NIST has released Draft NIST Special Publication (SP) 800-189, Secure Interdomain Traffic Exchange: Routing Robustness and DDoS Mitigation, which provides technical guidance and recommendations for deploying technologies that improve the security of interdomain traffic exchange. The document focuses on securing the interdomain routing control (i.e., Border Gateway Protocol) traffic as well as mitigating Distributed Denial of Service (DDoS) attacks. It is intended to guide information security officers and managers of federal enterprise networks. The guidance also applies to the network services of hosting providers (e.g., cloud-based applications and service hosting) and Internet Service Providers (ISPs) when they are used to support federal IT systems. The guidance will also be useful for enterprise and transit network operators and equipment vendors in general.
A public comment period for this document is open until February 15, 2019.