nanog mailing list archives

Re: BGP over TLS

From: Tony Finch <dot () dotat at>
Date: Mon, 21 Oct 2019 18:04:25 +0100

Joe Abley <jabley () hopcount ca> wrote:


Well, TLS exists within a TCP session, and that TCP session could
incorporate the MD5 signature option. I guess.


AIUI this might be useful to make it a bit harder to kill the TCP session,
tho I think modern TCPs are less vulnerable to off-path RST injection
than TCPs were when TCP-MD5 was introduced

Tony.
-- 
f.anthony.n.finch  <dot () dotat at>  http://dotat.at/
German Bight, Humber, Thames: Cyclonic, mainly northeast, becoming west later,
3 to 5, occasionally 6 at first. Slight or moderate. Occasional rain. Good,
occasionally poor.

Current thread:

Re: "Using Cloud Resources to Dramatically Improve Internet Routing", (continued)
- - - Re: "Using Cloud Resources to Dramatically Improve Internet Routing" Julien Goodwin (Oct 20)
    - Message not available
    - Re: "Using Cloud Resources to Dramatically Improve Internet Routing" Bjørn Mork (Oct 20)
    - Re: "Using Cloud Resources to Dramatically Improve Internet Routing" Christopher Morrow (Oct 20)
    - BGP over TLS (was: Re: "Using Cloud Resources to Dramatically Improve Internet Routing") Bjørn Mork (Oct 21)
    - Re: BGP over TLS (was: Re: "Using Cloud Resources to Dramatically Improve Internet Routing") Julien Goodwin (Oct 21)
    - RE: BGP over TLS (was: Re: "Using Cloud Resources to Dramatically Improve Internet Routing") Keith Medcalf (Oct 21)
    - Re: BGP over TLS (was: Re: "Using Cloud Resources to Dramatically Improve Internet Routing") Radu-Adrian Feurdean (Oct 21)
    - RE: BGP over TLS Robert McKay (Oct 21)
    - RE: BGP over TLS Keith Medcalf (Oct 21)
    - Re: BGP over TLS Joe Abley (Oct 21)
    - Re: BGP over TLS Tony Finch (Oct 21)
    - Re: BGP over TLS Jared Mauch (Oct 21)
    - Re: BGP over TLS Grant Taylor via NANOG (Oct 21)
    - Re: BGP over TLS Julien Goodwin (Oct 22)
    - Re: BGP over TLS Christopher Morrow (Oct 22)
    - RE: BGP over TLS Keith Medcalf (Oct 22)
    - Re: BGP over TLS Chris Adams (Oct 22)
    - Re: BGP over TLS Brandon Martin (Oct 22)
    - Re: BGP over TLS Jared Mauch (Oct 22)
    - RE: BGP over TLS Keith Medcalf (Oct 22)
    - Re: BGP over TLS Jared Mauch (Oct 22)

(Thread continues...)