@inproceedings{f587dd0d6a5f4b9f8c858d8377cad5fa,
title = "MaxLength considered harmful to the RPKI",
abstract = "User convenience and strong security are often at odds, and most security applications need to find some sort of balance between these two (often opposing) goals. The Resource Public Key Infrastructure (RPKI), a security infrastructure built on top of interdomain routing, is not immune to this issue. The RPKI uses the maxLength attribute to reduce the amount of information that must be explicitly recorded in its cryptographic objects. MaxLength also allows operators to easily reconfigure their networks without modifying their RPKI objects. Our network measurements, however, suggest that the maxLength attribute strikes the wrong balance between security and user convenience. We therefore believe that operators should avoid using maxLength. We give operational recommendations and develop software that allow operators to reap many of the benefits of maxLength without its security costs.",
keywords = "Bgp, Interdomain routing security, RPKI",
author = "Yossi Gilad and Omar Sagga and Sharon Goldberg",
note = "Publisher Copyright: {\textcopyright} 2017 ACM.; 13th International Conference on Emerging Networking EXperiments and Technologies, CoNEXT 2017 ; Conference date: 12-12-2017 Through 15-12-2017",
year = "2017",
month = nov,
day = "28",
doi = "10.1145/3143361.3143363",
language = "الإنجليزيّة",
series = "CoNEXT 2017 - Proceedings of the 2017 13th International Conference on emerging Networking EXperiments and Technologies",
pages = "101--107",
booktitle = "CoNEXT 2017 - Proceedings of the 2017 13th International Conference on emerging Networking EXperiments and Technologies",
}