Aller au contenu principal

4. Security Considerations

This section preserves the RFC text for the DLEP IEEE 802.1Q Aware Credit Window extension, including Extension Type 5, VLAN identifiers, PCPs, traffic classification, credit windows, IANA registration, and normative behavior.

Original RFC Text

4.  Security Considerations

This document defines a DLEP extension that uses DLEP mechanisms and
the credit window flow control mechanisms defined in [RFC9892] and
[RFC9893]. See also the Security Considerations sections of those
documents.

The defined extension is exposed to vulnerabilities similar to
existing DLEP messages and discussed in the Security Considerations
section of [RFC8175], such as an injected message resizing a credit
window to a value that results in a denial of service. The security
mechanisms documented in [RFC8175] can be applied equally to the
mechanism defined in this document.

Wildcards for matching PCP and VID fields are provided. Note that
wildcards may be convenient for matching a number of packet flows but
could inadvertently match unexpected flows or new flows that appear
after the wildcard matching has been set up. It is therefore
RECOMMENDED that wildcards not be used unless clearly needed.