Re: BGP-4+
Geert Jan de Groot <GeertJan.deGroot@ripe.net> Mon, 23 December 1996 17:00 UTC
Received: from cnri by ietf.org id aa02603; 23 Dec 96 12:00 EST
Received: from merit.edu by CNRI.Reston.VA.US id aa12653; 23 Dec 96 12:00 EST
Received: (from daemon@localhost) by merit.edu (8.8.4/merit-2.0) id LAA09773
for idr-outgoing; Mon, 23 Dec 1996 11:07:55 -0500 (EST)
Received: from interlock.ans.net (interlock.ans.net [147.225.5.5]) by
merit.edu (8.8.4/merit-2.0) with SMTP id LAA09764 for <bgp@merit.edu>;
Mon, 23 Dec 1996 11:07:52 -0500 (EST)
Received: by interlock.ans.net id AA00704
(InterLock SMTP Gateway 3.0 for bgp@ans.net);
Mon, 23 Dec 1996 11:07:44 -0500
Received: by interlock.ans.net (Internal Mail Agent-1);
Mon, 23 Dec 1996 11:07:44 -0500
Message-Id: <9612231607.AA02505@ncc.ripe.net>
To: Yakov Rekhter <yakov@cisco.com>
Cc: bgp@ans.net
From: Geert Jan de Groot <GeertJan.deGroot@ripe.net>
X-Organization: RIPE Network Coordination Centre
X-Phone: +31 20 592 5065
Subject: Re: BGP-4+
In-Reply-To: Your message of "Wed, 18 Dec 1996 14:59:12 PST."
<199612182259.OAA20995@puli.cisco.com>
Date: Mon, 23 Dec 1996 17:07:07 +0100
Sender: owner-idr@merit.edu
Precedence: bulk
On Wed, 18 Dec 96 14:59:12 PST Yakov Rekhter wrote: > > 2) Security Considerations > > BGP-4++ is just as secure or un-secure as BGP-4. > To be more precise the two new attributes do not alter > BGP-4 security properties. > > Is it your understanding that users need this security or is > > TCP good enough? > I would like to get a feedback from the WG on this question. I think you need to re-focus your question. What are you trying to protect? a. RST-attachs to BGP sessions and such, including spoofing of BGP data? IPSEC-AH will fix that in an exportable manner.. b. People knowingly and willingly injecting false routes (such as host route) to play games with traffic? That's a much harder problem and IMHO that would be out of scope for BGP4++ I think you'll get more useful answers if you post your questions that way. What do others think? Geert Jan
- Re: BGP-4+ Yakov Rekhter
- Re: BGP-4+ Susan Hares
- Re: BGP-4+ Susan Hares
- Re: BGP-4+ John W. Stewart III
- Re: BGP-4+ Yakov Rekhter
- Re: BGP-4+ John W. Stewart III
- Re: BGP-4+ Yakov Rekhter
- Re: BGP-4+ Yakov Rekhter
- Re: BGP-4+ Brandon Black
- Re: BGP-4+ John W. Stewart III
- Re: BGP-4+ Dorian R. Kim
- Re: BGP-4+ Yakov Rekhter
- Re: BGP-4+ Tony Bates
- BGP-4+ Dave Katz
- Re: BGP-4+ Dimitry Haskin
- Re: BGP-4+ John W. Stewart III
- Re: BGP-4+ Brad Smith
- Re: BGP-4+ Dorian R. Kim
- Re: BGP-4+ bmanning
- Re: BGP-4+ Tony Li
- Re: BGP-4+ Brad Smith
- Re: BGP-4+ Dorian R. Kim
- Re: BGP-4+ Brad Smith
- Re: BGP-4+ Curtis Villamizar
- Re: BGP-4+ Curtis Villamizar
- Re: BGP-4+ Curtis Villamizar
- Re: BGP-4+ Curtis Villamizar
- Re: BGP-4+ Dennis Ferguson
- Re: BGP-4+ Brandon Black
- Re: BGP-4+ Yakov Rekhter
- Re: BGP-4+ Dennis Ferguson
- Re: BGP-4+ John W. Stewart III
- Re: BGP-4+ Yakov Rekhter
- Re: BGP-4+ Yakov Rekhter
- Re: BGP-4+ John W. Stewart III
- Re: BGP-4+ Yakov Rekhter
- Re: BGP-4+ Geert Jan de Groot
- Re: BGP-4+ Brad Smith
- Re: BGP-4+ [QOS et al] John G. Scudder
- Re: BGP-4+ Paul Traina