IETF Logo Mail Archive

Re: [GROW] New Version Notification for draft-gersch-grow-revdns-bgp-00.txt

Arturo Servin <arturo.servin@gmail.com> Fri, 16 March 2012 00:48 UTC

Return-Path: <arturo.servin@gmail.com>
X-Original-To: grow@ietfa.amsl.com
Delivered-To: grow@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7F49221E8035 for <grow@ietfa.amsl.com>; Thu, 15 Mar 2012 17:48:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.599
X-Spam-Level:
X-Spam-Status: No, score=-3.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3BKQht08FKkf for <grow@ietfa.amsl.com>; Thu, 15 Mar 2012 17:48:30 -0700 (PDT)
Received: from mail-pb0-f44.google.com (mail-pb0-f44.google.com [209.85.160.44]) by ietfa.amsl.com (Postfix) with ESMTP id F1F0221E800F for <grow@ietf.org>; Thu, 15 Mar 2012 17:48:24 -0700 (PDT)
Received: by pbbrq13 with SMTP id rq13so110171pbb.31 for <grow@ietf.org>; Thu, 15 Mar 2012 17:48:24 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=subject:mime-version:content-type:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to:x-mailer; bh=j4nR7qC6i0Hi3J25X3aXu9JowC90onm9ahyfhV5cdms=; b=j+P7yRsidOgZpQXs3rhbc0fgE9y9CWPZ2xwgt5dCuaOgQ3p6ksLPIhgSapIMDs5tfG LlGrQ0AuqNRikijiXmzzGZTs8mgo3Jk7h5R/V3s6E0a534+JoI8NbzOEIQxIGDTZdFjM jRvk6hHt+0PYgcD0vltolLV+XUl8dYIs1Ae5Hpg2wFizV81+uUYcng+QFt6XtIw5lHKS 7SgqBYIe7PemqjvQ86QI00JIubkKCe2CxaJu83SeUsNwV4y0tUwngLpeN8f1KBOYM1Zl j2awXnmvN0FBjU3HSsEBYPvEd010qLM00LYtEViFhjRMSgoL0ZBKF/cu+guRDxBpozeA 2Ibw==
Received: by 10.68.237.194 with SMTP id ve2mr9188843pbc.60.1331858904799; Thu, 15 Mar 2012 17:48:24 -0700 (PDT)
Received: from [10.196.232.94] ([199.91.194.1]) by mx.google.com with ESMTPS id 4sm2958281pbp.76.2012.03.15.17.48.21 (version=TLSv1/SSLv3 cipher=OTHER); Thu, 15 Mar 2012 17:48:23 -0700 (PDT)
Mime-Version: 1.0 (Apple Message framework v1257)
Content-Type: text/plain; charset="us-ascii"
From: Arturo Servin <arturo.servin@gmail.com>
In-Reply-To: <C4A95AAF-391A-452D-AD59-28A5F9DA546F@secure64.com>
Date: Thu, 15 Mar 2012 18:48:19 -0600
Content-Transfer-Encoding: quoted-printable
Message-Id: <78EB68D3-7021-4562-A740-A2F68517B2A3@gmail.com>
References: <CB7BAEBE.2272B%terry.manderson@icann.org> <C4A95AAF-391A-452D-AD59-28A5F9DA546F@secure64.com>
To: Joseph Gersch <joe.gersch@secure64.com>
X-Mailer: Apple Mail (2.1257)
Cc: grow@ietf.org
Subject: Re: [GROW] New Version Notification for draft-gersch-grow-revdns-bgp-00.txt
X-BeenThere: grow@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Grow Working Group Mailing List <grow.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/grow>, <mailto:grow-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/grow>
List-Post: <mailto:grow@ietf.org>
List-Help: <mailto:grow-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/grow>, <mailto:grow-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 16 Mar 2012 00:48:31 -0000

Joseph,


On 14 Mar 2012, at 10:13, Joseph Gersch wrote:

> This thread is raising two questions:
>   1) should the discussion be in GROW or SIDR?
>   2) hasn't this idea been discussed before
> 
> --- Regarding the location for the draft,  the group presented arguments on both sides.    We believe that GROW is the proper place to lead the discussion.  However we have been invited to give a summary presentation at SIDR to ensure that all interested parties are aware of this proposal.  However, SIDR limits their scope to:    
> 
>> * Is an Autonomous System (AS) authorized to originate an IP prefix 
>> * Is the AS-Path represented in the route the same as the path through 
>> which the NLRI traveled 
> 
> Neither of these really fit our draft well.   You cannot use our approach to see all the prefixes that are authorized to originate from a given AS.   Instead of looking at prefix ranges or an AS,  this approach starts from a specific prefix and asks to identify its origin AS.   This is similar,  but not identical to what SIDR seeks to do. 

	Validating a prefix using the origin ASN looks a lot to RPKI-Origin Validation.


> 
> The second SIDR objective does not fit our work at all.    We do not seek to validate a complete many hop path.    In this sense, we don't fit SIDR.    As we mentioned above,  we are interested in getting comments from SIDR,  but we feel GROW is a better fit.    In addition,  we have an operational testbed and are working to get more participants in operations.   This is something people can participate in now.   So in this sense,  we were shooting for something we view as more of a routing operation issue and hence GROW.  
> 
> This proposal also impacts the DNSOP and DNSEXT groups.  We have asked people on those mailing lists for comments, and a presentation will be made at DNSOP as well.
> 
> --- Regarding the "already discussed issue":
>   This earlier proposal was the T Bates / R Bush draft from 1998.  A lot of progress has taken place during the last 14 years.  The root zone and in-addr.arpa are signed with DNSSEC.   A naming convention for CIDR addresses in the reverse DNS is being proposed at DNSOP.   These new record types enable some interesting capabilities that are
> worth discussing at GROW.  
> 
> - Joe Gersch and Dan Massey


	As I mentioned before, I do not think this work belongs to GROW. I would rather prefer to see it in SIDR as a WG item and to be discussed in parallel here and DNSOP, but not the other way.

	In the end if your approach is to secure bgp, then secure IDR, then SIDR. 

	Also, from SIDR charter I read:

"The two vulnerabilities that will be
  addressed are:

   * Is an Autonomous System (AS) authorized to originate an IP prefix

"

	Unless I understood wrongly your draft, I do not see why it does not fit SIDR's charter.


Regards,
.as

v2.23.0 | Report a Bug | By Email