Skip to main content

Secure BGP (S-BGP)
draft-clynn-s-bgp-protocol-01

Document Type Expired Internet-Draft (individual)
Expired & archived
Author Dr. Charles W. Lynn Jr.
Last updated 2003-07-02
RFC stream (None)
Intended RFC status (None)
Formats
Stream Stream state (No stream defined)
Consensus boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:

Abstract

The Border Gateway Protocol (BGP), which is used to distribute routing information between autonomous systems (ASes), is a critical component of the Internet's routing infrastructure. It is highly vulnerable to a variety of malicious attacks both in theory and in practice, due to the lack of a scalable means of verifying the authenticity and legitimacy of BGP control traffic. This document is a protocol specification for Secure BGP (S-BGP), an extension to BGP-4. S-BGP adheres to the principle of least privilege and uses countermeasures that create an authentication and authorization system that addresses most of the security problems associated with BGP. To facilitate adoption and deployment, S-BGP is designed to minimize the overhead (processing, bandwidth, storage) added by its countermeasures and to be interoperable with the current BGP so as to be incrementally deployable.

Authors

Dr. Charles W. Lynn Jr.

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)