From c91df609f8a94508ec783d21099b99b78c385e17 Mon Sep 17 00:00:00 2001 From: Thomas Fossati Date: Fri, 10 Nov 2023 10:35:49 +0100 Subject: [PATCH] Achim's suggestion --- draft-ietf-tls-dtls-rrc.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/draft-ietf-tls-dtls-rrc.md b/draft-ietf-tls-dtls-rrc.md index 7b6ff7b..f1ca01d 100644 --- a/draft-ietf-tls-dtls-rrc.md +++ b/draft-ietf-tls-dtls-rrc.md @@ -72,7 +72,7 @@ that the sending peer is in fact reachable at the source address (and port) indi {{regular}} of this document explains the fundamental mechanism that aims to reduce the DDoS attack surface. Additionally, in {{enhanced}}, a more advanced address validation mechanism is discussed. -This mechanism is designed to counteract off-path attackers who try to place themselves on-path by racing packets that trigger address rebinding at the receiver. +This mechanism is designed to counteract off-path attackers trying to place themselves on-path by racing packets that trigger address rebinding at the receiver. To gain a detailed understanding of the attacker model, please refer to {{attacker}}. Apart from of its use in the context of CID-address binding updates,