Direct Data Placement Protocol / Remote Direct Memory Access Protocol Security
RFC 5042, “Direct Data Placement Protocol / Remote Direct Memory Access Protocol Security”, is a Proposed Standard document published in October 2007 by J. Pinkerton, E. Deleganes. It has since been updated by RFC 7146. The canonical text is published by the RFC Editor.
Abstract
This document analyzes security issues around implementation and use of the Direct Data Placement Protocol (DDP) and Remote Direct Memory Access Protocol (RDMAP). It first defines an architectural model for an RDMA Network Interface Card (RNIC), which can implement DDP or RDMAP and DDP. The document reviews various attacks against the resources defined in the architectural model and the countermeasures that can be used to protect the system. Attacks are grouped into those that can be mitigated by using secure communication channels across the network, attacks from Remote Peers, and attacks from Local Peers. Attack categories include spoofing, tampering, information disclosure, denial of service, and elevation of privilege. [STANDARDS-TRACK]
What “Proposed Standard” means
An entry-level standards-track specification: stable, peer-reviewed and a solid basis for implementation, though it may still evolve before becoming an Internet Standard.
The canonical text of RFC 5042 is hosted at rfc-editor.org. Available in TXT,HTML.
- RFC 5041 Direct Data Placement over Reliable Transports
- RFC 5043 Stream Control Transmission Protocol Direct Data Placement Adaptation
- RFC 5040 A Remote Direct Memory Access Protocol Specification
- RFC 5044 Marker PDU Aligned Framing for TCP Specification
- RFC 5045 Applicability of Remote Direct Memory Access Protocol and Direct Data Placement
- RFC 5038 The Label Distribution Protocol Implementation Survey Results
- RFC 5046 Internet Small Computer System Interface Extensions for Remote Direct Memory Access
- RFC 5037 Experience with the Label Distribution Protocol