Search RFCs

RFC Editor

File formats:

Status:

EXPERIMENTAL

Authors:

A. Bittau
D. Giffin
M. Handley
D. Mazieres
E. Smith

Stream:

IETF

Source:

tcpinc (tsv)

Cite this RFC:TXT  | XML  |  BibTeX

DOI:  https://doi.org/10.17487/RFC8547

Discuss this RFC: Send questions or comments to the mailing listtcpinc@ietf.org

Other actions:Submit Errata  | Find IPR Disclosures from the IETF  | View History of RFC 8547

Abstract

Despite growing adoption of TLS, a significant fraction of TCPtraffic on the Internet remains unencrypted. The persistence ofunencrypted traffic can be attributed to at least two factors.First, some legacy protocols lack a signaling mechanism (such as aSTARTTLS command) by which to convey support for encryption, thusmaking incremental deployment impossible. Second, legacyapplications themselves cannot always be upgraded and thereforerequire a way to implement encryption transparently entirely withinthe transport layer. The TCP Encryption Negotiation Option (TCP-ENO)addresses both of these problems through a new TCP option kindproviding out-of-band, fully backward-compatible negotiation ofencryption.

For the definition ofStatus,seeRFC 2026.

For the definition ofStream, seeRFC 8729.