IETF Logo Mail Archive

WG Action: Secure Inter-Domain Routing (sidr)

IESG Secretary <iesg-secretary@ietf.org> Tue, 18 April 2006 22:30 UTC

Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1FVyhz-0002Bd-Uy; Tue, 18 Apr 2006 18:30:07 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1FVyhy-0002BQ-5c; Tue, 18 Apr 2006 18:30:06 -0400
Received: from stsc1260-eth-s1-s1p1-vip.va.neustar.com ([156.154.16.129] helo=pine.neustar.com) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1FVyhw-0001oC-Qo; Tue, 18 Apr 2006 18:30:06 -0400
Received: from stiedprstage1.ietf.org (stiedprstage1.va.neustar.com [10.31.47.10]) by pine.neustar.com (8.12.8/8.12.8) with ESMTP id k3IMU1vP030223 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Tue, 18 Apr 2006 22:30:01 GMT
Received: from ietf by stiedprstage1.ietf.org with local (Exim 4.43) id 1FVyht-0004a0-MK; Tue, 18 Apr 2006 18:30:01 -0400
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0
To: ietf-announce@ietf.org
From: IESG Secretary <iesg-secretary@ietf.org>
Message-Id: <E1FVyht-0004a0-MK@stiedprstage1.ietf.org>
Date: Tue, 18 Apr 2006 18:30:01 -0400
X-Spam-Score: -2.8 (--)
X-Scan-Signature: 6e922792024732fb1bb6f346e63517e4
Cc: Sandra Murphy <sandy@tislabs.com>, Geoff Huston <gih@apnic.net>, sidr@ietf.org
Subject: WG Action: Secure Inter-Domain Routing (sidr)
X-BeenThere: ietf-announce@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: ietf-announce.ietf.org
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:ietf-announce@ietf.org>
List-Help: <mailto:ietf-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=subscribe>
Errors-To: ietf-announce-bounces@ietf.org
Status: O

A new IETF working group has been formed in the Routing Area. For additional
information, please contact the Area Directors or the WG Chairs.

+++

Secure Inter-Domain Routing (sidr)
====================================

Current Status: Active Working Group

Chairs: 
      Geoff Huston      <gih@apnic.net>
      Sandra Murphy     <sandy@tislabs.com>

Routing Area Directors:
      Bill Fenner       <fenner at research.att.com>
      Ross Callon       <rcallon@juniper.net>

Routing Area Advisor:
      Ross Callon <rcallon@juniper.net> 

Technical Advisor:
      Steven Bellovin   <smb@cs.columbia.edu>

Mailing Lists:
General Discussion: sidr at ietf.org
To Subscribe: sidr-request at ietf.org
In Body: (un)subscribe
Archive: http://www.ietf.org/mail-archive/web/sidr/index.html

Description of Working Group:

One of the areas of vulnerability for large scale Internet
environments lies in the area of inter-domain routing. The basic
security questions that can be posed regarding routing information
are whether the originating Autonomous System is authorized to
advertise an address prefix by the holder of that prefix, whether
the originating AS is accurately identified by the originating
Autonomous System Number in the advertisement, and the validity of
both the address prefix and the Autonomous System Number. A related
question concerns the level of trust than can be ascribed to
attributes of a route object in terms of their authenticity,
including consideration of the AS Path attribute.

The Routing Protocol Security Group (RPSEC) has been chartered to
document the security requirements for routing systems, and, in
particular, to produce a document on BGP security requirements.

The scope of work in the SIDR working group is to formulate an
extensible architecture for an interdomain routing security
framework. This framework must be capable of supporting incremental
additions of functional components. 
The SIDR working group will develop security mechanisms
which fulfill those requirements which have been agreed on
by the RPSEC working group.
In developing these mechanisms, the SIDR working group will take 
practical deployability into consideration. 

The scope of work will include describing the use of certification
objects for supporting the distribution of authorization and
authentication information. Both hierarchic and distributed non-
hierarchic trust systems are intended to be supported within this
framework. The intended support of both forms of trust models is to
allow for the use of this framework for routing security in diverse
routing environments that have different underlying trust
characteristics.

The scope of work is limited to inter-domain router-to-router
protocols only, for both unicast and multicast systems.

The SIDR working group is charged with the following tasks:

- Document an extensible interdomain routing security architecture

- Document the use of certification objects within this secure
routing architecture

- Document specific routing functionality modules within this
architecture that are designed to address specific secure routing
requirements as they are determined by the RPSEC Working Group

Goals and Milestones:

Aug-06 Submit initial draft on inter-domain routing security
architecture

Sep-06 Submit initial draft on certificate objects to be used
within this architecture

Sep-06 Submit initial draft on securing origination of routing
information

Mar-07 Submit routing security architecture for publication as an
Informational RFC

May-07 Submit description of use certificate objects by this
architecture as an Informational RFC

June-07 Submit secure origination mechanism as a Proposed Standard

Aug-07 Evaluate progress, recharter with new goals or shutdown.

_______________________________________________
IETF-Announce mailing list
IETF-Announce@ietf.org
https://www1.ietf.org/mailman/listinfo/ietf-announce

v2.23.0 | Report a Bug | By Email