[180759] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

RE: Routing Insecurity (Re: BGP in the Washington Post)

daemon@ATHENA.MIT.EDU (Russ White)
Wed Jun 10 09:20:58 2015

X-Original-To: nanog@nanog.org
From: "Russ White" <russw@riw.us>
To: "'Randy Bush'" <randy@psg.com>
In-Reply-To: <m2381zpxvf.wl%randy@psg.com>
Date: Wed, 10 Jun 2015 09:17:36 -0400
Cc: 'North American Network Operators' Group' <nanog@nanog.org>
Errors-To: nanog-bounces@nanog.org

> rtfm.  bgpsec key aggregation is at the descretion of the operator.
> they could use one key to cover 42 ASs.

I've been reading the presentations and the mailing lists, both of which
imply you should use one key per router for security reasons. I would tend
to agree with that assessment, BTW. 

Russ


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[180759] in North American Network Operators' Group

RE: Routing Insecurity (Re: BGP in the Washington Post)

daemon@ATHENA.MIT.EDU (Russ White)Wed Jun 10 09:20:58 2015

daemon@ATHENA.MIT.EDU (Russ White)
Wed Jun 10 09:20:58 2015