UNLIMITED FREE ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already an Engineering360 user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your Engineering360 Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

IETF RFC 7349

LDP Hello Cryptographic Authentication

active, Most Current
Buy Now
Organization: IETF
Publication Date: 1 August 2014
Status: active
Page Count: 14
scope:

This document introduces a new optional Cryptographic Authentication TLV that LDP can use to secure its Hello messages. It secures the Hello messages against spoofing attacks and some well-known attacks against the IP header. This document describes a mechanism to secure the LDP Hello messages using Hashed Message Authentication Code (HMAC) with the National Institute of Standards and Technology (NIST) Secure Hash Standard family of algorithms.

Document History

IETF RFC 7349
August 1, 2014
LDP Hello Cryptographic Authentication
This document introduces a new optional Cryptographic Authentication TLV that LDP can use to secure its Hello messages. It secures the Hello messages against spoofing attacks and some well-known...

References

This document references:
FIPS PUB 180 - Secure Hash Standard (SHS)
Published by NPFC on March 1, 2012
This standard specifies hash algorithms that can be used to generate digests of messages. The digests are used to detect whether messages have been changed since the digests were generated.
This document references:
IETF RFC 5082 - The Generalized TTL Security Mechanism (GTSM)
Published by IETF on October 1, 2007
The use of a packet's Time to Live (TTL) (IPv4) or Hop Limit (IPv6) to verify whether the packet was originated by an adjacent node on a connected link has been used in many recent protocols. This...
This document references:
IETF RFC 5926 - Cryptographic Algorithms for the TCP Authentication Option (TCP-AO)
Published by IETF on June 1, 2010
The TCP Authentication Option (TCP-AO) relies on security algorithms to provide authentication between two end-points. There are many such algorithms available, and two TCP-AO systems cannot...
Advertisement