nanog mailing list archives

Re: soBGP deployment

From: Edward Lewis <Ed.Lewis () neustar biz>
Date: Mon, 23 May 2005 12:18:08 -0400


At 11:27 -0400 5/23/05, Larry J. Blunk wrote:

   I suspect this was due to the fact that template submissions
were not fully automated at the time and required human
review (disclaimer: I worked for the MichNet side of Merit
back then and was not intimately familiar with PRDB
operations).


It could have been the tools.  (I can't argue, I wasn't there.)

Here's another thought. Much like the comparison of SSH and DNSSECin this reply of mine from last March:

    http://www.merit.edu/mail.archives/nanog/2005-03/msg00694.html

I.e., the "mythical core" needs work. This time it's the addressorganizations and routing elements.

Yet another thought. Skimming through this thread, and only beingslightly aware of sBGP and soBGP in past years, some concepts remindme of work under DARPA's Active Nets research done in the late 90's.(http://www.darpa.mil/ato/programs/activenetworks/actnet.htm)


Some things I learned then:

1) Keep the security ancillary data nearby. You might need it whenthe source of the data is unreachable (perhaps because of an incidentlike a flood).

2) Appending signatures is dicey. It has to be all public key andthere's never a guarantee that the latest signer hasn't stripped outprevious entries. (That could make a longer path seem shorter inorder to redirect traffic.)

IMHO - the inherent problem is that a router is trying to work insidethe plane of activity (meaning it can only talk to it's nearestneighbors), but it takes the view point of something with ubiquitousknowledge to know if every thing is cool. How can you do thiswithout a trusted third party involved somewhere, in a way that isnot obtrusive (whether at registration time or at run time)?

Dijkstra's shortest path algorithms (an example IGP) work "in theplane" because it manages to mimic the ubiquitous view. You aren'tafraid that someone is "not playing my the rules." When you areworking with security (algorithms), you don't have that safety belt.


And a final thought...

Security ought to not make the system being protected brittle. Likethe example of routing changes being held up until the paperwork wentthrough - maybe an improvement in tools will enable this. But thinkof the long term impact - who will be paying to keep the tools andsystem up to date?


--
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Edward Lewis                                                +1-571-434-5468
NeuStar

If you knew what I was thinking, you'd understand what I was saying.

Current thread:

Re: soBGP deployment, (continued)
- - - Re: soBGP deployment Steven M. Bellovin (May 23)
    - Re: soBGP deployment Randy Bush (May 23)
    - Re: soBGP deployment Randy Bush (May 23)
    - Re: soBGP deployment Tony Li (May 23)
    - Re: soBGP deployment Randy Bush (May 24)
    - Re: soBGP deployment Russ White (May 24)
    - Re: soBGP deployment Randy Bush (May 24)
    - Re: soBGP deployment Michael . Dillon (May 23)
    - Re: soBGP deployment Russ White (May 23)
    - Re: soBGP deployment Russ White (May 23)
    - Re: soBGP deployment Edward Lewis (May 23)
    - Re: soBGP deployment Michael . Dillon (May 23)
    - Re: soBGP deployment william(at)elan.net (May 23)
    - Re: soBGP deployment bmanning (May 23)
    - Re: soBGP deployment Daniel Golding (May 23)
    - Re: soBGP deployment Jeroen Massar (May 23)
    - Re: soBGP deployment bmanning (May 23)
    - Re: soBGP deployment Edward Lewis (May 23)
    - Re: soBGP deployment Daniel Golding (May 23)
    - Re: soBGP deployment Valdis . Kletnieks (May 23)
    - Re: soBGP deployment Brad Knowles (May 23)

(Thread continues...)