%% You should probably cite draft-ietf-core-attacks-on-coap instead of this I-D.
@techreport{mattsson-core-coap-attacks-00,
    number =    {draft-mattsson-core-coap-attacks-00},
    type =      {Internet-Draft},
    institution =   {Internet Engineering Task Force},
    publisher = {Internet Engineering Task Force},
    note =      {Work in Progress},
    url =       {https://datatracker.ietf.org/doc/draft-mattsson-core-coap-attacks/00/},
    author =    {John Preuß Mattsson and John Fornehed and Göran Selander and Francesca Palombini and Christian Amsüss},
    title =     {{Summarizing Known Attacks on CoAP}},
    pagetotal = 21,
    year =      ,
    month =     ,
    day =       ,
    abstract =  {Being able to trust information from sensors and to securely control actuators are essential in a world of connected and networking things interacting with the physical world. This document summarizes known attacks, and show that just using CoAP with a security protocol like DTLS, TLS, or OSCORE is not enough for secure operation. The goal with this document is motivating generic and protocol-specific recommendations on the usage of CoAP. Several of the discussed attacks can be mitigated with the solutions in {[}I-D.ietf-core-echo-request-tag{]}.},
}