FYI: BGP Security Analysis

Ran Atkinson rja at
Wed Dec 31 19:15:55 UTC 1997

Folks interested in Paul Vixie's recent thread (and others
interested in inter-domain routing) should read:

which is a preliminary security analysis of BGP.

It is also useful for folks to read draft-heffernan-* and to
actually deploy the TCP MD5 Authentication option for BGP sessions
(to protect against low-level attacks, not as protection for
bogus prefix advertisements from otherwise legitimate BGP peers).

Apologies for posting content onto NANOG and disturbing the
usual noise.

rja at

More information about the NANOG mailing list