nanog mailing list archives
Re: soBGP deployment
From: Randy Bush <randy () psg com>
Date: Sat, 21 May 2005 08:25:54 -1000
If you are an operator, would you deploy soBGP or something like it? If not, why not.
as smb has said for years, routing and dns are the two largest vulnerabilities. something like it, for sure. but i vastly prefer the s-bgp approach as it maps closely to bgp operational reality, and does not rely on a published policy database, which we have seen fail for over a decade, etc. we should learn from the decade-long problems with the deployment issues in dnssec, and map routing security as closely as possible to operational protocol and reality. randy
Current thread:
- soBGP deployment vijay gill (May 19)
- Re: soBGP deployment Christopher Woodfield (May 20)
- Re: soBGP deployment Christopher L. Morrow (May 20)
- Re: soBGP deployment Andrew Dul (May 21)
- Re: soBGP deployment Randy Bush (May 21)
- Re: soBGP deployment Pekka Savola (May 21)
- Re: soBGP deployment Steven M. Bellovin (May 21)
- Re: soBGP deployment Pekka Savola (May 21)
- Re: soBGP deployment Randy Bush (May 21)
- Re: soBGP deployment Russ White (May 21)
- Re: soBGP deployment william(at)elan.net (May 23)
- Re: soBGP deployment Pekka Savola (May 21)
- Re: soBGP deployment Jeroen Massar (May 21)
- Re: soBGP deployment Russ White (May 21)
- Re: soBGP deployment Larry J. Blunk (May 23)
- Re: soBGP deployment Randy Bush (May 23)
- Re: soBGP deployment Christopher Woodfield (May 20)