How should Unknown/Not Found ROA status be treated in routing policy?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $24.99Unlock all

Master RIPE BGP Security with our comprehensive test. Understand the Border Gateway Protocol, explore multiple choice questions, and get ready for your exam with detailed hints and explanations.

Multiple Choice

How should Unknown/Not Found ROA status be treated in routing policy?

Explanation:
Unknown/Not Found ROA status means there is no ROA entry for that prefix (or the ROA data isn’t available), so there isn’t enough information to confirm the origin AS is authorized. In this situation you shouldn’t automatically trust or ignore the route. The proper approach is to enforce your ROA policy, which typically means either accepting with caution or rejecting the route depending on your risk tolerance and network needs. This ensures you maintain a deliberate security posture rather than making a blind assumption about safety or letting the data fall through. Choosing to ignore ROA status would bypass the validation mechanism entirely, which weakens security. Treating unknown as trusted would imply you’re assuming safety without evidence. Treating unknown as not applicable would ignore the protective intent of ROA validation. Following policy keeps your decision aligned with your security goals and operational constraints.

Unknown/Not Found ROA status means there is no ROA entry for that prefix (or the ROA data isn’t available), so there isn’t enough information to confirm the origin AS is authorized. In this situation you shouldn’t automatically trust or ignore the route. The proper approach is to enforce your ROA policy, which typically means either accepting with caution or rejecting the route depending on your risk tolerance and network needs. This ensures you maintain a deliberate security posture rather than making a blind assumption about safety or letting the data fall through.

Choosing to ignore ROA status would bypass the validation mechanism entirely, which weakens security. Treating unknown as trusted would imply you’re assuming safety without evidence. Treating unknown as not applicable would ignore the protective intent of ROA validation. Following policy keeps your decision aligned with your security goals and operational constraints.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy