Re: [sidr] wg adoption call for draft-ymbk-bgpsec-rtr-rekeying-00.txt
Christopher Morrow <morrowc.lists@gmail.com> Sat, 24 March 2012 14:09 UTC
Return-Path: <christopher.morrow@gmail.com>
X-Original-To: sidr@ietfa.amsl.com
Delivered-To: sidr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D687A21F8726 for <sidr@ietfa.amsl.com>; Sat, 24 Mar 2012 07:09:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -103.543
X-Spam-Level:
X-Spam-Status: No, score=-103.543 tagged_above=-999 required=5 tests=[AWL=0.056, BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 41fm-8LzOM-h for <sidr@ietfa.amsl.com>; Sat, 24 Mar 2012 07:09:25 -0700 (PDT)
Received: from mail-ob0-f172.google.com (mail-ob0-f172.google.com [209.85.214.172]) by ietfa.amsl.com (Postfix) with ESMTP id C173F21F86DD for <sidr@ietf.org>; Sat, 24 Mar 2012 07:09:25 -0700 (PDT)
Received: by obbtb4 with SMTP id tb4so3927754obb.31 for <sidr@ietf.org>; Sat, 24 Mar 2012 07:09:25 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=EEUqhF5aFgBzPgwlKeSYwRuDnAljEpaJAMH5Iors6uw=; b=D+vYujrz56zd54GxhDiRy7Tx4nPioQmuZAPTOpEY/xfVLbgNTE+ts94/kzLwFF7tfA jNZoF0Hnqafe3N/Ipna4Gs/aYuQAEQ/+EUdhtRB0L13SJJ0IZI6DLRx3S82BoOrwONOf aChUw6If4MNl+DQtnosvSH3XFi7pFBgXnQsH4WQzrXszLHaTvVjV3E8Vcum6oWN2obXp BXX2CDXIvDa+stRAUsURpHDbSWG20gFF+sU274Jj9lTlFFGkKRdXxOTW0DFcGyLKkgK3 /0g96nVjSS1Awbgf42fsvY9xHregawulmfIa4Ris69OrK1Ck2yfA8G8ffcbRmJYMFd7s qrsw==
MIME-Version: 1.0
Received: by 10.60.24.164 with SMTP id v4mr15925453oef.51.1332598165381; Sat, 24 Mar 2012 07:09:25 -0700 (PDT)
Sender: christopher.morrow@gmail.com
Received: by 10.182.80.137 with HTTP; Sat, 24 Mar 2012 07:09:25 -0700 (PDT)
In-Reply-To: <CAL9jLaaTfJz=3m5UJ6VjLcn1Djp-HG_PEWnYdcAX_ZTyfbHreA@mail.gmail.com>
References: <24B20D14B2CD29478C8D5D6E9CBB29F60F6C0E99@Hermes.columbia.ads.sparta.com> <24B20D14B2CD29478C8D5D6E9CBB29F60F6C0EFE@Hermes.columbia.ads.sparta.com> <4F5E58EF.2000908@ieca.com> <CAL9jLabKPd1XyGrhgQSbHRtp-StRax2JRGLM_yi5fJGi7aJHHA@mail.gmail.com> <DCC302FAA9FE5F4BBA4DCAD465693779173D276228@PRVPEXVS03.corp.twcable.com> <CAL9jLaaEEJaqW5ArsPnW3L8bDR5vzYof+SGYSNGT-cx+R3Uh2A@mail.gmail.com> <4F6DD3E3.4090501@bbn.com> <CAL9jLaaTfJz=3m5UJ6VjLcn1Djp-HG_PEWnYdcAX_ZTyfbHreA@mail.gmail.com>
Date: Sat, 24 Mar 2012 10:09:25 -0400
X-Google-Sender-Auth: wSmLHTt_OBSLHnikmJL8zhpqY-A
Message-ID: <CAL9jLabV_1no-pgFFWcmnKqqSMaSKxaUG+uipSMTmmOXMdpndA@mail.gmail.com>
From: Christopher Morrow <morrowc.lists@gmail.com>
To: Matt Lepinski <mlepinski@bbn.com>
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: quoted-printable
Cc: sidr@ietf.org
Subject: Re: [sidr] wg adoption call for draft-ymbk-bgpsec-rtr-rekeying-00.txt
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/sidr>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 24 Mar 2012 14:09:27 -0000
On Sat, Mar 24, 2012 at 10:05 AM, Christopher Morrow <morrowc.lists@gmail.com> wrote: > On Sat, Mar 24, 2012 at 10:02 AM, Matt Lepinski <mlepinski@bbn.com> wrote: >> Chris, >> >> No, I believe Wes is talking about: >> http://tools.ietf.org/html/draft-rogaglia-sidr-bgpsec-rollover-00 > > oh :) burried further down the list :( Sorry, that seems to make a > clearer link to why combination would be good. oh, except that the -rollover doc says: "The BGPSEC key roll-over process should be very tighten to the key provisioning mechanisms that would be in place. The key provisioning mechanisms for BGPSEC are not yet documented. We will assume that such an automatic provisioning mechanism will be in place (a possible provisioning mechanism when the private key lives only inside the BGP speaker is the Enrollment over Secure Transport (EST). This protocol will allow BGPSEC code to include automatic re-keying scripts with minimum development cost." in the second sentence it's asking for this doc... (the first sentence seems to have some missing words though) > thanks! > -chris > >> - Matt Lepinski >> >> >> On 3/24/2012 9:42 AM, Christopher Morrow wrote: >>> >>> On Sat, Mar 24, 2012 at 9:33 AM, George, Wes<wesley.george@twcable.com> >>> wrote: >>>> >>>> Yes, support. Anything that teaches router jockeys how to wrangle keys >>>> and not compromise the security of the system in the process is a good thing >>>> IMO. >>>> >>>> Though I'm wondering if perhaps this doc and bgpsec-rollover should be >>>> integrated >>> >>> interesting... so you mean: >>> <http://tools.ietf.org/html/rfc6489.txt> >>> >>> or something else? I think a doc just talking about 'network equipment >>> handling of certs' is good, mingling in with 'if I want to roll the >>> key on my CA, I do ...' seems like hiding the sausage in the wrong >>> place. (or maybe not the wrong place, but not the right one >>> either....) Sure, the 2 items are potentially linked, but... the CA >>> bits cover a lot more ground, so I would say more chance for confusion >>> and mistakes due to complexity. >>> >>> -chris >>> >>>>> -----Original Message----- >>>>> From: sidr-bounces@ietf.org [mailto:sidr-bounces@ietf.org] On Behalf Of >>>>> Christopher Morrow >>>>> Sent: Saturday, March 24, 2012 6:19 AM >>>>> To: Sean Turner >>>>> Cc: Murphy, Sandra; sidr@ietf.org >>>>> Subject: Re: [sidr] wg adoption call for >>>>> draft-ymbk-bgpsec-rtr-rekeying-00.txt >>>>> >>>>> <crickets> >>>>> Hey folk, >>>>> Is this draft stating something obvious and doesn't need to be >>>>> documented? or are we in need of this doc to keep us all on the same >>>>> page (us == ops + vendors) as to getting a cert created and installed >>>>> on our lovely devices? >>>>> >>>>> If people could take a few minutes to read the 4 pages (minus >>>>> boilerplate) and think/comment that would be nice. >>>>> >>>>> (for the record, it seems like documenting this is a good thing, from >>>>> my perspective.) >>>>> >>>>> -chris >>>>> >>>>> On Mon, Mar 12, 2012 at 4:13 PM, Sean Turner<turners@ieca.com> wrote: >>>>>> >>>>>> Well I'd like to see it adopted and I promise to work on it ;) >>>>>> >>>>>> spt >>>>>> >>>>>> >>>>>> On 3/7/12 6:07 PM, Murphy, Sandra wrote: >>>>>>> >>>>>>> An alert eye pointed out that the URL below is incorrect. The correct >>>>>>> pointer is >>>>>>> >>>>>>> http://tools.ietf.org/html/draft-ymbk-bgpsec-rtr-rekeying-00 >>>>>>> >>>>>>> --Sandy, speaking as clumsy wg co-chair >>>>>>> >>>>>>> ________________________________________ >>>>>>> From: sidr-bounces@ietf.org [sidr-bounces@ietf.org] on behalf of >>>>>>> Murphy, >>>>>>> Sandra [Sandra.Murphy@sparta.com] >>>>>>> Sent: Wednesday, March 07, 2012 5:40 PM >>>>>>> To: sidr@ietf.org >>>>>>> Subject: [sidr] wg adoption call for >>>>>>> draft-ymbk-bgpsec-rtr-rekeying-00.txt >>>>>>> >>>>>>> The following request has been made for wg adoption of >>>>>>> draft-ymbk-bgpsec-rtr-rekeying-00.txt. >>>>>>> >>>>>>> The draft is available at >>>>>>> http://tools.ietf.org/html/draft-ymbk-rpki-rtr-impl-01. >>>>>>> >>>>>>> Please respond to the list to say whether you accept this draft as a >>>>>>> working group draft and are willing to work on it. Remember that you >>>>>>> do not >>>>>>> need to accept all content in a draft to adopt, as draft editors are >>>>>>> required to reflect the consensus of the working group. >>>>>>> >>>>>>> This call will end 21 Mar 2012. >>>>>>> >>>>>>> --Sandy, speaking as wg co-chair >>>>>>> >>>>>>> >>>>>>> ________________________________________ >>>>>>> From: sidr-bounces@ietf.org [sidr-bounces@ietf.org] on behalf of Randy >>>>>>> Bush [randy@psg.com] >>>>>>> Sent: Monday, March 05, 2012 8:54 PM >>>>>>> To: sidr wg list >>>>>>> Subject: [sidr] draft-ymbk-bgpsec-rtr-rekeying-00.txt >>>>>>> >>>>>>> chairs, please consider as a wg work item. thanks. >>>>>>> >>>>>>> randy >>>>>>> >>>>>>> --- >>>>>>> >>>>>>> From: internet-drafts@ietf.org >>>>>>> Subject: New Version Notification for >>>>>>> draft-ymbk-bgpsec-rtr-rekeying-00.txt >>>>>>> >>>>>>> A new version of I-D, draft-ymbk-bgpsec-rtr-rekeying-00.txt has been >>>>>>> succes= >>>>>>> sfully submitted by Sean Turner and posted to the IETF repository. >>>>>>> >>>>>>> Filename: draft-ymbk-bgpsec-rtr-rekeying >>>>>>> Revision: 00 >>>>>>> Title: Router Keying for BGPsec >>>>>>> Creation date: 2012-03-05 >>>>>>> WG ID: Individual Submission >>>>>>> Number of pages: 7 >>>>>>> >>>>>>> Abstract: >>>>>>> BGPsec-speaking routers must be provisioned with private keys and >>>>>>> the >>>>>>> corresponding public key must be published in the global Resource >>>>>>> PKI. This document describes two ways of doing so, router-driven >>>>>>> and >>>>>>> operator-driven. >>>>>>> _______________________________________________ >>>>>>> sidr mailing list >>>>>>> sidr@ietf.org >>>>>>> https://www.ietf.org/mailman/listinfo/sidr >>>>>>> _______________________________________________ >>>>>>> sidr mailing list >>>>>>> sidr@ietf.org >>>>>>> https://www.ietf.org/mailman/listinfo/sidr >>>>>>> _______________________________________________ >>>>>>> sidr mailing list >>>>>>> sidr@ietf.org >>>>>>> https://www.ietf.org/mailman/listinfo/sidr >>>>>>> >>>>>> _______________________________________________ >>>>>> sidr mailing list >>>>>> sidr@ietf.org >>>>>> https://www.ietf.org/mailman/listinfo/sidr >>>>> >>>>> _______________________________________________ >>>>> sidr mailing list >>>>> sidr@ietf.org >>>>> https://www.ietf.org/mailman/listinfo/sidr >>>> >>>> This E-mail and any of its attachments may contain Time Warner Cable >>>> proprietary information, which is privileged, confidential, or subject to >>>> copyright belonging to Time Warner Cable. This E-mail is intended solely for >>>> the use of the individual or entity to which it is addressed. If you are not >>>> the intended recipient of this E-mail, you are hereby notified that any >>>> dissemination, distribution, copying, or action taken in relation to the >>>> contents of and attachments to this E-mail is strictly prohibited and may be >>>> unlawful. If you have received this E-mail in error, please notify the >>>> sender immediately and permanently delete the original and any copy of this >>>> E-mail and any printout. >>> >>> _______________________________________________ >>> sidr mailing list >>> sidr@ietf.org >>> https://www.ietf.org/mailman/listinfo/sidr >> >> >> _______________________________________________ >> sidr mailing list >> sidr@ietf.org >> https://www.ietf.org/mailman/listinfo/sidr
- [sidr] wg adoption call for draft-ymbk-bgpsec-rtr… Murphy, Sandra
- Re: [sidr] wg adoption call for draft-ymbk-bgpsec… Murphy, Sandra
- Re: [sidr] wg adoption call for draft-ymbk-bgpsec… Sean Turner
- Re: [sidr] wg adoption call for draft-ymbk-bgpsec… Christopher Morrow
- Re: [sidr] wg adoption call for draft-ymbk-bgpsec… Rob Austein
- Re: [sidr] wg adoption call for draft-ymbk-bgpsec… Matt Lepinski
- Re: [sidr] wg adoption call for draft-ymbk-bgpsec… George, Wes
- Re: [sidr] wg adoption call for draft-ymbk-bgpsec… Christopher Morrow
- Re: [sidr] wg adoption call for draft-ymbk-bgpsec… Matt Lepinski
- Re: [sidr] wg adoption call for draft-ymbk-bgpsec… Christopher Morrow
- Re: [sidr] wg adoption call for draft-ymbk-bgpsec… Christopher Morrow
- Re: [sidr] wg adoption call for draft-ymbk-bgpsec… Warren Kumari
- Re: [sidr] wg adoption call for draft-ymbk-bgpsec… George, Wes
- Re: [sidr] wg adoption call for draft-ymbk-bgpsec… Stephen Kent
- Re: [sidr] wg adoption call for draft-ymbk-bgpsec… Samuel Weiler