diff --git a/draft-ymbk-sidrops-rov-no-rr.xml b/draft-ymbk-sidrops-rov-no-rr.xml
index 08a2b0f..2ec445e 100644
--- a/draft-ymbk-sidrops-rov-no-rr.xml
+++ b/draft-ymbk-sidrops-rov-no-rr.xml
@@ -80,6 +80,7 @@
A BGP Speaker performing RPKI-based Route Origin Validation should
not issue Route Refresh to its neighbors when receiving new VRPs.
+ A method for avoiding doing so is described.
@@ -122,23 +123,26 @@
- It is assumed that the reader understands BGP, and Route Refresh , the
- RPKI , Route Origin Authorizations (ROAs),
- , The Resource Public Key Infrastructure
- (RPKI) to Router Protocol ,
- RPKI-based Prefix Validation, , and Origin
- Validation Clarifications, .
+
+ It is assumed that the reader understands BGP, and Route Refresh , the
+ RPKI , Route Origin Authorizations (ROAs),
+ , The Resource Public Key Infrastructure
+ (RPKI) to Router Protocol , RPKI-based Prefix Validation,
+ , and Origin Validation Clarifications,
+ .
+
-
+
-
+
Routers MUST either keep the full Adj-RIB-In or implement this
specification.
-
+
Operators deploying ROV SHOULD ensure that the router
implementation is not causing unnecessary Route Refresh requests
@@ -155,16 +159,22 @@
If the router has insufficient resources to support this, it
- SHOULD not be used for Route Origin Validation.
+ MUST not be used for Route Origin Validation.
-
+
+
+
+ This document describes a denial of service Route Origin
+ Validation may place on a BGP neighbor, and describes how it may
+ be ameliorated.
+
- This document adds no additional security considerations to those
- already described by the referenced documents.
+ Otherwise, this document adds no additional security considerations
+ to those already described by the referenced documents.
@@ -196,6 +206,7 @@
+