Passa al contenuto principale

4. Security Considerations

This page preserves the original RFC text for the section and adds navigation metadata for the documentation site.

Original RFC Text

4.  Security Considerations

This document defines a DLEP extension that uses DLEP mechanisms and
the credit window flow control mechanisms defined in [RFC9892] and
[RFC9893]. See also the Security Considerations sections of those
documents.

The defined extension is exposed to vulnerabilities similar to
existing DLEP messages and discussed in the Security Considerations
section of [RFC8175], such as an injected message resizing a credit
window to a value that results in a denial of service. The security
mechanisms documented in [RFC8175] can be applied equally to the
mechanism defined in this document.

Wildcards for matching Priority Code Point (PCP) and VLAN Identifier
(VID) fields (see [RFC9895]) are provided. Note that wildcards may
be convenient for matching a number of packet flows but could
inadvertently match unexpected flows or new flows that appear after
the wildcard matching has been set up. It is therefore RECOMMENDED
that wildcards not be used unless needed.