX

DOI: https://doi.org/10.17487/RFC8019

Discuss this RFC: Send questions or comments to the mailing listipsec@ietf.org

Other actions:Submit Errata | Find IPR Disclosures from the IETF | View History of RFC 8019

Abstract

This document recommends implementation and configuration bestpractices for Internet Key Exchange Protocol version 2 (IKEv2)Responders, to allow them to resist Denial-of-Service and DistributedDenial-of-Service attacks. Additionally, the document introduces anew mechanism called "Client Puzzles" that helps accomplish thistask.

For the definition ofStatus,seeRFC 2026.

For the definition ofStream, seeRFC 8729.

IAB •IANA •IETF •IRTF •ISE •ISOC •IETF Trust
Reports •Privacy Statement •Site Map •Contact Us

Movatterモバイル変換

Search RFCs

RFC Editor

RFC 8019

Protecting Internet Key Exchange Protocol Version 2 (IKEv2) Implementations from Distributed Denial-of-Service Attacks,November 2016

Abstract