nanog mailing list archives

Re: BGP Security

From: Sandy Murphy <sandy () tislabs com>
Date: Mon, 28 Nov 2005 10:32:33 -0500 (EST)

I am placing the module to test the 
UPDATE message before the formation of Adj-RIB-out. So that the false / 
malicious information wont go beyond my router
...
Would like to know ur views 
about this approach.


I think all the various published approaches have this goal in mind,
so the approach is fine.

The hard part comes in deciding how to test the UPDATE message to
detect "false/malicious information".  There's lots of debate about
that.

--Sandy

Current thread:

BGP Security Kaustubh Atrawalkar (Nov 26)
- Re: BGP Security Steven M. Bellovin (Nov 27)
- <Possible follow-ups>
- Re: BGP Security Sandy Murphy (Nov 28)