The Echo Cookie TCP Option
draft-briscoe-tcpm-echo-cookie-00
| Document | Type | Expired Internet-Draft (individual) | |
|---|---|---|---|
| Author | Bob Briscoe | ||
| Last updated | 2015-04-30 (latest revision 2014-10-27) | ||
| Stream | (None) | ||
| Intended RFC status | (None) | ||
| Formats |
Expired & archived
pdf
htmlized (tools)
htmlized
bibtex
|
||
| Stream | Stream state | (No stream defined) | |
| Consensus Boilerplate | Unknown | ||
| RFC Editor Note | (None) | ||
| IESG | IESG state | Expired | |
| Telechat date | |||
| Responsible AD | (None) | ||
| Send notices to | (None) | ||
https://www.ietf.org/archive/id/draft-briscoe-tcpm-echo-cookie-00.txt
Abstract
This document specifies a TCP Option called EchoCookie. It provides a single field that a TCP server can use to store opaque cookie data 'in flight' rather than in memory. As new TCP options are defined, they can require that implementations support the EchoCookie option. Then if a server's SYN queue is under pressure from a SYN flooding attack, it can ask clients to echo its connection state in their acknowledgement. This facility is similar to the classic SYN Cookie, but it provides enough space for connection state associated with TCP options. In contrast, the classic location for a SYN Cookie only provides enough space for a degraded encoding of the Maximum Segment Size (MSS) TCP option and no others.
Authors
Bob Briscoe (bob.briscoe@bt.com)
(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)