IETF Logo Mail Archive

Re: [RPSEC] BGP Security Requirements v08

Curtis Villamizar <curtis@occnc.com> Wed, 18 July 2007 18:10 UTC

Return-path: <rpsec-bounces@ietf.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1IBDyb-0005OS-0B; Wed, 18 Jul 2007 14:10:17 -0400
Received: from rpsec by megatron.ietf.org with local (Exim 4.43) id 1IBDyV-0005KT-Fe for rpsec-confirm+ok@megatron.ietf.org; Wed, 18 Jul 2007 14:10:11 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1IBDyV-0005KJ-65 for rpsec@ietf.org; Wed, 18 Jul 2007 14:10:11 -0400
Received: from 69.37.59.172.adsl.snet.net ([69.37.59.172] helo=harbor.brookfield.occnc.com) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1IBDyT-0000Tn-Sn for rpsec@ietf.org; Wed, 18 Jul 2007 14:10:11 -0400
Received: from harbor.brookfield.occnc.com (harbor.brookfield.occnc.com [69.37.59.172]) by harbor.brookfield.occnc.com (8.13.6/8.13.6) with ESMTP id l6IIAUcc028332; Wed, 18 Jul 2007 14:10:30 -0400 (EDT) (envelope-from curtis@harbor.brookfield.occnc.com)
Message-Id: <200707181810.l6IIAUcc028332@harbor.brookfield.occnc.com>
To: Russ White <riw@cisco.com>
From: Curtis Villamizar <curtis@occnc.com>
Subject: Re: [RPSEC] BGP Security Requirements v08
In-reply-to: Your message of "Wed, 18 Jul 2007 13:37:47 EDT." <469E4FEB.4080307@cisco.com>
Date: Wed, 18 Jul 2007 14:10:30 -0400
X-Spam-Score: 1.7 (+)
X-Scan-Signature: 1ac7cc0a4cd376402b85bc1961a86ac2
Cc: rpsec@ietf.org, Sandy Murphy <sandy@tislabs.com>
X-BeenThere: rpsec@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: curtis@occnc.com
List-Id: Routing Protocol Security Requirements <rpsec.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/rpsec>, <mailto:rpsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/rpsec>
List-Post: <mailto:rpsec@ietf.org>
List-Help: <mailto:rpsec-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/rpsec>, <mailto:rpsec-request@ietf.org?subject=subscribe>
Errors-To: rpsec-bounces@ietf.org

In message <469E4FEB.4080307@cisco.com>
Russ White writes:
>  
> o The authentication information may be passed between authenticating
> implementations outside the BGP protocol.

Is this practical?  Pass information out of band to every far distant
BGP speaker rather than just to peers.

This seems to break the "must be scalable" requirement for everything
related to routing.

Curtis


_______________________________________________
RPSEC mailing list
RPSEC@ietf.org
https://www1.ietf.org/mailman/listinfo/rpsec

v2.8.7 | Report a Bug | By Email