Breaking down FCC’s proposal to strengthen BGP security

2024-08-07 03:30

In this Help Net Security interview, Doug Madory, Director of Internet Analysis at Kentik, discusses the FCC's proposal requiring major U.S. ISPs to implement RPKI Route Origin Validation, and addresses concerns about the impact on smaller ISPs and the global implications of U.S.-mandated changes.

Regulatory mandates on BGP security could impose significant burdens on smaller ISPs, particularly regarding their ability to adapt to emerging security standards.

There is some protection afforded to smaller ISPs that make use of transit from larger ISPs that have deployed RPKI ROV. The FCC proposal includes a metric that at least 90% of routes should be validated by ROAs.

Of course, there are tricks these providers could play to game such a metric like breaking up routes with ROAs into smaller routes to increase the count.

The proposal encourages a "Risk management" approach rather than treating all BGP routes equally.

Can you elaborate on how focusing on traffic volume and route significance could provide a more effective framework for managing BGP security risks?

News URL

https://www.helpnetsecurity.com/2024/08/07/doug-madory-kentik-bgp-security/

#BGP #FCC #security