Security Requirements for BGP Path Validation

Document Type Replaced Internet-Draft (individual)
Authors Steven Bellovin  , Randy Bush  , David Ward 
Last updated 2012-01-25 (latest revision 2011-03-07)
Replaced by RFC 7353
Stream (None)
Intended RFC status (None)
Expired & archived
plain text pdf htmlized bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Replaced by draft-ietf-sidr-bgpsec-reqs
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


This document describes requirements for a future BGP security protocol design to provide cryptographic assurance that the origin AS had the right to announce the prefix and to provide assurance of the AS Path of the announcement.


Steven Bellovin (
Randy Bush (
David Ward (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)