Secure Path MTU discovery: framework
This document presents a framework for a secure path MTU discovery which intend to improve the security compared to the current method. The rfc1191 [5] method relies on unauthenticated packets sent by routers on the path. The lack of authentication allows an attacker to send fake packets and forces the host to instensively fragment all packets (see Appendix A).