> I think the distinction between a leak and something more intentional > s a matter of policy. Knowing the policy associated with the > adjacencies that an AS is leaking over would allow leaked > announcements to be identified
o We can not know intent, should Mary have announced the prefix to Bob o But Joe can formally validate that Mary did announce the prefix to Bob o Policy on the global Internet changes every 36ms, new customers, new peers, circuit moves, ... o We already have a protocol to distribute policy or its effects, it is called BGP o BGPsec validates that the protocol has not been violated, and is not about intent or business policy randy _______________________________________________ sidr mailing list sidr@ietf.org https://www.ietf.org/mailman/listinfo/sidr
