Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Additional security section on fragmentation reassembly attacks #444

Merged
merged 9 commits into from Apr 24, 2017
Merged

Additional security section on fragmentation reassembly attacks #444

Changes from 1 commit
Commits
Show all changes
9 commits
Select commit Hold shift + click to select a range
cdbfb64
Additional security section on fragmentation reassembly attacks
huitema Apr 19, 2017
dade254
Update draft-ietf-quic-transport.md
huitema Apr 19, 2017
6a0337c
Removing trailing spaces on some of changed lines
huitema Apr 19, 2017
d244484
Simplifying the text, per Martin's review
huitema Apr 20, 2017
46f293c
Simplifying the mitigation text
huitema Apr 21, 2017
040a5fe
And fixing a typo.
huitema Apr 21, 2017
a168b3b
STREAM frames.
huitema Apr 21, 2017
31872b3
Can lead
huitema Apr 21, 2017
b47c030
MAY -> could
huitema Apr 21, 2017
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
2 changes: 1 addition & 1 deletion draft-ietf-quic-transport.md
View file
Open in desktop
Expand Up @@ -2713,7 +2713,7 @@ endpoints are well behaved, but renders endpoints vulnerable to
the stream fragmentation attack.

QUIC deployments SHOULD provide mitigations against the stream fragmentation
attack. Mitigations MAY consist of avoiding over-committing memory, delaying
attack. Mitigations could consist of avoiding over-committing memory, delaying
reassembly of STREAM frames, implementing heuristics based on the
age and duration of reassembly holes, or some combination.

Expand Down