Max Fragment Length extension

E258092

The Max Fragment Length extension is a Transport Layer Security (TLS) protocol feature that allows clients and servers to negotiate smaller-than-default record sizes to accommodate constrained environments or avoid IP fragmentation.

All labels observed (1)

Label Occurrences
Max Fragment Length extension canonical 2

How this entity was disambiguated

Statements (48)

Predicate Object
instanceOf TLS extension
Transport Layer Security feature
abbreviation MFL
allowsMaxFragmentLength 1024 bytes
2048 bytes
4096 bytes
512 bytes
appliesTo TLS application data records
TLS handshake records
benefit helps constrained embedded devices
helps devices with small MTUs
reduces memory requirements for record buffers
reduces risk of IP-layer fragmentation
category TLS performance and transport optimization
defaultRecordSizeWithoutExtension 16384 bytes
2^14 bytes
definedBy Internet Engineering Task Force
definedIn RFC 6066
doesNotAffect TLS alert record size semantics
extensionTypeCode 1
IANAExtensionType max_fragment_length
introducedYear 2011
negotiates maximum TLS record payload size
negotiationDirection client to server
negotiationOutcome applies for the duration of the TLS session
notApplicableTo RFC 8446
surface form: TLS 1.3
partOfProtocol TLS 1.0
TLS 1.1
TLS 1.2
TLS
surface form: Transport Layer Security
purpose to accommodate constrained environments
to avoid IP fragmentation
to negotiate smaller-than-default TLS record sizes
relatedTo IP fragmentation
TLS
surface form: TLS record layer

path MTU
requires support by both TLS client and TLS server
RFCNumber 6066
scope per TLS session
sectionOfRFC RFC 6066
surface form: RFC 6066 Section 4
securityConsideration may increase observability of traffic patterns due to more records
smaller records increase per-record overhead
selectionRule server must not select a larger fragment length than offered by client
server must not select a value not offered by client
standardTrack IETF Internet standards process
surface form: IETF Standards Track
status standardized
usedIn TLS ClientHello
ServerHello with extensions
surface form: TLS ServerHello

How these facts were elicited

Referenced by (2)

Full triples — surface form annotated when it differs from this entity's canonical label.

RFC 3546 defines Max Fragment Length extension
RFC 6066 defines Max Fragment Length extension