[86998] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: BGP Security

daemon@ATHENA.MIT.EDU (Sandy Murphy)
Mon Nov 28 10:35:28 2005

Date: Mon, 28 Nov 2005 10:32:33 -0500 (EST)
From: Sandy Murphy <sandy@tislabs.com>
To: nanog@merit.edu
Cc: sandy@tislabs.com
Errors-To: owner-nanog@merit.edu

>I am placing the module to test the 
>UPDATE message before the formation of Adj-RIB-out. So that the false / 
>malicious information wont go beyond my router
>...
>Would like to know ur views 
>about this approach.

I think all the various published approaches have this goal in mind,
so the approach is fine.

The hard part comes in deciding how to test the UPDATE message to
detect "false/malicious information".  There's lots of debate about
that.

--Sandy


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[86998] in North American Network Operators' Group

Re: BGP Security

daemon@ATHENA.MIT.EDU (Sandy Murphy)Mon Nov 28 10:35:28 2005

daemon@ATHENA.MIT.EDU (Sandy Murphy)
Mon Nov 28 10:35:28 2005