What is a recommended practice for MD5 key management in large multi-peer environments?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $24.99Unlock all

Master RIPE BGP Security with our comprehensive test. Understand the Border Gateway Protocol, explore multiple choice questions, and get ready for your exam with detailed hints and explanations.

Multiple Choice

What is a recommended practice for MD5 key management in large multi-peer environments?

Explanation:
Managing MD5 authentication keys in large, multi-peer BGP environments hinges on using separate keys for each neighbor and keeping them fresh. Per-peer keys tightly limit the blast radius if one key is exposed or a peer is compromised, because only that specific session is affected. Regularly rotating those keys reduces the window of opportunity for an attacker and makes revocation straightforward, since you can update or remove a single neighbor’s key without touching others. Centralized management supports automation, consistent policy enforcement, auditing, and clear change control, so rotations and key rollouts are scalable as the network grows. Using a single shared key across all peers introduces a single point of failure and is difficult to rotate safely at scale, while ignoring key management or treating MD5 as obsolete undermines the security of BGP session authentication.

Managing MD5 authentication keys in large, multi-peer BGP environments hinges on using separate keys for each neighbor and keeping them fresh. Per-peer keys tightly limit the blast radius if one key is exposed or a peer is compromised, because only that specific session is affected. Regularly rotating those keys reduces the window of opportunity for an attacker and makes revocation straightforward, since you can update or remove a single neighbor’s key without touching others. Centralized management supports automation, consistent policy enforcement, auditing, and clear change control, so rotations and key rollouts are scalable as the network grows. Using a single shared key across all peers introduces a single point of failure and is difficult to rotate safely at scale, while ignoring key management or treating MD5 as obsolete undermines the security of BGP session authentication.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy