Security Issues for Differentiated Service Framework

Document Type Expired Internet-Draft (individual)
Authors Fengmin Gong  , Hung Huang  , Shyhtsun Wu  , T Wu  , Z Fu 
Last updated 1999-10-22
Stream (None)
Intended RFC status (None)
Expired & archived
pdf htmlized (tools) htmlized bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


This document provides a security analysis for the differentiated service framework. We studied what kinds of attacks can be performed and how badly attacks can affect network services under the DiffServ framework. Without a careful investigation of potential attacks and impacts, the protection systems can not be effectively developed and evaluated. The DiffServ working group, as a whole, needs to decide what the important security issues are (or what specific attacks we need to defend against). Then, it will be meaningful to discuss the possible solution to those realistic DiffServ vulnerabilities. Our objective in this report is to define a model for denial of service attacks under the DiffServ framework.


Fengmin Gong (
Hung Huang (
Shyhtsun Wu (
T Wu (
Z Fu (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)