Summary

• A lot of government interest in Internet infrastructure vulnerabilities.

• Awareness of BGP limitations and of issues with lack of filtering.

• Please get involved and seek info/provide input.

• It’s critical that we as a community address filtering (packet & route) and route authentication before solutions are imposed in some way (i.e. government requiring solution from all vendors). In particular, is there a lightweight in-addr based method that could be set up for describing authorized origin AS(s) for prefixes? Other lightweight solutions?

Previous slide

Next slide

Back to first slide

View graphic version