Skip to content
This repository has been archived by the owner on Aug 11, 2020. It is now read-only.

TODO: Mitigations for Stream Fragmentation and Reassembly Attacks #301

Open
1 of 2 tasks
jasnell opened this issue Jan 24, 2020 · 0 comments
Open
1 of 2 tasks

TODO: Mitigations for Stream Fragmentation and Reassembly Attacks #301

jasnell opened this issue Jan 24, 2020 · 0 comments

Comments

@jasnell
Copy link
Member

jasnell commented Jan 24, 2020

Re: Section 21.5 Of QUIC Draft-25

  • Connect flow control windows to currently available memory -- Currently, there are no limits implemented based on actual available aggregate memory.
  • Outbound data writes are already throttled by rate of acknowledgement. This is both good and bad. Good in that it fights against Slow-Ack attacks. Bad in that it can artificially limit data flow rate.
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@jasnell