RFC 5095 - Deprecation of Type 0 Routing Headers in IPv6
Publication Date: December 2007
Status: Standards Track
Updates: RFC 2460, RFC 4294
Authors: J. Abley (Afilias), P. Savola (CSC/FUNET), G. Neville-Neil (Neville-Neil Consulting)
Abstract
The functionality provided by IPv6's Type 0 Routing Header can be exploited in order to achieve traffic amplification over a remote path for the purposes of generating denial-of-service traffic. This document updates the IPv6 specification to deprecate the use of IPv6 Type 0 Routing Headers, in light of this security concern.
Table of Contents
- 1. Introduction
- 2. Definitions
- 2.1. Requirements Language
- 2.2. Terminology
- 3. Deprecation of RH0
- 3.1. Host Requirements
- 3.2. Router Requirements
- 3.3. Firewall Requirements
- 4. Security Considerations
- 5. IANA Considerations
- 6. Acknowledgements
- 7. References
- 7.1. Normative References
- 7.2. Informative References
Status of This Memo
This document specifies an Internet standards track protocol for the Internet community, and requests discussion and suggestions for improvements. Please refer to the current edition of the "Internet Official Protocol Standards" (STD 1) for the standardization state and status of this protocol. Distribution of this memo is unlimited.
Copyright Notice
Copyright (C) The IETF Trust (2007).
Additional Information
Working Group: IPv6 Working Group
Category: Standards Track
RFC Number: 5095
This RFC updates RFC 2460 (IPv6 Specification) and RFC 4294 (IPv6 Node Requirements) to deprecate the use of Type 0 Routing Headers due to security vulnerabilities that enable traffic amplification attacks.