Article | REF: TE7531 V1

BGP security: IP network interconnections security

Author: Sarah NATAF

Publication date: May 10, 2015

You do not have access to this resource.
Click here to request your free trial access!

Already subscribed? Log in!

Français

3. eBGP session security

This section describes the security mechanisms to be implemented when configuring eBGP sessions, to counter all the risks presented so far. They are part of a set of best practices whose use is recommended.

3.1 Protocol security

SCROLL TO TOP

3.1.1 Automatic checks of BGP implementations

By default, configuring an eBGP session on a router requires only the following information: router's local AS, router's local IP address, remote router's AS, remote router's IP address. In practice, the router's local...

You do not have access to this resource.

Exclusive to subscribers. 97% yet to be discovered!

You do not have access to this resource.
Click here to request your free trial access!

Already subscribed? Log in!

The Ultimate Scientific and Technical Reference

A Comprehensive Knowledge Base, with over 1,200 authors and 100 scientific advisors

+ More than 10,000 articles and 1,000 how-to sheets, over 800 new or updated articles every year

From design to prototyping, right through to industrialization, the reference for securing the development of your industrial projects

This article is included in

Networks and Telecommunications

This offer includes:

Knowledge Base

Updated and enriched with articles validated by our scientific committees

Services

A set of exclusive tools to complement the resources

Practical Path

Operational and didactic, to guarantee the acquisition of transversal skills

Doc & Quiz

Interactive articles with quizzes, for constructive reading

Subscribe now!

Ongoing reading
eBGP session security

Previous
page Risks relating to BGP interconnections

Routing advertisement filtering

Bibliography

(1) - REKHTER (Y.), LI (T.), HARES (S.) - A border gateway protocol 4 (BGP-4). - IETF Request for Comments (RFC) 4271 (2006).
(2) - POSTEL (J.) - Transmission control protocol. - IETF Request for Comments (RFC) 793 (1981).

Websites

ANSSI (Agence nationale de la sécurité des systèmes d'information). – "Recommendations and guides" portal: BGP configuration best practice guide. http://www.ssi.gouv.fr/fr/guides-et-bonnes-pratiques/recommandations-et-guides/securite-des-reseaux/le-guide-des-bonnes-pratiques-de-configuration-de-bgp.html

...

Standards and norms

A border gateway protocol 4 (BGP-4), IETF request for comments - RFC 4271 - 2006
Transmission control protocol, IETF request for comments. - RFC 793 - 1981
BGP support for four-octet AS number space, IETF request for comments - RFC 4893 - 2007
Stealing the internet, an internet-scale man in the middle attack, Defcon 16 http://www.defcon.org/images/defcon-16/dc16-presentations/defcon-16-pilosov-kapela.pdf...

Organizations – Federations – Associations (non-exhaustive list)

Center for Applied Internet Data Analysis (CAIDA) is a collaborative initiative between commercial, governmental and research entities to promote cooperation in the design of network infrastructures and the maintenance of a robust global Internet. http://www.caida.org/home/

...

You do not have access to this resource.

Exclusive to subscribers. 97% yet to be discovered!

You do not have access to this resource.
Click here to request your free trial access!

Already subscribed? Log in!

The Ultimate Scientific and Technical Reference

A Comprehensive Knowledge Base, with over 1,200 authors and 100 scientific advisors

+ More than 10,000 articles and 1,000 how-to sheets, over 800 new or updated articles every year

From design to prototyping, right through to industrialization, the reference for securing the development of your industrial projects