Dismiss
InnovationQ will be updated on Sunday, Oct. 22, from 10am ET - noon. You may experience brief service interruptions during that time.
Browse Prior Art Database

Handling of Overlapping IPv6 Fragments (RFC5722)

IP.com Disclosure Number: IPCOM000191271D
Original Publication Date: 2009-Dec-01
Included in the Prior Art Database: 2009-Dec-24
Document File: 12 page(s) / 12K

Publishing Venue

Internet Society Requests For Comment (RFCs)

Related People

S. Krishnan: AUTHOR

Abstract

The fragmentation and reassembly algorithm specified in the base IPv6 specification allows fragments to overlap. This document demonstrates the security issues associated with allowing overlapping fragments and updates the IPv6 specification to explicitly forbid overlapping fragments.

This text was extracted from an ASCII text file.
This is the abbreviated version, containing approximately 22% of the total text.

Network Working Group                                        S. Krishnan Request for Comments: 5722                                      Ericsson Updates: 2460                                              December 2009 Category: Standards Track

                  Handling of Overlapping IPv6 Fragments

Abstract

   The fragmentation and reassembly algorithm specified in the base IPv6    specification allows fragments to overlap.  This document    demonstrates the security issues associated with allowing overlapping    fragments and updates the IPv6 specification to explicitly forbid    overlapping fragments.

Status of This Memo

   This document specifies an Internet standards track protocol for the    Internet community, and requests discussion and suggestions for    improvements.  Please refer to the current edition of the "Internet    Official Protocol Standards" (STD 1) for the standardization state    and status of this protocol.  Distribution of this memo is unlimited.

Copyright Notice

   Copyright (c) 2009 IETF Trust and the persons identified as the    document authors.  All rights reserved.

   This document is subject to BCP 78 and the IETF Trust's Legal    Provisions Relating to IETF Documents    (http://trustee.ietf.org/license-info) in effect on the date of    publication of this document.  Please review these documents    carefully, as they describe your rights and restrictions with respect    to this document.  Code Components extracted from this document must    include Simplified BSD License text as described in Section 4.e of    the Trust Legal Provisions and are provided without warranty as    described in the BSD License.

Krishnan                    Standards Track                     [Page 1]
 RFC 5722         Handling of Overlapping IPv6 Fragments    December 2009

 Table of Contents

   1. Introduction ....................................................2       1.1. Conventions Used in This Document ..........................2    2. Overlapping Fragments ...........................................2    3. The Attack ......................................................3    4. Node Behavior ...................................................5    5. Security Considerations .........................................5    6. Acknowledgements ................................................5    7. References ......................................................6       7.1. Normative References .......................................6       7.2. Informative References .....................................6

1.  Introduction

   Fragmentation is used in IPv6 when the IPv6 packet will not fit   ...