, Firewalls and Internet security: repelling the Wily Hacker, 1994.
, Traditional IP Network Address Translator (Traditional NAT). IETF Informational document, 2001.
DOI : 10.17487/rfc3022
, Reasons to Move NAT-PT to Experimental. IETF Draft (work in progress), draft-ietf-v6ops-natpt-to-exprmntl-02, 2005.
, Interaction of firewalls and network address translators with internet applications, Proceedings of the 8th International Conference on Telecommunications, 2005. ConTEL 2005., 2005.
DOI : 10.1109/CONTEL.2005.185907
, STUN -Simple Traversal of User Datagram Protocol (UDP) Through Network Address Translators (NATs). IETF proposed standard, 2003.
, NAT/Firewall NSIS Signaling Layer Protocol (NSLP) IETF draft (work in progress), draft-ietf-nsis-nslp-natfw-08, 2005.
DOI : 10.17487/rfc5973
, GIST State Machine. IETF draft (work in progress), draft-ietf-nsis-ntlp-statemachine-01, 2005.
, General Internet Signaling Transport. IETF draft (work in progress), draft-ietf-nsis-ntlp-08, 2005.
DOI : 10.17487/rfc5971
, Résolution desprobì emes de routage asymétrique et de partage de charge dans les pare-feux, Proceedings of Colloque Francophone sur l'Ingénierie des Protocoles 2005, 2005.
, Securing Middlebox Discovery for Path-Directed Signaling in the Internet, IEEE ASWN 2005 workshop proceedings, 2005.
, Path-directed signaling in the Internet, IEEE IPOM 2004 workshop proceedings, 2004.
, Security Threats for NSIS. IETF Informational document, RFC, vol.4081, 2005.
DOI : 10.17487/rfc4081
, Security Threats for the NATFW NSLP. Expired IETF draft, draft-fessi-nsis-natfw-threats-02, 2004.
, NATFW NSLP Intra-Realm Considerations. Expired IETF draft, draft-aoun-nsis-nslp-natfw-intrarealm- 01, 2004.
, Potential Solutions to the Middlebox discovery problem. Expired IETF draft, draft-aoun-midcom-discovery-01, 2002.
, Middlebox discovery integration solutions within the Midcom architecture
, Middlebox communications (MIDCOM) Protocol Evaluation, IETF Informational document RFC, vol.4097, 2005.
DOI : 10.17487/rfc4097
, COPS applicability as the MIDCOM PROTOCOL. Expired IETF draft, draft-aoun-midcom-cops-02, 2002.
, Applicability of MEGACO to Middlebox Control. Expired IETF draft, draft-sct-midcom-megaco-02, 2002.
, Media Gateway Control Protocol (MGCP) Version 1.0. IETF informational document, 2003.
, Gateway Control Protocol Version 1. IETF Standards Track document, 2003.
DOI : 10.17487/rfc3525
, Protocol Complications with the IP Network Address Translator, IETF Informational document, vol.3027, 2001.
DOI : 10.17487/rfc3027
URL : http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.172.2925
, Middleboxes: Taxonomy and Issues. IETF Informational document, 2002.
DOI : 10.17487/rfc3234
, Basic Transition Mechanisms for IPv6 Hosts and Routers. IETF draft (work in progress), draft-ietf-v6ops-mech-v2-07, 2005.
, Nat Behavioral Requirements for Unicast UDP. IETF draft (work in progress), draft-ietf-behave-nat-udp-00, 2005.
, Traversal Using Relay NAT (TURN) IETF draft (work in progress), draft-rosenberg-midcom-turn-06, 2004.
, Best Current Practices for NAT Traversal for SIP. IETF draft (work in progress), draft-ietf-sipping-nat-scenarios-01, 2004.
, IETF draft (work in progress), draft-aoun-mgcp-nat-package-02, 2003.
, A Two-Level Architecture for Internet Signaling. IETF draft (expired), draft-braden-2level-signaling-01.txt, 2002.
, Resource ReSerVation Protocol (RSVP) ? Version 1 Functional Specification, 1997.
DOI : 10.17487/rfc2205
, IP Router Alert Option. IETF Standards Track document, RFC 2113, 1997.
DOI : 10.17487/rfc2113
, IPv6 Router Alert Option. IETF Standards Track document , RFC 2711, 1999.
DOI : 10.17487/rfc2711
, On the Impact of IP Option Processing, 2003.
, On the Impact of IP Option Processing -Part 2, 2004.
, End-to-end measurements on performance penalties of IPv4 options, IEEE Global Telecommunications Conference, 2004. GLOBECOM '04., 2004.
DOI : 10.1109/GLOCOM.2004.1378221
, Customer Support Bulletin, MLT), 2001.
, Host Identity Protocol Architecture. IETF draft (work in progress), draft-ietf-hip-arch-02, 2004.
, The Kerberos Network Authentication Service (V5) IETF Standards Track document, 2005.
, Framework for session set-up with media authorization . IETF Standards Track document, 2003.
, RTP: A Transport Protocol for Real-Time Applications. IETF Standards Track document, 2005.
, Requirements for internet hosts ? communication layers. IETF Standards Track document, RFC 1122, 1989.
, Definition of the Differentiated Services Field (DS Field) in the IPv4 and IPv6 Headers, 1998.
DOI : 10.17487/rfc2474
, Internet Protocol, Version 6 (IPv6) Specification). IETF Standards Track document, RFC 2460, 1998.
DOI : 10.17487/rfc1883
, Security Architecture for the Internet Protocol, 1998.
, The TLS Protocol Version 1.0. IETF Standards Track, RFC 2246, 1999.
, Network Ingress Filtering: Defeating Denial of Service Attacks which employ IP Source Address. IETF Best Current Practices document, RFC 2827, 2000.
, Ingress Filtering for Multihomed Networks. IETF Best Current Practices document, 2004.
DOI : 10.17487/rfc3704
, Interactive Connectivity Establishment (ICE): A Methodology for Network Address Translator (NAT) Traversal for Multimedia Session Establishment Protocols. IETF draft (work in progress), draft-ietf-mmusic-ice-03, 2004.
, The Alternative Network Address Types (ANAT) Semantics for the Session Description Protocol (SDP) Grouping Framework. IETF Standards Track document, 2005.
, Negotiation of NAT-Traversal in the IKE. IETF Standards Track document, 2005.
, UDP Encapsulation of IPsec ESP Packets. IETF Standards Track document, 2005.
, Real Time Control Protocol (RTCP) attribute in Session Description Protocol (SDP). IETF Standards Track document, 2003.
, NAT/Firewall NSLP Intra-Realm Considerations . Expired IETF draft, draft-aoun-nsis-nslp-natfw-intrarealm-01, 2004.
, Lightweight Directory Access Protocol (v3): Technical Specification . IETF Standards Track document, 2002.
DOI : 10.17487/rfc3377
URL : http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.169.3939
, Cryptographic Message Syntax (CMS) IETF Standards Track document, RFC, vol.3852, 2004.
DOI : 10.17487/rfc4853
, Protecting multiple contents with the Cryptographic Message Syntax (CMS)
DOI : 10.17487/rfc4073
, 509 Extensions for IP Addresses and AS Identifiers. IETF Standard Track document, 2004.
, A DNS RR for specifying the location of services (DNS SRV) IETF Standards Track document, RFC 2782, 2000.
, Public Key Cryptography for Initial Authentication in Kerberos. IETF Draft (work in progress), draft-ietf-cat-kerberos-pk-init-29, 2005.
, Network Address Translation -Protocol Translation (NAT- PT). IETF Standards Track document, RFC 2766, 2000.
DOI : 10.17487/rfc2766
, Generic Security Service Application Program Interface Version 2, Update 1. IETF Standards Track document, RFC 2743, 2000.
DOI : 10.17487/rfc2743
, The Kerberos Version 5 Generic Security Service Application Program Interface (GSS-API) Mechanism: Version 2. IETF Standards Track document, 2005.
, Addition of Kerberos Cipher Suites to Transport Layer Security (TLS). IETF Standards Track document, RFC 2712, 1999.
, Pre-Shared Key Ciphersuites for Transport Layer Security (TLS) IETF draft (work in progress), draft-ietf-tls-psk-09, 2005.
, Unix network programming, ACM SIGCOMM Computer Communication Review, vol.20, issue.2, 2004.
DOI : 10.1145/378570.378600
, Kerberized Internet Negotiation of Keys (KINK) IETF draft (work in progress), draft-ietf-kink-kink-07, 2005.
, Distributed firewalls, Login, pp.37-39, 1999.
, Implementing a distributed firewall, Proceedings of the 7th ACM conference on Computer and communications security , CCS '00
DOI : 10.1145/352600.353052
, Default Address Selection for Internet Protocol version 6 (IPv6) IETF Standards Track document, 2003.
, Security Considerations for IP Fragment Filtering, 1995.
DOI : 10.17487/rfc1858
, Protection Against a Variant of the Tiny Fragment Attack. IETF Informational document, RFC 3128, 2001.