RPKI - The required cryptographic upgrade to BGP routing
The text discusses the need for significant improvement in existing operational practices for BGP routing and filtering to stop route leaks and hijacks, which are prevalent in today's Internet routing world. It emphasizes that Internet routing and BGP security along with its operational expertise must improve globally. The author suggests deploying operationally-excellent RPKI (Resource Public Key Infrastructure) as a solution to secure BGP routing. RPKI is a cryptographic method of signing records that associate a BGP route announcement with the correct originating AS number. It also provides an overview of how BGP works and highlights the importance of RPKI in ensuring better BGP route security.
Company
Cloudflare
Date published
Sept. 19, 2018
Author(s)
Martin J Levy
Word count
3725
Language
English
Hacker News points
95