Re: [sidr] wglc draft-ietf-sidr-policy-qualifiers-00

"Roque Gagliano (rogaglia)" <rogaglia@cisco.com> Mon, 15 July 2013 14:23 UTC

Return-Path: <rogaglia@cisco.com>
X-Original-To: sidr@ietfa.amsl.com
Delivered-To: sidr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 684031F0D46 for <sidr@ietfa.amsl.com>; Mon, 15 Jul 2013 07:23:15 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -10.599
X-Spam-Level:
X-Spam-Status: No, score=-10.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GfoxjaR+CtTd for <sidr@ietfa.amsl.com>; Mon, 15 Jul 2013 07:23:09 -0700 (PDT)
Received: from rcdn-iport-8.cisco.com (rcdn-iport-8.cisco.com [173.37.86.79]) by ietfa.amsl.com (Postfix) with ESMTP id E3F221F0D42 for <sidr@ietf.org>; Mon, 15 Jul 2013 07:22:40 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=8154; q=dns/txt; s=iport; t=1373898161; x=1375107761; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=jqHkCt6dfbt7Ys6pQsx+ZOoqSAKjtiFugDUEIkfrXMQ=; b=UjPaMA0Z4sYQSn+ULtSxodT4lo4VHeXDc7OH0fFc+ROy/1Mu/NqCN4hC k1D8UgqKb2vzmo9s/79eHunBq8B5HadY3DyjkNAOUkfk7zXShBYSIQpjz lJoxWhxn36HD4OTBH0uIqphbvaO82n00Ushfo0VRiApy/NfiVkkhhjzi6 c=;
X-Files: smime.p7s : 4459
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AhwFAKQE5FGtJV2b/2dsb2JhbABUBoMGNE/BUoEQFnSCIwEBAQMBAQEBGlELBQsCAQgiJAIlCyUCBA4FCAaHfAYMtXaOPnUxBwSDB20DkA+BLYdJkCSDEoIo
X-IronPort-AV: E=Sophos; i="4.89,668,1367971200"; d="p7s'?scan'208"; a="234954186"
Received: from rcdn-core-4.cisco.com ([173.37.93.155]) by rcdn-iport-8.cisco.com with ESMTP; 15 Jul 2013 14:22:40 +0000
Received: from xhc-rcd-x15.cisco.com (xhc-rcd-x15.cisco.com [173.37.183.89]) by rcdn-core-4.cisco.com (8.14.5/8.14.5) with ESMTP id r6FEMeo7001567 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL); Mon, 15 Jul 2013 14:22:40 GMT
Received: from xmb-rcd-x02.cisco.com ([169.254.4.192]) by xhc-rcd-x15.cisco.com ([173.37.183.89]) with mapi id 14.02.0318.004; Mon, 15 Jul 2013 09:22:39 -0500
From: "Roque Gagliano (rogaglia)" <rogaglia@cisco.com>
To: "Murphy, Sandra" <Sandra.Murphy@sparta.com>
Thread-Topic: [sidr] wglc draft-ietf-sidr-policy-qualifiers-00
Thread-Index: AQHOgWbC3ICaooFB+UuLQGBU0PP5qA==
Date: Mon, 15 Jul 2013 14:22:39 +0000
Message-ID: <EF4348D391D0334996EE9681630C83F022120B93@xmb-rcd-x02.cisco.com>
References: <24B20D14B2CD29478C8D5D6E9CBB29F6749A84D9@CVA-MB001.centreville.ads.sparta.com>
In-Reply-To: <24B20D14B2CD29478C8D5D6E9CBB29F6749A84D9@CVA-MB001.centreville.ads.sparta.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
x-originating-ip: [10.147.19.64]
Content-Type: multipart/signed; boundary="Apple-Mail=_D11D114D-2463-4E33-9D93-6498A6EC833C"; protocol="application/pkcs7-signature"; micalg="sha1"
MIME-Version: 1.0
Cc: "sidr@ietf.org" <sidr@ietf.org>
Subject: Re: [sidr] wglc draft-ietf-sidr-policy-qualifiers-00
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/sidr>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 15 Jul 2013 14:23:15 -0000

Hi Sandy,

As I said during the call for adoption, I think this is an important omission from RFC6487 and the document is well written.

Before sending my support to advance to the IESG, I wanted to ask the author if they have tested the effects of this change on existing RP tools. Do they really set the certificate as invalid?

Roque


On Jul 12, 2013, at 11:14 PM, "Murphy, Sandra" <Sandra.Murphy@sparta.com> wrote:

> The chairs have queried the authors of draft-ietf-sidr-policy-qualifiers-00, Policy Qualifiers in RPKI Certificates.  The response was that the draft is ready for wglc.
> 
> There was general agreement on this draft during the adoption call, with one request for additional security considerations being addressed in the new version.  The draft is short and straightforward and the wg has not seen fit to comment further.
> 
> Even so, it is unusual to publish a draft with so little comment during the time it has been a wg draft.  The chairs will be looking for a stronger than usual response.  Can't publish without reviews!
> 
> This starts a 3 week wglc on draft draft-ietf-sidr-policy-qualifiers-00, Policy Qualifiers in RPKI Certificates.  Please do send comments to the list, indicating that you do or do not believe that the draft is ready for publication.
> 
> The draft is available at http://tools.ietf.org/html/draft-ietf-sidr-policy-qualifiers-00.
> 
> --Sandy, speaking for the co-chairs
> _______________________________________________
> sidr mailing list
> sidr@ietf.org
> https://www.ietf.org/mailman/listinfo/sidr