IETF Logo Mail Archive

[secdir] Secdir last call review of draft-ietf-sidrops-rpkimaxlen-12

Sean Turner via Datatracker <noreply@ietf.org> Tue, 09 August 2022 14:47 UTC

Return-Path: <noreply@ietf.org>
X-Original-To: secdir@ietf.org
Delivered-To: secdir@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 8ECADC13C519; Tue, 9 Aug 2022 07:47:45 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: Sean Turner via Datatracker <noreply@ietf.org>
To: secdir@ietf.org
Cc: draft-ietf-sidrops-rpkimaxlen.all@ietf.org, last-call@ietf.org, sidrops@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 8.12.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <166005646557.13432.8966901911331554645@ietfa.amsl.com>
Reply-To: Sean Turner <sean@sn3rd.com>
Date: Tue, 09 Aug 2022 07:47:45 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/1xRWKi_Qfh74X_ExlYj-6yzCRRU>
Subject: [secdir] Secdir last call review of draft-ietf-sidrops-rpkimaxlen-12
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.39
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 09 Aug 2022 14:47:45 -0000

Reviewer: Sean Turner
Review result: Ready

Hi! I know a little about RPKI, but do not operate a network so I am in
theoretical land here. I also reviewed the mail list traffic related to this
I-D.

Since this is an I-D and I'm supposed to comment, I wracked my brain and came
up with nothing security-related. To me, it seems that the recommendation to
configure your ROAs so that they align exactly with your BGP announcements
seems pretty reasonable. Obviously, the more you tighten the screws the more
operation impacts there are, but the I-D addresses some of those impacts.

v2.23.0 | Report a Bug | By Email