<div dir="ltr"><div>All,</div><div>Do we need to somehow add something in the BRs to better protect subscribers against BGP hijacking?  See <a href="https://groups.google.com/a/mozilla.org/g/dev-security-policy/c/lxiA7zcKLws/m/-1imDKu4AQAJ">https://groups.google.com/a/mozilla.org/g/dev-security-policy/c/lxiA7zcKLws/m/-1imDKu4AQAJ</a> and <a href="https://www.coinbase.com/blog/celer-bridge-incident-analysis" target="_blank" rel="nofollow">https://www.coinbase.com/blog/celer-bridge-incident-analysis</a>. Is there something that CAs and subscribers can arrange ahead of time to prevent this kind of attack from succeeding? Could the CA/Browser Forum adopt something in the BRs that would be of benefit? <br></div><div>Thanks,</div><div>Ben<br></div></div>