We (authors) have submitted the following new draft in SIDROPS. It updates RFC 8704 which was produced by this (OPSEC) WG. Your comments and suggestions are welcome here and/or on the SIDROPS list. Thank you.
Title: Source Address Validation Using BGP UPDATEs, ASPA, and ROA (BAR-SAV) URL: https://www.ietf.org/archive/id/draft-sriram-sidrops-bar-sav-00.txt Htmlized: https://datatracker.ietf.org/doc/html/draft-sriram-sidrops-bar-sav Abstract: Designing an efficient source address validation (SAV) filter requires minimizing false positives (i.e., avoiding dropping legitimate traffic) while maintaining directionality (see RFC8704). This document advances the technology for SAV filter design through a method that makes use of BGP UPDATE messages, Autonomous System Provider Authorization (ASPA), and Route Origin Authorization (ROA). The proposed method's name is abbreviated as BAR-SAV. BAR-SAV can be used by network operators to derive more robust SAV filters and thus improve network resilience. Sriram, Igor, Doug _______________________________________________ OPSEC mailing list [email protected] https://www.ietf.org/mailman/listinfo/opsec
