Problem statement: IP source addresses can be spoofed. Packet delivery is based
only on destination addresses, to the spoofed traffic arrives, and hurts
(attacks/threatens) the destination. It'd be nice to stop the spoofing, and
existing solutions aren't sufficient.
There are product solutions for ipv4, sold by Cisco and others, that work within
a single switch. The working group wants something standard.
The trouble, as I see it, is that the charter is too limited:
-----------------------------------
Specifically, the group shall define solutions such that hosts attached to the
same router cannot spoof each other's addresses. The following assumptions
apply:
*
_______________________________________________
Ietf mailing list
[email protected]
https://www1.ietf.org/mailman/listinfo/ietf
