Team, I've updated this draft based on some feedback received already. Given the discussion at the WG session, and the list discussion as of late, I'd like to ask that it become a WG item and used to inform the BGP Threat Model document -- particularly with regards to what's an acceptable residual risk and what is not. Once that's comprehensive it can be used to inform secure routing requirements documents in the working group, and then we can begin assessing the feasibility of reducing various risks.
<http://tools.ietf.org/html/draft-foo-sidr-simple-leak-attack-bgpsec-no-help-01> Thanks! -danny Begin forwarded message: > From: [email protected] > Date: November 16, 2011 11:01:24 PM EST > To: [email protected] > Subject: I-D Action: draft-foo-sidr-simple-leak-attack-bgpsec-no-help-01.txt > Reply-To: [email protected] > > > A New Internet-Draft is available from the on-line Internet-Drafts > directories. > > Title : Route Leak Attacks Against BGPSEC > Author(s) : Danny McPherson > Shane Amante > Filename : > draft-foo-sidr-simple-leak-attack-bgpsec-no-help-01.txt > Pages : 5 > Date : 2011-11-16 > > This document describes a very simple attack vector that illustrates > how RPKI-enabled BGPSEC machinery as currently defined can be easily > circumvented in order to launch a Man In The Middle (MITM) attack via > BGP. It is meant to serve as input to the IETF's Secure Inter-Domain > Routing working group during routing security requirements > discussions and subsequent specification. > > > A URL for this Internet-Draft is: > http://www.ietf.org/internet-drafts/draft-foo-sidr-simple-leak-attack-bgpsec-no-help-01.txt > > Internet-Drafts are also available by anonymous FTP at: > ftp://ftp.ietf.org/internet-drafts/ > > This Internet-Draft can be retrieved at: > ftp://ftp.ietf.org/internet-drafts/draft-foo-sidr-simple-leak-attack-bgpsec-no-help-01.txt > > _______________________________________________ > I-D-Announce mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/i-d-announce > Internet-Draft directories: http://www.ietf.org/shadow.html > or ftp://ftp.ietf.org/ietf/1shadow-sites.txt _______________________________________________ sidr mailing list [email protected] https://www.ietf.org/mailman/listinfo/sidr
