One of my subscribers sent me this question:
I’m being asked to enter a working group on RPKI and route origination. I’m doing research, listening to Jeff Tantsura, who seems optimistic about taking steps to improve BGP security vs Geoff Huston, who isn’t as optimistic. Should I recommend to the group that the application security is the better investment?
You need both. RPKI is slowly becoming the baseline of global routing hygiene (like washing hands, only virtual, and done once every blue moon when you get new IP address space or when the certificates expire). More and more Internet Service Providers (including many tier-1 providers) filter RPKI invalids thus preventing the worst cases of unintentional route leaks.
Print
Share
Comment
Cite
Upload
Translate
APA
() » Should I Care About RPKI and Internet Routing Security?. Retrieved from https://www.truth.cx/2023/04/12/should-i-care-about-rpki-and-internet-routing-security/.
MLA" » Should I Care About RPKI and Internet Routing Security?." - , https://www.truth.cx/2023/04/12/should-i-care-about-rpki-and-internet-routing-security/
HARVARD » Should I Care About RPKI and Internet Routing Security?., viewed ,
VANCOUVER - » Should I Care About RPKI and Internet Routing Security?. [Internet]. [Accessed ]. Available from: https://www.truth.cx/2023/04/12/should-i-care-about-rpki-and-internet-routing-security/
CHICAGO" » Should I Care About RPKI and Internet Routing Security?." - Accessed . https://www.truth.cx/2023/04/12/should-i-care-about-rpki-and-internet-routing-security/
IEEE" » Should I Care About RPKI and Internet Routing Security?." [Online]. Available: https://www.truth.cx/2023/04/12/should-i-care-about-rpki-and-internet-routing-security/. [Accessed: ]