BGP Security Research Question

Nick Hilliard nick at foobar.org
Tue Nov 4 13:00:45 UTC 2014


On 04/11/2014 12:38, sthaug at nethelp.no wrote:
> These mechanisms do little or nothing to protect against unauthorized
> origination of routing information. There are plenty of examples which
> say it has *not* been enough, see for instance the Pakistan Telecom -
> Youtube incident in 2008.

mis-origination and related problems are all policy problems rather than
technical transport issues.  Policy implies human input at some stage along
the chain, so probably the only way we'll ever see the end of unintended
prefix leaks is to completely eliminate human input in all aspects of
routing policy management.

Nick



More information about the NANOG mailing list