Skip to main content

A General Framework of Source Address Validation and Traceback for IPv4/IPv6 Transition Scenarios
draft-xu-savi-transition-14

Document Type Expired Internet-Draft (individual)
Expired & archived
Authors DENG Hui , Guangwu Hu , Jun Bi , Mingwei Xu , Fan Shi
Last updated 2019-05-09 (Latest revision 2018-11-05)
RFC stream (None)
Intended RFC status (None)
Formats
Stream Stream state (No stream defined)
Consensus boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:

Abstract

SAVI (Source Address Validation Improvement) is an excellent mechanism for anti-IP-spoofing, which was advocated by IETF but only focused on single-stack or simple network scenarios right now. To the best of our knowledge, existing studies have not paid attention to the IPv4/IPv6 transition scenarios. However, since IPv4/IPv6 transition schemes are plenty and various, one solution cannot meet all requirements of them. In this draft, we present a SAVI-based general framework for IP source address validation and traceback in the IPv4/IPv6 transition scenarios, which achieve this by extracting out essential and mutual properties from these schemes, and forming sub-solutions for each property. When one transition scheme is composed from various properties, its IP source address validation and traceback solution is directly comprised by the corresponding sub-solutions. Thus, the most exciting advantage of this framework is that it is a once-and-for-all solution no matter how transition schemes change. Till now, this proposal was approved by China Communications Standards Association (CCSA), and we will actively promote it to apply real network scenarios.

Authors

DENG Hui
Guangwu Hu
Jun Bi
Mingwei Xu
Fan Shi

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)