BGPsec Algorithms, Key Formats, and Signature Formats
RFC 8208, “BGPsec Algorithms, Key Formats, and Signature Formats”, is a Proposed Standard document published in September 2017 by S. Turner, O. Borchert. It updates RFC 7935. It has been obsoleted by RFC 8608 — refer to the newer document for the authoritative version. The canonical text is published by the RFC Editor.
Abstract
This document specifies the algorithms, algorithm parameters, asymmetric key formats, asymmetric key sizes, and signature formats used in BGPsec (Border Gateway Protocol Security). This document updates RFC 7935 ("The Profile for Algorithms and Key Sizes for Use in the Resource Public Key Infrastructure").
This document also includes example BGPsec UPDATE messages as well as the private keys used to generate the messages and the certificates necessary to validate those signatures.
What “Proposed Standard” means
An entry-level standards-track specification: stable, peer-reviewed and a solid basis for implementation, though it may still evolve before becoming an Internet Standard.
The canonical text of RFC 8208 is hosted at rfc-editor.org. Available in TXT,HTML.
- RFC 8207 BGPsec Operational Considerations
- RFC 8209 A Profile for BGPsec Router Certificates, Certificate Revocation Lists, and Certification Requests
- RFC 8206 BGPsec Considerations for Autonomous System Migration
- RFC 8210 The Resource Public Key Infrastructure to Router Protocol, Version 1
- RFC 8205 BGPsec Protocol Specification
- RFC 8211 Adverse Actions by a Certification Authority or Repository Manager in the Resource Public Key Infrastructure
- RFC 8204 Benchmarking Virtual Switches in the Open Platform for NFV
- RFC 8212 Default External BGP Route Propagation Behavior without Policies