UNLIMITED FREE
ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already a GlobalSpec user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your GlobalSpec Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

IETF RFC 7675

Session Traversal Utilities for NAT (STUN) Usage for Consent Freshness

active, Most Current
Buy Now
Organization: IETF
Publication Date: 1 October 2015
Status: active
Page Count: 10
scope:

To prevent WebRTC applications, such as browsers, from launching attacks by sending traffic to unwilling victims, periodic consent to send needs to be obtained from remote endpoints.

This document describes a consent mechanism using a new Session Traversal Utilities for NAT (STUN) usage.

Document History

IETF RFC 7675
October 1, 2015
Session Traversal Utilities for NAT (STUN) Usage for Consent Freshness
To prevent WebRTC applications, such as browsers, from launching attacks by sending traffic to unwilling victims, periodic consent to send needs to be obtained from remote endpoints. This document...

References

This document references:
IETF RFC 7350 - Datagram Transport Layer Security (DTLS) as Transport for Session Traversal Utilities for NAT (STUN)
Published by IETF on August 1, 2014
This document specifies the usage of Datagram Transport Layer Security (DTLS) as a transport protocol for Session Traversal Utilities for NAT (STUN). It provides guidance on when and how to use DTLS...
This document references:
IETF RFC 6263 - Application Mechanism for Keeping Alive the NAT Mappings Associated with RTP / RTP Control Protocol (RTCP) Flows
Published by IETF on June 1, 2011
This document lists the different mechanisms that enable applications using the Real-time Transport Protocol (RTP) and the RTP Control Protocol (RTCP) to keep their RTP Network Address Translator...
This document references:
IETF RFC 6062 - Traversal Using Relays around NAT (TURN) Extensions for TCP Allocations
Published by IETF on November 1, 2010
This specification defines an extension of Traversal Using Relays around NAT (TURN), a relay protocol for Network Address Translator (NAT) traversal. This extension allows a TURN client to request...
This document references:
IETF RFC 5961 - Improving TCP’s Robustness to Blind In-Window Attacks
Published by IETF on August 1, 2010
TCP has historically been considered to be protected against spoofed off-path packet injection attacks by relying on the fact that it is difficult to guess the 4-tuple (the source and destination IP...
This document is referenced by:
ITU-T H.248.50 - Gateway control protocol: NAT traversal toolkit packages
Published by ITU-T on July 1, 2016
This Recommendation describes packages to enable various network address translator (NAT) traversal techniques to be employed in order to facilitate media flow between networks. The media gateway...
This document is referenced by:
TS 124 229 - Digital cellular telecommunications system (Phase 2+) (GSM); Universal Mobile Telecommunications System (UMTS); LTE; 5G; IP multimedia call control protocol based on Session Initiation Protocol (SIP) and Session Description Protocol (SDP); Stage 3
Published by ETSI on January 1, 2024
The present document defines a call control protocol for use in the IP Multimedia (IM) Core Network (CN) subsystem based on the Session Initiation Protocol (SIP), and the associated Session...
This document is referenced by:
IETF RFC 8839 - Session Description Protocol (SDP) Offer/Answer Procedures for Interactive Connectivity Establishment (ICE)
Published by IETF on January 1, 2021
Abstract This document describes Session Description Protocol (SDP) Offer/Answer procedures for carrying out Interactive Connectivity Establishment (ICE) between the agents. This document obsoletes...
This document is referenced by:
RFC 9071 - RTP-Mixer Formatting of Multiparty Real-Time Text
Published by IETF on July 1, 2021
Abstract This document provides enhancements of real-time text (as specified in RFC 4103) suitable for mixing in a centralized conference model, enabling source identification and rapidly interleaved...
This document is referenced by:
IETF RFC 8827 - WebRTC Security Architecture
Published by IETF on January 1, 2021
Abstract This document defines the security architecture for WebRTC, a protocol suite intended for use with real-time applications that can be deployed in browsers -- "real-time communication on the...
View Less
View All
Advertisement