A Profile for Bogon Origin Attestations (BOAs)

Document Type Expired Internet-Draft (sidr WG)
Author Terry Manderson 
Last updated 2009-05-25
Replaces draft-huston-sidr-bogons
Stream Internet Engineering Task Force (IETF)
Intended RFC status (None)
Expired & archived
plain text html xml pdf htmlized bibtex
Stream WG state Dead WG Document
Document shepherd No shepherd assigned
IESG IESG state Expired
Consensus Boilerplate Unknown
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


This document defines a standard profile for Bogon Origin Attestations (BOAs). A BOA is a digitally signed object that provides a means of verifying that an IP address block holder has not authorised any Autonomous System (AS) to originate routes that are equivalent to any of the addresses listed in the BOA. A BOA also provides a means of verifying that a BGP speaker is not using an AS without appropriate authority. The proposed application of BOAs is intended to fit within the requirements for adding security measures to inter-domain routing, including the ability to support incremental and piecemeal deployment of such measures, and does not require any changes to the specification of the Border Gateway Protocol.


Terry Manderson (terry@terrym.net)

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)