Re: [Idr] draft-cgray-ietf-bgp-exceptions
"Thomas Mangin" <thomas.mangin@exa-networks.co.uk> Mon, 27 July 2015 07:50 UTC
Return-Path: <thomas.mangin@exa-networks.co.uk>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9106B1ACF55 for <idr@ietfa.amsl.com>; Mon, 27 Jul 2015 00:50:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 1.999
X-Spam-Level: *
X-Spam-Status: No, score=1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, MANGLED_BODY=2.3, MANGLED_LIST=2.3, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FfzxY6LGLufs for <idr@ietfa.amsl.com>; Mon, 27 Jul 2015 00:50:46 -0700 (PDT)
Received: from out-1.mail.exa.net.uk (out-1.mail.exa.net.uk [82.219.4.129]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 173A01AD06A for <idr@ietf.org>; Mon, 27 Jul 2015 00:50:45 -0700 (PDT)
Received: from smtp-5.exa.net.uk (unknown [82.219.5.5]) by out-1.mail.exa.net.uk (ExaSMTPD) with ESMTP id 937D41C0061; Mon, 27 Jul 2015 08:50:43 +0100 (BST)
Received: from smtp-5.exa.net.uk (localhost [127.0.0.1]) by smtp-5.exa.net.uk (ExaSMTPD) with ESMTP id 8070E40257; Mon, 27 Jul 2015 08:50:43 +0100 (BST)
Received: from [192.168.1.234] (ABayonne-652-1-470-27.w86-221.abo.wanadoo.fr [86.221.127.27]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) (Authenticated sender: thomas@mangin.com) by smtp-5.exa.net.uk (ExaSMTPD) with ESMTPSA; Mon, 27 Jul 2015 08:50:43 +0100 (BST)
From: Thomas Mangin <thomas.mangin@exa-networks.co.uk>
To: idr@ietf.org, Saad Mansoor <s.mansoor@bangor.ac.uk>
Date: Mon, 27 Jul 2015 08:50:39 +0100
Message-ID: <125BB0B3-79F2-4863-872A-7B70E8204116@exa-networks.co.uk>
In-Reply-To: <7D9A3D68-2FBC-4A3C-9BB5-66E531CD22D9@bangor.ac.uk>
References: <7D9A3D68-2FBC-4A3C-9BB5-66E531CD22D9@bangor.ac.uk>
MIME-Version: 1.0
Content-Type: text/plain; format="flowed"
X-Mailer: MailMate (1.9.2r5107)
X-Virus-Scanned: ClamAV using ClamSMTP
Archived-At: <http://mailarchive.ietf.org/arch/msg/idr/vuoczCfU6JUPIgOeGIAIrf736Cc>
Subject: Re: [Idr] draft-cgray-ietf-bgp-exceptions
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 27 Jul 2015 07:50:50 -0000
Hello Cameron, Small things : > This attribute is a single 6-bit unsigned value (0-127) .. This should read 7-bit or (0-63) I am not sure the encoding example is clear enough / right. Could you please also explain why this proposal is superior to the already widely deployed RTBH. https://tools.ietf.org/rfc/rfc3882.txt and https://tools.ietf.org/html/rfc5635 I fail to grasp the advantage of your solution. Thomas http://exa.net.uk/about/contact-us On 26 Jul 2015, at 21:43, Cameron Gray wrote: > My PhD work surrounds applying traditional graph theory to Internet > Security. One of the ideas so far, is the concept of Exceptions. A > routing message designed to prevent traffic matching the NLRI > information from reaching the destination. Effectively, allowing the > BGP infrastructure to be used as a collaborative, distributed packet > filter. This could mean (after a successful deployment to a critical > mass) the end of traditional packet based attacks by stopping them at > (or as close as reasonably possible) the source. > > I have submitted a personal Internet Draft for adding such a > capability to BGP-4; > https://tools.ietf.org/html/draft-cgray-ietf-bgpexceptions-00 > taking all that I could reasonable foresee into account. I welcome > all feedback and discussion on this draft. > > There is further work to be completed (by me) for a protocol to > offload calculation of the Exceptions required to a general-purpose > server as Clique Detection and other graph solutions are NP-Hard. > Additionally I will create the prototype implementation, most likely > using Quagga as a basis. > > Thank you all for your time and consideration. > > Cameron Gray > Doctoral Student > School of Computer Science > > Email: c.gray@bangor.ac.uk > > Bangor University, Bangor, Gwynedd, LL57 2DG, UK. > > > Rhif Elusen Gofrestredig 1141565 - Registered Charity No. 1141565 > > Gall y neges e-bost hon, ac unrhyw atodiadau a anfonwyd gyda hi, > gynnwys deunydd cyfrinachol ac wedi eu bwriadu i'w defnyddio'n unig > gan y sawl y cawsant eu cyfeirio ato (atynt). Os ydych wedi derbyn y > neges e-bost hon trwy gamgymeriad, rhowch wybod i'r anfonwr ar unwaith > a dilewch y neges. Os na fwriadwyd anfon y neges atoch chi, rhaid i > chi beidio a defnyddio, cadw neu ddatgelu unrhyw wybodaeth a gynhwysir > ynddi. Mae unrhyw farn neu safbwynt yn eiddo i'r sawl a'i hanfonodd yn > unig ac nid yw o anghenraid yn cynrychioli barn Prifysgol Bangor. Nid > yw Prifysgol Bangor yn gwarantu bod y neges e-bost hon neu unrhyw > atodiadau yn rhydd rhag firysau neu 100% yn ddiogel. Oni bai fod hyn > wedi ei ddatgan yn uniongyrchol yn nhestun yr e-bost, nid bwriad y > neges e-bost hon yw ffurfio contract rhwymol - mae rhestr o lofnodwyr > awdurdodedig ar gael o Swyddfa Cyllid Prifysgol Bangor. > > This email and any attachments may contain confidential material and > is solely for the use of the intended recipient(s). If you have > received this email in error, please notify the sender immediately and > delete this email. If you are not the intended recipient(s), you must > not use, retain or disclose any information contained in this email. > Any views or opinions are solely those of the sender and do not > necessarily represent those of Bangor University. Bangor University > does not guarantee that this email or any attachments are free from > viruses or 100% secure. Unless expressly stated in the body of the > text of the email, this email is not intended to form a binding > contract - a list of authorised signatories is available from the > Bangor University Finance Office. > > _______________________________________________ > Idr mailing list > Idr@ietf.org > https://www.ietf.org/mailman/listinfo/idr
- [Idr] draft-cgray-ietf-bgp-exceptions Cameron Gray
- Re: [Idr] draft-cgray-ietf-bgp-exceptions Cameron Gray
- Re: [Idr] draft-cgray-ietf-bgp-exceptions Thomas Mangin
- Re: [Idr] draft-cgray-ietf-bgp-exceptions Cameron Gray
- Re: [Idr] draft-cgray-ietf-bgp-exceptions Robert Raszuk
- Re: [Idr] draft-cgray-ietf-bgp-exceptions Cameron Gray