El 21/12/10 20:53, Roland Dobbins escribió:
On Dec 21, 2010, at 9:59 PM, marcelo bagnulo braun wrote:
How come that an anycast service expands the surface of an attack? I would
actually say the opposite, the surface of the attack diminishes as there are
more anycast servers deployed, as each server will serve a smallr surface, what
am i missing?
The confusion which can arise in discriminating legitimate instances vs.
illegitimate instances can have this effect, as it becomes difficult for
potential consumers of the services in question to differentiate between the
two.
I understand that, but this is the same with a unicast prefix, right?
and with a unicast prefix the situation is worse AFAICT since the
unicast prefix is injected from only one origin, making the parts of the
network taking the rogue announce for valid likely to be higher, than in
the case of the anycast, where there are several legitimate origins.
My question is why the surface is expanded in the anycast case.
So, i am still not getting it, sorry.
Regards, marcelo
_______________________________________________
GROW mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/grow
_______________________________________________
GROW mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/grow
