Hello! My name is Bogdan Mihai, I'm 21 yr old from Romania. I recently invented something a little more abstract for BGP security, and I'm almost sure that there is nothing similar. I wasn't inspired by anything when I created this, it was a purely random idea that came to my mind. I'm not even an expert in this field, but from the beginning I saw security from a different angle than the others. I made a tool that basically builds a map of risk areas globally, areas where if someone were to try a hijacking attack, that attack would be successful. This idea came to me when I realized that BGP security is still a big problem. RPKI adoption is still slow. And the problem is that today's security in BGP is more reactive, it comes into play only after the attack is detected and damage is done. So I leave you here the link to the zenodo site where I posted my invention. https://zenodo.org/records/18421580 What I ask of you, and extremely important, is not to analyze every file there, but at least the product overview to understand the idea and tell me who this would be useful to, which company or organization. I know that maybe not everything is perfect there, I'm no expert, but I want to know if this idea really has value. Someone said this (You will probably have the same question): "I have to admit that I haven't read all the files, but from the summary, my first question was "how can anyone benefit from this information?" You wouldn't block traffic from a particular AS just for its safety, just like you wouldn't stop driving just because there are bad drivers around. It seems to me that this could be a research topic to raise awareness of the problems and that's it." And I answered: "Correct — this system is not intended to directly block ASNs. It is a risk intelligence tool, showing where there is real potential for abuse and impact. Think of it as: - city crime maps - seismic risk maps - financial fraud maps No one is "blocking the city" or seismic zones, but everyone uses these maps for preventive decisions and prioritization. In the same way, our tool helps operators and security teams decide where to apply controls, strict ROV or additional monitoring, before an incident occurs." I'm very confused and sad because I worked on this but I don't know who it would be of value to or if it even has any value. I appreciate every opinion.
Hi, do not waste anyone's time with a 100% LLM-generated document, please: https://www.pangram.com/history/e0f8f4a8-ebb0-4ebe-8b02-2e53ab00739d Furthermore, there is nothing new or original here and not even a mention of ASPA. Thanks Max On 31 January, 2026 00:32 CET, bogdancyber via routing-wg <routing-wg@ripe.net> wrote: Hello!My name is Bogdan Mihai, I'm 21 yr old from Romania. I recently invented something a little more abstract for BGP security, and I'm almost sure that there is nothing similar. I wasn't inspired by anything when I created this, it was a purely random idea that came to my mind. I'm not even an expert in this field, but from the beginning I saw security from a different angle than the others. I made a tool that basically builds a map of risk areas globally, areas where if someone were to try a hijacking attack, that attack would be successful. This idea came to me when I realized that BGP security is still a big problem. RPKI adoption is still slow. And the problem is that today's security in BGP is more reactive, it comes into play only after the attack is detected and damage is done.So I leave you here the link to the zenodo site where I posted my invention. https://zenodo.org/records/18421580 What I ask of you, and extremely important, is not to analyze every file there, but at least the product overview to understand the idea and tell me who this would be useful to, which company or organization. I know that maybe not everything is perfect there, I'm no expert, but I want to know if this idea really has value. Someone said this (You will probably have the same question): "I have to admit that I haven't read all the files, but from the summary, my first question was "how can anyone benefit from this information?" You wouldn't block traffic from a particular AS just for its safety, just like you wouldn't stop driving just because there are bad drivers around. It seems to me that this could be a research topic to raise awareness of the problems and that's it." And I answered: "Correct — this system is not intended to directly block ASNs. It is a risk intelligence tool, showing where there is real potential for abuse and impact. Think of it as: * city crime maps * seismic risk maps * financial fraud maps No one is "blocking the city" or seismic zones, but everyone uses these maps for preventive decisions and prioritization. In the same way, our tool helps operators and security teams decide where to apply controls, strict ROV or additional monitoring, before an incident occurs." I'm very confused and sad because I worked on this but I don't know who it would be of value to or if it even has any value. I appreciate every opinion.
bogdancyber via routing-wg wrote on 30/01/2026 23:32:
And the problem is that today's security in BGP is more reactive, it comes into play only after the attack is detected and damage is done. So I leave you here the link to the zenodo site where I posted my invention. https://zenodo.org/records/18421580
the premise here is that you analyse the propagation of routes with covering ROAs, and score ASNs depending on whether they propagate them or not. This is reasonable, and possibly useful. You've made two assumptions that are problematic: 1. that RPKI is the primary mechanism for blocking propagation of unauthorised announcements and 2. that a transiting network which implements RPKI is "safe, strict, and hard to abuse as a hijack-source". Neither of these are particularly true: IRRDB data still forms the primary front-line at the internet's edge, and ROAs will not stop anyone from hijacking a prefix if they can spoof the originating ASN. Nick
participants (3)
-
bogdancyber -
Max Emig -
Nick Hilliard