Article: DoD, DoJ press FCC for industry-wide BGP security standard

Josh Luthman josh at imaginenetworksllc.com
Tue Sep 20 18:18:58 UTC 2022


Does another barrier to entry make sense?  This makes it even more
difficult still for new companies to start.

Do we trust the FCC to come up with an industry wide fool proof (whatever
that means) security standard?  This is the same government that can't stop
fake phone calls.

On Tue, Sep 20, 2022 at 1:39 PM Randy Bush <randy at psg.com> wrote:

> > Way overdue! In the last 4 weeks, I've had at least 20 diff
> > conversations with FSI Network operators re: BGP hijacking, how to
> > detect and in the future, mitigate with higher levels of success. Come
> > on BGP RPKI/ROA adaption. I found the easiest way is via ISP pressure
> > to implement dropping invalid routes.
>
> to remind, ROV is a safety mechanism, not a security mechanism.  it is
> proving, as intended, to mitigate mistakes.  which is very cool.  but it
> does not mitigate attacks of any sophistication.
>
> randy
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.nanog.org/pipermail/nanog/attachments/20220920/fe301ff4/attachment.html>


More information about the NANOG mailing list