Cloudflare wants routing issues to be a thing of the past by deploying a new feature to try to stop route leaks and hijacks in their tracks. From a report: Cloudflare told TechCrunch that rolling out resource public key infrastructure (RPKI) to all of its customers for free will make it far more difficult to reroute traffic — either by accident or deliberately. RPKI, in a nutshell, helps to ensure that traffic goes to the right place through a route that’s verified as legitimate and correct by using cryptographically signed certificates. “When two networks connect with each other — say, AT&T and Verizon — they announce the set of IP addresses for which they should be sent traffic,” said Nick Sullivan, Cloudflare’s head of cryptography. “The RPKI is a security framework to make sure a network announces only its legitimate IP addresses.” Cloudflare’s push in the right direction follows an effort by the National Institute for Standards and Technology, which last week published its first draft of a new standard, which incorporates RPKI as one of three components that will help prevent route leaks and hijacks. A possible approval is expected in the coming weeks.
of this story at Slashdot.
Source:: Slashdot