Enhance with RPKI and IPsec for the Source Address Validation
draft-xu-erisav-00
| Document | Type |
Expired Internet-Draft
(individual)
Expired & archived
|
|
|---|---|---|---|
| Authors | Ke Xu , Jianping Wu , Xiaoliang Wang , Yangfei Guo , Guozhen Dong | ||
| Last updated | 2023-03-27 (Latest revision 2022-09-15) | ||
| RFC stream | (None) | ||
| Intended RFC status | (None) | ||
| Formats | |||
| Stream | Stream state | (No stream defined) | |
| Consensus boilerplate | Unknown | ||
| RFC Editor Note | (None) | ||
| IESG | IESG state | Expired | |
| Telechat date | (None) | ||
| Responsible AD | (None) | ||
| Send notices to | (None) |
This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:
Abstract
Packet forwarding on Internet typically takes no place with inspection of the source address. Thus malicious attacks or abnormal behavior have been launched with the spoofed source addresses. This document describes an inter-domain source address validation with RPKI (Resource Public Key Infrastructure) and IPsec (IP Security), including the motivation, tech framework, main interactive process, and optional extensions.
Authors
Ke Xu
Jianping Wu
Xiaoliang Wang
Yangfei Guo
Guozhen Dong
(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)