"Is BGP safe yet?" test

Andrey Kostin ankost at podolsk.ru
Mon Apr 20 20:04:38 UTC 2020


Denys Fedoryshchenko писал 2020-04-20 15:27:

> 
> And most important, the most common answer:
> All Tier-1 implemented it? No.
> Major hosting operators, such as AWS, gcloud, etc? - No.
> So...

Absolutely, RPKI has different scale of effectiveness and benefits for 
big telecoms or clouds vs small ISPs or datacenters. On the other hand, 
the impact of such "BGP safety" test is completely the opposite. For big 
guys it is the most effective to implement, but being "not BGP safe yet" 
- "yeah, who cares!" or in best case add to the plan for the next fiscal 
year. But for small market players it's vise-versa: effect of filtering 
is minimal but pressure from "not being safe" may be very real.

Kind regards,
Andrey



More information about the NANOG mailing list