Dismiss
InnovationQ will be updated on Sunday, Oct. 22, from 10am ET - noon. You may experience brief service interruptions during that time.
Browse Prior Art Database

Security Threats and Risks for Open Pluggable Edge Services (OPES) (RFC3837)

IP.com Disclosure Number: IPCOM000030870D
Original Publication Date: 2004-Aug-01
Included in the Prior Art Database: 2004-Aug-31
Document File: 15 page(s) / 32K

Publishing Venue

Internet Society Requests For Comment (RFCs)

Related People

A. Barbir: AUTHOR [+5]

Abstract

The document investigates the security threats associated with the Open Pluggable Edge Services (OPES) and discusses the effects of security threats on the underlying architecture. The main goal of this document is threat discovery and analysis. The document does not specify or recommend any solutions.

This text was extracted from an ASCII text file.
This is the abbreviated version, containing approximately 9% of the total text.

Network Working Group                                          A. Barbir

Request for Comments: 3837                               Nortel Networks

Category: Informational                                       O. Batuner

                                                  Independent consultant

                                                             B. Srinivas

                                                                   Nokia

                                                              M. Hofmann

                                           Bell Labs/Lucent Technologies

                                                                H. Orman

                                               Purple Streak Development

                                                             August 2004

   Security Threats and Risks for Open Pluggable Edge Services (OPES)

Status of this Memo

   This memo provides information for the Internet community.  It does

   not specify an Internet standard of any kind.  Distribution of this

   memo is unlimited.

Copyright Notice

   Copyright (C) The Internet Society (2004).

Abstract

   The document investigates the security threats associated with the

   Open Pluggable Edge Services (OPES) and discusses the effects of

   security threats on the underlying architecture.  The main goal of

   this document is threat discovery and analysis.  The document does

   not specify or recommend any solutions.

Barbir, et al.               Informational                      [Page 1]

RFC 3837               Security Threats for OPES             August 2004

Table of Contents

   1.  Introduction . . . . . . . . . . . . . . . . . . . . . . . . .  2

   2.  OPES Data Flow Threats . . . . . . . . . . . . . . . . . . . .  4

       2.1.  OPES Flow Network Level Threats  . . . . . . . . . . . .  5

             2.1.1.  Connection-Flow Denial-of-Service (DoS). . . . .  6

             2.1.2.  Threats to Network Robustness. . . . . . . . . .  6

       2.2.  OPES Flow Application Level Threats. . . . . . . . . . .  6

             2.2.1.  Unauthorized OPES Entities . . . . . . . . . . .  6

             2.2.2.  Unauthorized Actions of legitimate OPES Entities  7

             2.2.3.  Unwanted Content Transformations . . . . ....