16 Sep
2000
16 Sep
'00
12:34 p.m.
Hi NANOG folks, I read an IEEE(?) draft on Secure BGP a short time ago, a draft which discussed using a PKI to prove that a netblock was reachable through a give provider. There were several other concepts in the document relating to actual vulnerabilities in BGP. Most of them looked valid. My questions become: a) Has there ever been a published man-in-the-middle attack of someone using BGP to affect someone else's network? b) Does anyone know of other groups that are focusing on developing new ways of combating the vulnerabilities? Brgds, T