Dismiss
InnovationQ will be updated on Sunday, Oct. 22, from 10am ET - noon. You may experience brief service interruptions during that time.
Browse Prior Art Database

Routing Policy System Security (RFC2725)

IP.com Disclosure Number: IPCOM000003320D
Original Publication Date: 1999-Dec-01
Included in the Prior Art Database: 2000-Sep-13
Document File: 34 page(s) / 95K

Publishing Venue

Internet Society Requests For Comment (RFCs)

Related People

C. Villamizar: AUTHOR [+4]

Abstract

The RIPE database specifications and RPSL language define languages used as the basis for representing information in a routing policy system. A repository for routing policy system information is known as a routing registry. A routing registry provides a means of exchanging information needed to address many issues of importance to the operation of the Internet. The implementation and deployment of a routing policy system must maintain some degree of integrity to be of any operational use. This document addresses the need to assure integrity of the data by providing an authentication and authorization model.

This text was extracted from a ASCII document.
This is the abbreviated version, containing approximately 3% of the total text.

Network Working Group C. Villamizar

Request for Comments: 2725 Avici

Category: Standards Track C. Alaettinoglu

ISI

D. Meyer

Cisco

S. Murphy

TIS

December 1999

Routing Policy System Security

Status of this Memo

This document specifies an Internet standards track protocol for the

Internet community, and requests discussion and suggestions for

improvements. Please refer to the current edition of the "Internet

Official Protocol Standards" (STD 1) for the standardization state

and status of this protocol. Distribution of this memo is unlimited.

Copyright Notice

Copyright (C) The Internet Society (1999). All Rights Reserved.

Abstract

The RIPE database specifications and RPSL language define languages

used as the basis for representing information in a routing policy

system. A repository for routing policy system information is known

as a routing registry. A routing registry provides a means of

exchanging information needed to address many issues of importance to

the operation of the Internet. The implementation and deployment of

a routing policy system must maintain some degree of integrity to be

of any operational use. This document addresses the need to assure

integrity of the data by providing an authentication and

authorization model.

Table of Contents

1 Overview . . . . . . . . . . . . . . . . . . . . . . . . . 3

2 Background . . . . . . . . . . . . . . . . . . . . . . . . 3

3 Implicit Policy Assumptions . . . . . . . . . . . . . . . . 5

4 Scope of Security Coverage . . . . . . . . . . . . . . . . 5

5 Organization of this Document . . . . . . . . . . . . . . 6

6 Goals and Requirements . . . . . . . . . . . . . . . . . . 6

7 Data Representation . . . . . . . . . . . . . . . . . . . . 10

8 Authentication Model . . . . . . . . . . . . . . . . . . . 10

9 Authorization Model . . . . . . . . . . . . . . . . . . . . 12

9.1 Maintainer Objects . . . . . . . . . . . . . . . . . . 12

9.2 as-block and aut-num objects . . . . . . . . . . . . . 13

9.3 inetnum objects . . . . . . . . . . . . . . . . . . . 13

9.4 route objects . . . . ....