RIPE IP Anti-Spoofing Task Force

This Task Force is currently inactive.

IP source address spoofing is the practice of originating IP datagrams with source addresses other than those assigned to the host of origin. In simple words, the host pretends to be some other host.

This can be exploited in various ways, most notably to execute Denial of Service (DoS) amplification attacks which cause an amplifier host to send traffic to the spoofed address.

There are many recommendations to prevent IP spoofing by ingress filtering, e.g. checking source addresses of IP datagrams close to the network edge.

At RIPE 52 in Istanbul, RIPE established a Task Force that promoted deployment of ingress filtering at the network edge by raising awareness and providing indirect incentives for deployment.

Document ripe-379 provided the task force charter and the initial time-line.