IETF Logo Mail Archive

Re: [sidr] Route Leaks and BGP Security

Randy Bush <randy@psg.com> Mon, 21 November 2011 16:09 UTC

Return-Path: <randy@psg.com>
X-Original-To: sidr@ietfa.amsl.com
Delivered-To: sidr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 085A221F8ADC for <sidr@ietfa.amsl.com>; Mon, 21 Nov 2011 08:09:57 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.589
X-Spam-Level:
X-Spam-Status: No, score=-2.589 tagged_above=-999 required=5 tests=[AWL=0.010, BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yYejLQEhHyPq for <sidr@ietfa.amsl.com>; Mon, 21 Nov 2011 08:09:56 -0800 (PST)
Received: from ran.psg.com (ran.psg.com [IPv6:2001:418:1::36]) by ietfa.amsl.com (Postfix) with ESMTP id 1AA8821F8B36 for <sidr@ietf.org>; Mon, 21 Nov 2011 08:09:55 -0800 (PST)
Received: from localhost ([127.0.0.1] helo=rair.psg.com.psg.com) by ran.psg.com with esmtp (Exim 4.76 (FreeBSD)) (envelope-from <randy@psg.com>) id 1RSWRN-00052S-Nr; Mon, 21 Nov 2011 16:09:54 +0000
Date: Mon, 21 Nov 2011 18:09:49 +0200
Message-ID: <m2ty5xo3si.wl%randy@psg.com>
From: Randy Bush <randy@psg.com>
To: Russ White <russw@riw.us>
In-Reply-To: <4ECA44E2.1050402@riw.us>
References: <20111117040124.18551.47190.idtracker@ietfa.amsl.com> <0863194F-7564-40A9-BB73-ABF8BB97C3AB@tcb.net> <7309FCBCAE981B43ABBE69B31C8D21391A4704525E@EUSAACMS0701.eamcs.ericsson.se> <CAL9jLabbHVauBYUkXCxdpWW90Vt+fMRzATr-aOrdU912ibxJeQ@mail.gmail.com> <4ECA44E2.1050402@riw.us>
User-Agent: Wanderlust/2.15.9 (Almost Unreal) Emacs/22.3 Mule/5.0 (SAKAKI)
MIME-Version: 1.0 (generated by SEMI 1.14.6 - "Maruoka")
Content-Type: text/plain; charset="US-ASCII"
Cc: sidr@ietf.org
Subject: Re: [sidr] Route Leaks and BGP Security
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/sidr>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 21 Nov 2011 16:09:57 -0000

> The solution isn't to rule out such problems because they're
> "unsolvable." There are, in fact, at least two systems that can solve
> this problem.

in the harsh realities such as

  o a significant portion of the internet's isps will not publish
    peering and customer business relationships,

  o ASs are not homogenous, A gives B local peering and international
    transit in frankfurt, but B may have no relationship with A in
    new york, or B may be A's customer in new york, and you will never
    know (and you do not want to see how this is done if you are
    anywhere near a meal)

  o etc.

could you point to where two such systems are documented?

otherwise, i have to conclude that

  o this is just a repeat of the non-sense which wasted years of time
    of the last ietf attempt in this area,

  o and we should do what we know how to do, which, though not a total
    panacea, will be a non-trivial improvement on the current situation,
    and

  o and we should leave the research to an irtf wg.

randy

v2.23.0 | Report a Bug | By Email