This archive is retained to ensure existing URLs remain functional. It will not contain any emails sent to this mailing list after July 1, 2024. For all messages, including those sent before and after this date, please visit the new location of the archive at https://mailman.ripe.net/archives/list/[email protected]/

[routing-wg] misconceptions about ROV

Previous message (by thread): [routing-wg] RPKI vulnerable?

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Randy Bush randy at psg.com
Mon Feb 21 22:13:00 CET 2022

lately, i am getting flak about ROV not providing protection from
this or that malicious attack.  indeed it does not.

in the ROV design, we DELIBERATELY did NOT try to cover malicious
attacks.  we also did not try to solve world hunger.

repeat 20 times: "ROV is not a security mechanism.  it is only meant
to ameliorate accidental misconfigurations."

yes, a screwdriver sucks as a hammer.

we do seem to see that route mis-originations are propagating less
widely; and presume this is due to ROV, especially in top tier
providers.  this is good.

and once more for good luck: "ROV is not a security mechanism.  it is
only meant to ameliorate accidental misconfigurations."

randy

Previous message (by thread): [routing-wg] RPKI vulnerable?

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

[ routing-wg Archives ]