Skip to main content

Security Requirements for Keys used with the TCP MD5 Signature Option

Document Type Expired Internet-Draft (individual)
Author Marcus D. Leech
Last updated 2002-02-21
Stream (None)
Intended RFC status (None)
Expired & archived
Stream Stream state (No stream defined)
Consensus boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:


The TCP MD5 Signature Option [RFC2385], used predominantly by BGP, has seen significant deployment in critical areas of Internet infrastructure. The security of this option relies heavily on the quality of the keying material used to compute the MD5 signature. This document addresses the security requirements of that keying material.


Marcus D. Leech

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)