Routing Insecurity (Re: BGP in the Washington Post)

Roland Dobbins rdobbins at arbor.net
Tue Jun 2 09:01:40 UTC 2015


On 2 Jun 2015, at 15:46, Denis Fondras wrote:

> Everyone is managing its own routing policy, not everyone is managing 
> its own DNS root.

Everyone CAN manage his own DNS root; everyone CAN use /etc/hosts; 
everyone CAN switch to an altogether different name resolution such as 
PNRP.

Everyone CAN'T switch to an alternate global routing table.

So, what happens when the authorities in some locale start pressing for 
the cancellation of relevant certificates utilized in routing PKI, 
and/or order operators under their jurisdiction to reject same?

-----------------------------------
Roland Dobbins <rdobbins at arbor.net>



More information about the NANOG mailing list