Re: [Last-Call] [secdir] Secdir last call review of draft-ietf-sidrops-rpki-has-no-identity-04
Kyle Rose <krose@krose.org> Wed, 16 March 2022 20:01 UTC
Return-Path: <krose@krose.org>
X-Original-To: last-call@ietfa.amsl.com
Delivered-To: last-call@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1])
by ietfa.amsl.com (Postfix) with ESMTP id 821D13A0C83
for <last-call@ietfa.amsl.com>; Wed, 16 Mar 2022 13:01:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.108
X-Spam-Level:
X-Spam-Status: No, score=-2.108 tagged_above=-999 required=5
tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1,
DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001,
SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01,
URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key)
header.d=krose.org
Received: from mail.ietf.org ([4.31.198.44])
by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024)
with ESMTP id lBQMm9h4xY-V for <last-call@ietfa.amsl.com>;
Wed, 16 Mar 2022 13:01:47 -0700 (PDT)
Received: from mail-wr1-x436.google.com (mail-wr1-x436.google.com
[IPv6:2a00:1450:4864:20::436])
(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
(No client certificate requested)
by ietfa.amsl.com (Postfix) with ESMTPS id B66D13A0C50
for <last-call@ietf.org>; Wed, 16 Mar 2022 13:01:46 -0700 (PDT)
Received: by mail-wr1-x436.google.com with SMTP id r6so4513792wrr.2
for <last-call@ietf.org>; Wed, 16 Mar 2022 13:01:46 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=krose.org; s=google;
h=mime-version:references:in-reply-to:from:date:message-id:subject:to
:cc; bh=/IK/nIciDnUsE4fHwS31SRwC4zkouoEM5aDaHgju09I=;
b=F9mL/hWBOcy4iDyCSbVBTk/3tenHlalzd0BrNdMhmN1Wbp+XL81KcpvASysdhwo2FE
MFZW5IsJ7nlaFBEdHVSXpo2XTv6EMJHlZx0Hkv4R8DbRmVqt8/cBnJEmHREcSyAllqof
T0z1M05DQRufgFlepWU78QP0Auzp1wqBRCL7I=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20210112;
h=x-gm-message-state:mime-version:references:in-reply-to:from:date
:message-id:subject:to:cc;
bh=/IK/nIciDnUsE4fHwS31SRwC4zkouoEM5aDaHgju09I=;
b=vr/knGeaXIGwZGwOs+kmwxC2206v2QPL671NLML3+Vw7PVhO/iSXppB5+HF6ome0ER
bympXUa2k9fvylXGwAdAPjAQ/AUWilB8yqFWySBdAVGQ32OhdnZsLrJckgVrF9z26PYt
rJtgZDv/oJqn/a3gdYFOH1GNDQqyIXLiKrjGAj+sYbihxrwPkmxO2YxGtAW5RmMCF0ZV
MsnNJJzmgnhiOKGfwZHOohEsIq8/0zQJacmLmQLO4uW7zK0OI/InzoXSB7KT95ShsaRE
NZ7r8B2f6ir25mYMtZOiKAd8DvIIPCsCzWPYe3uphCEjoc0V6ONJLWzBHTxWOFKP1stb
xssA==
X-Gm-Message-State: AOAM531gP86KupQhNEKcftA3zQVTR0S7LR5qYQq/kD+TcaXGw93vzTS4
UqY8QnyKfQdFQcYXMXVmZaTdGZV8jKTGjpr3/RfUbA==
X-Google-Smtp-Source: ABdhPJz9Fe8rf5P2+DwvyeoBqTSq7p3Lrlwnsb0Ki8fEvYMbtzADOu/8ItTyXf2gJv/cjzJPMGqIzaIuAPVX49QGn4k=
X-Received: by 2002:a5d:6c67:0:b0:203:bf25:f311 with SMTP id
r7-20020a5d6c67000000b00203bf25f311mr1251050wrz.108.1647460904705; Wed, 16
Mar 2022 13:01:44 -0700 (PDT)
MIME-Version: 1.0
References: <164736391901.8166.304606388310583653@ietfa.amsl.com>
<m2h77zku4u.wl-randy@psg.com>
In-Reply-To: <m2h77zku4u.wl-randy@psg.com>
From: Kyle Rose <krose@krose.org>
Date: Wed, 16 Mar 2022 16:01:33 -0400
Message-ID: <CAJU8_nXL+zf7A27RD5uOEAOtu-cxJP1M6Em6Gq1am5BKXpsckw@mail.gmail.com>
To: Randy Bush <randy@psg.com>
Cc: Kyle Rose via Datatracker <noreply@ietf.org>, last-call@ietf.org,
sidrops@ietf.org,
draft-ietf-sidrops-rpki-has-no-identity.all@ietf.org, secdir@ietf.org
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/last-call/MxxHf7LnoUy_S64qyhI4kow68Kg>
Subject: Re: [Last-Call] [secdir] Secdir last call review of
draft-ietf-sidrops-rpki-has-no-identity-04
X-BeenThere: last-call@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF Last Calls <last-call.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/last-call>,
<mailto:last-call-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/last-call/>
List-Post: <mailto:last-call@ietf.org>
List-Help: <mailto:last-call-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/last-call>,
<mailto:last-call-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 16 Mar 2022 20:01:53 -0000
On Tue, Mar 15, 2022 at 1:23 PM Randy Bush <randy@psg.com> wrote: > > hi kyle > > > Can one of the authors cite a specific reference to the problem that > > this draft is trying to address? A written example of where this > > "false notion" exists? > > let be be lazy and quote the response to a similar question in an > artart review Heh... serves me right. I did read the artart review, but not any follow-ups. > a few years back, two of the co-authors of a lot of sidr rfcs, working > ... > yes, this is depressing and a bit shocking. sad to say, those terms can > be applied to a fair bit of RPKI deployment. Ok, so I appreciate the problem. I'm still not sure this is quite the right way to address it. This feels a bit too "protocol police"-ish to me. Publishing a new RFC to reiterate something that is already covered by an earlier spec in the hopes that it will deter willfulness seems like trying to fix something by repeatedly banging on it. Do we need a "No, we *really* mean it" track in the series? It seems like vigilance around implementations will be required either way. ISTM that the best way to address this particular problem is to make sure the folks in industries that develop RPKI implementations understand this, which probably means contacting them directly and pointing them at the existing text that already makes clear that this is a bad idea, whether in 6480 or in a mailing list archive someplace. To be clear, I don't feel *especially* strongly about this; I'm mostly just expressing skepticism of the degree of value in this approach. Kyle
- [Last-Call] Secdir last call review of draft-ietf… Kyle Rose via Datatracker
- Re: [Last-Call] Secdir last call review of draft-… Randy Bush
- Re: [Last-Call] [secdir] Secdir last call review … Kyle Rose