The Generalized TTL Security Mechanism (GTSM)

Gill, V.; Heasley, J.; Meyer, D.; Pignataro, C.

doi:10.17487/rfc5082

Cited by 30 publications

(42 citation statements)

References 6 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The Generalized TTL Security Mechanism (GTSM) [RFC5082] may be used with UDP applications when the intended endpoint is on the same link as the sender. This lightweight mechanism allows a receiver to filter unwanted packets.…”

Section: Icmp Guidelinesmentioning

confidence: 99%

UDP Usage Guidelines

Shepherd¹,

Fairhurst²,

Eggert³

2017

View full text Add to dashboard Cite

show abstract

Section: Icmp Guidelinesmentioning

confidence: 99%

UDP Usage Guidelines

Shepherd¹,

Fairhurst²,

Eggert³

2017

View full text Add to dashboard Cite

show abstract

“…Additionally, the GTSM for LDP specified in this document applies only to single-hop LDP peering sessions and not to multi-hop LDP peering sessions, in line with Section 5.5 of [RFC5082]. Consequently, any LDP method or feature (such as LDP IGP Synchronization [RFC5443] or LDP Session Protection [LDP-SPROT]) that relies on multi-hop LDP peering sessions would not work with GTSM and will require (statically or dynamically) disabling the GTSM capability.…”

Section: Scopementioning

confidence: 99%

“…The Generalized TTL Security Mechanism (GTSM) [RFC5082] is a mechanism based on IPv4 Time To Live (TTL) or IPv6 Hop Limit value verification so as to provide a simple and reasonably robust defense from infrastructure attacks using forged protocol packets from outside the network. GTSM can be applied to any protocol peering session that is established between routers that are adjacent.…”

Section: Introductionmentioning

confidence: 99%

“…Sending and Receiving procedures for LDP Link Hello message 3. Sending and Receiving procedures for LDP Initialization message GTSM specifies that "it SHOULD NOT be enabled by default in order to remain backward compatible with the unmodified protocol" (see Section 3 of [RFC5082]). This document specifies a "built-in dynamic GTSM capability negotiation" for LDP to suggest the use of GTSM.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

The Generalized TTL Security Mechanism (GTSM) for the Label Distribution Protocol (LDP)

Asati¹,

Pignataro²

2012

Self Cite

View full text Add to dashboard Cite

The Generalized TTL Security Mechanism (GTSM) describes a generalized use of a packet's Time to Live (TTL) (IPv4) or Hop Limit (IPv6) to verify that the packet was sourced by a node on a connected link, thereby protecting the router's IP control plane from CPU utilization-based attacks. This technique improves security and is used by many protocols. This document defines the GTSM use for the Label Distribution Protocol (LDP).This specification uses a bit reserved in RFC 5036 and therefore updates RFC 5036.

show abstract

“…To prevent spoofing attacks, the TRILL hop count of a received session is checked [RFC5082]. For a single-hop session, if the hop count is less than 0x3F and the RBridge Channel Header MH flag is zero, the packet is discarded.…”

Section: Bfd Over Trillmentioning

confidence: 99%