[sidr] Alexey Melnikov's No Objection on draft-ietf-sidr-rpki-validation-reconsidered-08: (with COMMENT)

Alexey Melnikov <aamelnikov@fastmail.fm> Wed, 30 August 2017 18:47 UTC

Return-Path: <aamelnikov@fastmail.fm>
X-Original-To: sidr@ietf.org
Delivered-To: sidr@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id B547D132386; Wed, 30 Aug 2017 11:47:29 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: Alexey Melnikov <aamelnikov@fastmail.fm>
To: "The IESG" <iesg@ietf.org>
Cc: draft-ietf-sidr-rpki-validation-reconsidered@ietf.org, aretana@cisco.com, Chris Morrow <morrowc@ops-netman.net>, sidr-chairs@ietf.org, morrowc@ops-netman.net, sidr@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 6.59.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <150411884973.21541.5203291979052779718.idtracker@ietfa.amsl.com>
Date: Wed, 30 Aug 2017 11:47:29 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidr/2AzO9x0Jqt6zDGl7TRH0nPYSh2M>
Subject: [sidr] Alexey Melnikov's No Objection on draft-ietf-sidr-rpki-validation-reconsidered-08: (with COMMENT)
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.22
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidr/>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 30 Aug 2017 18:47:30 -0000

Alexey Melnikov has entered the following ballot position for
draft-ietf-sidr-rpki-validation-reconsidered-08: No Objection

When responding, please keep the subject line intact and reply to all
email addresses included in the To and CC lines. (Feel free to cut this
introductory paragraph, however.)


Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html
for more information about IESG DISCUSS and COMMENT positions.


The document, along with other ballot positions, can be found here:
https://datatracker.ietf.org/doc/draft-ietf-sidr-rpki-validation-reconsidered/



----------------------------------------------------------------------
COMMENT:
----------------------------------------------------------------------

I am agreeing with Ben's comments and I am generally concerned about lack of
certificate extensibility in SIDR. (But I've raised this question when
reviewing an earlier SIDR document and the WG didn't change its mind.)

In Section 4.2.4.4:

   3.  The Version, Issuer, and Subject fields of certificate x satisfy
       the constraints established in Section 4.1-4.7 of this
       specification.

There is no section 4.7 in this draft, so I think this should point to the
original RFC from which this text was copied.

On page 16:

       *  If the IP Address Delegation extension is present in
          certificate x and x=1, set the VRS-IP to the resources found
          in this extension.

This looks like a cut & paste error. I think you meant "Identifier" and
"VRS-AS" above?