BGPsec Algorithms, Key Formats, and Signature Formats
RFC 8608, “BGPsec Algorithms, Key Formats, and Signature Formats”, is a Proposed Standard document published in June 2019 by S. Turner, O. Borchert. It updates RFC 7935. It obsoletes RFC 8208. The canonical text is published by the RFC Editor.
Abstract
This document specifies the algorithms, algorithm parameters, asymmetric key formats, asymmetric key sizes, and signature formats used in BGPsec (Border Gateway Protocol Security). This document updates RFC 7935 ("The Profile for Algorithms and Key Sizes for Use in the Resource Public Key Infrastructure") and obsoletes RFC 8208 ("BGPsec Algorithms, Key Formats, and Signature Formats") by adding Documentation and Experimentation Algorithm IDs, correcting the range of unassigned algorithms IDs to fill the complete range, and restructuring the document for better reading.
This document also includes example BGPsec UPDATE messages as well as the private keys used to generate the messages and the certificates necessary to validate those signatures.
What “Proposed Standard” means
An entry-level standards-track specification: stable, peer-reviewed and a solid basis for implementation, though it may still evolve before becoming an Internet Standard.
The canonical text of RFC 8608 is hosted at rfc-editor.org. Available in TXT,HTML.
- RFC 8607 Calendaring Extensions to WebDAV : Managed Attachments
- RFC 8609 Content-Centric Networking Messages in TLV Format
- RFC 8606 ISDN User Part Cause Location Parameter for the SIP Reason Header Field
- RFC 8610 Concise Data Definition Language : A Notational Convention to Express Concise Binary Object Representation and JSON Data Structures
- RFC 8605 vCard Format Extensions: ICANN Extensions for the Registration Data Access Protocol
- RFC 8611 Label Switched Path Ping and Traceroute Multipath Support for Link Aggregation Group Interfaces
- RFC 8604 Interconnecting Millions of Endpoints with Segment Routing
- RFC 8612 DDoS Open Threat Signaling Requirements