Publications

Our contributions to the Internet Engineering Task Force

RFC

  • Gont, F., Security Assessment of the Internet Protocol Version 4, July 2011, RFC 6274. [pdf] [txt]
  • Gont, F., Reducing the TIME-WAIT State Using TCP Timestamps, April 2011, RFC 6191. [pdf] [txt]
  • Larsen, M., Gont, F., Recommendations for Transport-Protocol Port Randomization, January 2011, RFC 6056. [pdf] [txt]
  • Gont, F., Yourtchenko, A., On the Implementation of the TCP Urgent Mechanism, January 2011, RFC 6093. [pdf] [txt]
  • Gont, F., ICMP Attacks against TCP, July 2010, RFC 5927. [pdf] [txt]
  • Eggert, L., Gont, F., TCP User Timeout Option, March 2009, RFC 5482. [pdf] [txt]
  • Gont, F., TCP's Reaction to Soft Errors, February 2009, RFC 5461. [pdf] [txt]

Internet Drafts

  • Gont, F., Implementation Advice for IPv6 Router Advertisement Guard (RA-Guard), IETF Internet Draft, January 2012. [txt]
  • Gont, F., Security Implications of the Use of IPv6 Extension Headers with IPv6 Neighbor Discovery, IETF Internet Draft, January 2012. [txt]
  • Gont, F., Security Assessment of the IPv6 Flow Label, IETF Internet Draft, January 2012. [txt]
  • Gont, F., Security Implications of Predictable Fragment Identification Values, IETF Internet Draft, December 2011. [txt]
  • Gont, F., Processing of IPv6 "atomic" fragments, IETF Internet Draft, December 2011. Available at: http://www.ietf.org/internet-drafts/draft-gont-6man-ipv6-atomic-fragments-00.txt.
  • Gont, F., Security Implications of IPv6 options of Type 10xxxxxx, IETF Internet Draft, December 2011. [txt]
  • Gont, F., Managing the Address Generation Policy for Stateless Address Autoconfiguration in IPv6, IETF Internet Draft, December 2011. [txt]
  • Gont, F., Bellovin, S., Defending Against Sequence Number Attacks. [Available here]
  • Gont, F., Deprecation of ICMP Source Quench messages. [Available here]
  • Gont, F., Increasing the payload of ICMP error messages. [Available here]
  • Gont, F., Atkinson, R., IP Options Filtering Recommendations. [Available here]
  • Gont F., Mitigating Teredo Rooting Loop Attacks. [Available here]
  • Gont, F., Moving the Endpoint Identifier (EID) Option to Obsolete Status. [Available here]
  • Gont, F., On the generation of TCP timestamps. [Available here]
  • Gont, F., On the problem of long delays between connection-establishment attempts in TCP. Available [here]
  • Gont, F., Pignataro, C., Recommendations for filtering ICMP messages. [Available here]
  • Gont, F., Security Assessment of the IPv6 Flow Label. [Available here]
  • Gont, F. Security Assessment of the Transmission Control Protocol (TCP). [Available here]
  • Gont, F., Srisuresh, P., Security implications arising from NATs. [Available here]
  • Gont, F., TCP Adaptive User TimeOut (AUTO) Option. [Available here]