[LACNIC/Seguridad] Security Considerations for Transient Numeric Identifiers Employed in Network Protocols (Fwd: New Version Notification for draft-gont-numeric-ids-sec-considerations-10.txt)

Fernando Gont fgont en si6networks.com
Mar Ene 10 23:09:43 -03 2023 

Estimades,

FYI, lo acabamos de revisar: 
https://www.ietf.org/archive/id/draft-gont-numeric-ids-sec-considerations-10.txt

P.S.: Hemos sido testigos de un Messi maradoneano, y de grandes 
"rusticos" como Ota y el Cuti Romero. Beleza.   Y a muerte con la 
escaloneta, y en particular con Dibu Martinez.

Slds,
Fernando
Obispo de la Iglesia Marodoniana




-------- Forwarded Message --------
Subject: New Version Notification for 
draft-gont-numeric-ids-sec-considerations-10.txt
Date: Tue, 10 Jan 2023 17:54:51 -0800
From: internet-drafts en ietf.org
To: Fernando Gont <fgont en si6networks.com>, Ivan Arce <iarce en quarkslab.com>


A new version of I-D, draft-gont-numeric-ids-sec-considerations-10.txt
has been successfully submitted by Fernando Gont and posted to the
IETF repository.

Name:		draft-gont-numeric-ids-sec-considerations
Revision:	10
Title:		Security Considerations for Transient Numeric Identifiers 
Employed in Network Protocols
Document date:	2023-01-10
Group:		Individual Submission
Pages:		11
URL: 
https://www.ietf.org/archive/id/draft-gont-numeric-ids-sec-considerations-10.txt
Status: 
https://datatracker.ietf.org/doc/draft-gont-numeric-ids-sec-considerations/
Htmlized: 
https://datatracker.ietf.org/doc/html/draft-gont-numeric-ids-sec-considerations
Diff: 
https://author-tools.ietf.org/iddiff?url2=draft-gont-numeric-ids-sec-considerations-10

Abstract:
    Poor selection of transient numerical identifiers in protocols such
    as the TCP/IP suite has historically led to a number of attacks on
    implementations, ranging from Denial of Service (DoS) to data
    injection and information leakage that can be exploited by pervasive
    monitoring.  To prevent such flaws in future protocols and
    implementations, this document updates RFC 3552, requiring future
    RFCs to contain a vulnerability assessment of their transient numeric
    identifiers.

 


The IETF Secretariat

Más información sobre la lista de distribución Seguridad