BGPSEC Protocol Specification

The information below is for an old version of the document
Document Type Expired Internet-Draft (sidr WG)
Last updated 2013-08-29 (latest revision 2013-02-25)
Replaces draft-lepinski-bgpsec-protocol
Stream IETF
Intended RFC status (None)
Expired & archived
pdf htmlized bibtex
Stream WG state WG Document
Waiting for Referenced Document, Revised I-D Needed - Issue raised by WGLC, Other - see Comment Log
Document shepherd None
IESG IESG state Expired
Consensus Boilerplate Unknown
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


This document describes BGPSEC, an extension to the Border Gateway Protocol (BGP) that provides security for the path of autonomous systems through which a BGP update message passes. BGPSEC is implemented via a new optional non-transitive BGP path attribute that carries a digital signature produced by each autonomous system that propagates the update message.


Matt Lepinski (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)