This document discusses potential security concerns with the Locator/ Identifier Separation Protocol (LISP) if deployed in the Internet and proposes a set of recommendations to mitigate the identified threats and to reach a level of security equivalent to what is observed in the Internet today (i.e., without LISP). By following the recommendations of this draft a LISP deployment can achieve a security level that is comparable to the existing Internet architecture.