Draft Cybersecurity Practice Guide SP 1800-14, Protecting the Integrity of Internet Routing: Border Gateway Protocol (BGP) Route Origin Validation, is Available for Comment

Draft
Cybersecurity Practice Guide SP 1800-14, Protecting the Integrity of
Internet Routing: Border Gateway Protocol (BGP) Route Origin Validation,
is
Available for Comment

It is difficult to overstate the importance of the
internet to modern business and society in general. The internet is not a
single network, but rather a complex grid of independent interconnected
networks that relies on a protocol known as Border Gateway Protocol (BGP) to
route traffic to its intended destination.

Unfortunately, BGP was not designed with
security in mind and a route hijack attack can deny access to internet
services, misdeliver traffic to malicious endpoints, and cause routing
instability. A technique known as BPG route origin validation (ROV) is designed
to protect against route hijacking.

NIST’s National Cybersecurity Center of
Excellence (NCCoE), together with several technology vendors, has developed
proof-of-concept demonstrations of BGP ROV implementation designed to improve
the security of the internet’s routing infrastructure. 

Comments for this draft are due by October
15, 2018. To review Draft Special Publication (SP) 1800-14, and for information
on submitting comments, please visit the links below.

CSRC Update: https://csrc.nist.gov/news/2018/nist-requests-comments-on-draft-sp-1800-14
 

Publication details: https://csrc.nist.gov/publications/detail/sp/1800-14/draft
 

Project Homepage: https://www.nccoe.nist.gov/projects/building-blocks/secure-inter-domain-routing