RA-Guard Evasion: New revision of my IETF Internet-Drafts

I have posted a revision of both of my recently-published IETF Internet-Drafts about RA-Guard evasion:IPv6 Router Advertisement Guard (RA-Guard) Evasion (draft-gont-v6ops-ra-guard-evasion-01.txt)Security Implications of the Use of IPv6 Extension Headers with…

Continue ReadingRA-Guard Evasion: New revision of my IETF Internet-Drafts

RA-Guard evasion and related vulnerabilities

I've just published two new IETF Internet-Drafts, that document the problem of RA-Guard evasion, and propose mitigations.They are two Internet-Drafts:IPv6 Router Advertisement Guard (RA-Guard) Evasion, available at: http://tools.ietf.org/id/draft-gont-v6ops-ra-guard-evasion-00.txtSecurity Implications of…

Continue ReadingRA-Guard evasion and related vulnerabilities

Recommendations for Transport-Protocol Port Randomization (IETF RFC 6056)

Folks,Our document "Recommendations for Transport-Protocol Port Randomization" has just been published as IETF RFC 6056.The Abstract of the RFC is:During the last few years, awareness has been raised about a…

Continue ReadingRecommendations for Transport-Protocol Port Randomization (IETF RFC 6056)