Proceedings of the Twelfth ACM Workshop on Hot Topics in Networks 2013
DOI: 10.1145/2535771.2535787
|View full text |Cite
|
Sign up to set email alerts
|

On the risk of misbehaving RPKI authorities

Abstract: The RPKI is a new security infrastructure that relies on trusted authorities to prevent some of the most devastating attacks on interdomain routing. The threat model for the RPKI supposes that authorities are trusted and routing is under attack. Here we discuss the risks that arise when this threat model is flipped: when RPKI authorities are faulty, misconfigured, compromised, or compelled to misbehave. We show how design decisions that elegantly address the vulnerabilities in the original threat model have un… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
1
1
1
1

Citation Types

0
59
0

Year Published

2015
2015
2022
2022

Publication Types

Select...
4
3
2

Relationship

0
9

Authors

Journals

citations
Cited by 67 publications
(73 citation statements)
references
References 18 publications
0
59
0
Order By: Relevance
“…The reason why we make this transform will be explained in the Subsection 2.4. According to ability of an authority impersonating users, there are three levels of trust [27] as follows in Tab. 1.…”
Section: Public/private Key Pairs Issuing For Prefix Ownersmentioning
confidence: 99%
“…The reason why we make this transform will be explained in the Subsection 2.4. According to ability of an authority impersonating users, there are three levels of trust [27] as follows in Tab. 1.…”
Section: Public/private Key Pairs Issuing For Prefix Ownersmentioning
confidence: 99%
“…The main reasons for slow deployment have been limited incentive for independent organizations, and because there is no single centralized authority that can mandate the deployment of a (common) security solution. Deployment may also have been hampered by political and business implications from hierarchal RPKI management giving some entities (e.g., RIRs) significant control over global Internet routing [15].…”
Section: B Bgp Security and Monitoringmentioning
confidence: 99%
“…The paper "On the Risk of Misbehaving RPKI Authorities" [31] explains how the RPKI model can impact the Internet if authorities don't behave as they are supposed to. Further analysis is certainly required on RPKI, which carries part of BGP security.…”
Section: Sidr -Secure Inter-domain Routingmentioning
confidence: 99%