@techreport{ren-sidrops-soa-usage-02, number = {draft-ren-sidrops-soa-usage-02}, type = {Internet-Draft}, institution = {Internet Engineering Task Force}, publisher = {Internet Engineering Task Force}, note = {Work in Progress}, url = {https://datatracker.ietf.org/doc/draft-ren-sidrops-soa-usage/02/}, author = {Ren Gang and Minglin Jia and Xia Yin and Shuqi Liu}, title = {{Source Address Validation Using Source Origin Authorizations (SOAs)}}, pagetotal = 16, year = 2025, month = dec, day = 25, abstract = {Given that an AS collaboration scheme for inter-domain source address validation requires an information-sharing platform, this document proposes a new approach by leveraging Resource Public Key Infrastructure (RPKI) architecture to validate the authenticity of source address of packets. Source Origin Authorization (SOA) is a newly defined cryptographically signed object; it provides a means of recording information about the last Autonomous System (AS) traversed by packets before reaching a specific AS. When validated, the eContent of an SOA object confirms that the holder of the listed AS Number (ASN) has authorized the specified pre-ASes. This enables other ASes to collaboratively filter spoofed traffic, enhancing global Internet security by mitigating source address spoofing and DDoS attacks.}, }