Background


Ptacek and Newsham, "Insertion, Evasion, and Denial of Service: Eluding Network Intrusion Detection", January 1998

1.5 years later, no IDS vendor had fixed their software - except NFR

Fragrouter released May 1999 (RAID '99)

2 months later, 3 vendors immediately implemented basic TCP/IP reassembly