Re: [sidr] BCP for implementing RPKI?
Shane Amante <shane@castlepoint.net> Mon, 04 April 2011 13:38 UTC
Return-Path: <shane@castlepoint.net>
X-Original-To: sidr@core3.amsl.com
Delivered-To: sidr@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id A37123A69F0 for <sidr@core3.amsl.com>; Mon, 4 Apr 2011 06:38:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.523
X-Spam-Level:
X-Spam-Status: No, score=-2.523 tagged_above=-999 required=5 tests=[AWL=0.076, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xjyxx1lN7Egr for <sidr@core3.amsl.com>; Mon, 4 Apr 2011 06:38:22 -0700 (PDT)
Received: from dog.tcb.net (dog.tcb.net [64.78.150.133]) by core3.amsl.com (Postfix) with ESMTP id A24C53A69EF for <sidr@ietf.org>; Mon, 4 Apr 2011 06:38:20 -0700 (PDT)
Received: by dog.tcb.net (Postfix, from userid 0) id C8074268674; Mon, 4 Apr 2011 07:40:02 -0600 (MDT)
Received: from host2.tcb.net (64.78.235.218 [64.78.235.218]) (authenticated-user smtp) (TLSv1/SSLv3 AES128-SHA 128/128) by dog.tcb.net with SMTP; Mon, 04 Apr 2011 07:40:02 -0600 (MDT) (envelope-from shane@castlepoint.net)
X-Avenger: version=0.7.8; receiver=dog.tcb.net; client-ip=64.78.235.218; client-port=50999; data-bytes=0
Mime-Version: 1.0 (Apple Message framework v1084)
Content-Type: text/plain; charset="us-ascii"
From: Shane Amante <shane@castlepoint.net>
In-Reply-To: <54E900DC635DAB4DB7A6D799B3C4CD8E10C6AE16@PLSWM12A.ad.sprint.com>
Date: Mon, 04 Apr 2011 07:40:02 -0600
Content-Transfer-Encoding: quoted-printable
Message-Id: <418D2577-48BE-4525-BDD4-EDF66E0FBB87@castlepoint.net>
References: <54E900DC635DAB4DB7A6D799B3C4CD8E10C6AE16@PLSWM12A.ad.sprint.com>
To: "George, Wes E [NTK]" <Wesley.E.George@sprint.com>
X-Mailer: Apple Mail (2.1084)
Cc: "sidr@ietf.org" <sidr@ietf.org>
Subject: Re: [sidr] BCP for implementing RPKI?
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/sidr>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 04 Apr 2011 13:38:23 -0000
On Apr 3, 2011, at 18:17 MDT, George, Wes E [NTK] wrote: > While we have an operational considerations document that covers origin validation, it focuses mainly on policy and implementation > details of the validation machinery. We don't have anything that covers the back-end of implementing a proper RPKI (from the cache > upward, rather than downward towards the router). +1 > So I think that there is a need for a document that covers things like identity and authority management, minimum levels of security > for key management, etc. +1 > I'm happy to help play the part of RPKI n00b to ensure that a draft written to cover this answers the right questions, but for the > same reason, I cannot help much with actually writing it, and am hoping that there are folks interested in picking up this work. +1 -shane
- Re: [sidr] BCP for implementing RPKI? Stephen Kent
- [sidr] BCP for implementing RPKI? George, Wes E [NTK]
- Re: [sidr] BCP for implementing RPKI? Carlos Martinez-Cagnazzo
- Re: [sidr] BCP for implementing RPKI? George, Wes E [NTK]
- Re: [sidr] BCP for implementing RPKI? Shane Amante
- Re: [sidr] BCP for implementing RPKI? Benno Overeinder