RFC 4808 · INFORMATIONAL · 2007
SUN · 14 JUN 2026
Key Change Strategies for TCP-MD5
Overview
RFC 4808, “Key Change Strategies for TCP-MD5”, is an Informational document published in March 2007 by S. Bellovin. The canonical text is published by the RFC Editor.
Abstract
The TCP-MD5 option is most commonly used to secure BGP sessions between routers. However, changing the long-term key is difficult, since the change needs to be synchronized between different organizations. We describe single-ended strategies that will permit (mostly) unsynchronized key changes. This memo provides information for the Internet community.
What “Informational” means
Published for the general information of the community. It does not define an IETF standard and carries no standards-track status.
Read this RFC
The canonical text of RFC 4808 is hosted at rfc-editor.org. Available in TXT,HTML.
Other RFCs from 2007
- RFC 4807 IPsec Security Policy Database Configuration MIB
- RFC 4809 Requirements for an IPsec Certificate Management Profile
- RFC 4806 Online Certificate Status Protocol Extensions to IKEv2
- RFC 4810 Long-Term Archive Service Requirements
- RFC 4805 Definitions of Managed Objects for the DS1, J1, E1, DS2, and E2 Interface Types
- RFC 4811 OSPF Out-of-Band Link State Database Resynchronization
- RFC 4804 Aggregation of Resource ReSerVation Protocol Reservations over MPLS TE/DS-TE Tunnels
- RFC 4812 OSPF Restart Signaling