DENOG12

It is time...to replace MD5...with TCP-AO
2020-11-10, 10:30–11:00, Main Stage

In this presentation we will talk about why it is time to replace MD5, what options are available, we introduce the TCP Authentication Option (TCP-AO), explain the concept and where it differs with MD5. We also look at GTSM and why you still need additional security.
Last couple of slides touch on implementation status and interoperability testing.

See also: TCP-AO DENOG12 slides

Melchior Aelmans is Lead Engineer Cloud Providers at Juniper Networks, where he has been working with many operators on the design, security, and evolution of their networks.
He has over 15 years of experience in various operations, engineering, and sales engineering positions with cloud providers, data centers, and service providers. Before joining Juniper Networks, he worked with eBay, LGI, KPN, etc.
Melchior enjoys evangelizing and discussing routing protocols, routing security and internet routing and peering. He also participates in IETF and RIPE and is a board member at the NLNOG foundation.