This paper, published on arXiv in July 2026, proposes a new technical framework for how AI agents should request and manage user permissions. It moves beyond simple app-style consent popups to a more…
arXiv: The Fault in Our Drafts: Vulnerabilities in RPKI Specification and Software
AI_SAFETY. Sourced from arxiv_cscr, summarised by Matproof.
AI Analysis
What changed and what to do.
A new academic paper published on arXiv, titled "The Fault in Our Drafts: Vulnerabilities in RPKI Specification and Software," has identified critical security flaws in the Resource Public Key Infrastructure (RPKI) protocol and its implementations. RPKI is a key internet infrastructure used to secure Border Gateway Protocol (BGP) routing by cryptographically verifying IP address ownership. The paper reveals that both the specification and widely used open-source RPKI software contain design weaknesses that could allow attackers to manipulate routing decisions, potentially leading to traffic interception, denial of service, or route hijacking.
This vulnerability primarily affects internet service providers, cloud service providers, content delivery networks, financial institutions, and any organization that relies on BGP routing for critical network operations. National regulatory bodies and telecommunications authorities in the EU should also take note, as RPKI is increasingly mandated or recommended under network security frameworks like the EU's NIS2 Directive and the proposed Cyber Resilience Act. Organizations that have deployed RPKI validation or rely on RPKI-based route origin validation are directly exposed.
Compliance teams should immediately assess whether their network infrastructure uses RPKI software or services from affected vendors. They should review the paper for specific software versions and configuration weaknesses, and coordinate with network security teams to apply patches or workarounds as they become available. Additionally, teams should update their incident response plans to account for potential BGP hijacking scenarios and ensure that RPKI-related controls are included in upcoming regulatory audits under NIS2 or sector-specific cybersecurity requirements.
This summary is AI-generated for orientation purposes. For regulatory action, always consult the original source linked above.
More AI_SAFETY updates
Latest in AI_SAFETY.
This publication introduces WarpGuard, a proposed technical framework for control-flow attestation in heterogeneous computing environments where CPUs and GPUs execute code together. Control-flow…
This paper, published on arXiv on July 15, 2026, introduces a new class of AI failure mode termed "protective capacity hallucination." Unlike standard hallucinations where a model invents facts, this…
A new preprint from arXiv, published on July 15, 2026, presents findings from the UTS at ELOQUENT 2026 Voight-Kampff study, demonstrating that recent structural shifts in AI-generated writing can now…
Map this to your controls
Connect regulatory changes to your compliance work.
Matproof maps every regulator update directly to your controls and surfaces the ones that affect your organisation — across 21 frameworks.