Securing the MultiPath TCP handshake with external keys

Document Type Expired Internet-Draft (individual)
Authors Christoph Paasch  , Olivier Bonaventure 
Last updated 2013-04-18 (latest revision 2012-10-15)
Stream (None)
Intended RFC status (None)
Expired & archived
plain text xml pdf ps htmlized bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


Multipath TCP currently relies on the exchange of keys in clear during the initial handshake to authenticate the establishment of additional subflows. This document proposes a variant of the Multipath TCP handshake that allows Multipath TCP to reuse keys negotiated by the Application layer protocol above it such as SSL/TLS to authenticate the establishment of additional subflows.


Christoph Paasch (
Olivier Bonaventure (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)