Re: [sidr] I-D Action: draft-ietf-sidr-algorithm-agility-01.txt

Stephen Kent <kent@bbn.com> Mon, 11 July 2011 18:06 UTC

Return-Path: <kent@bbn.com>
X-Original-To: sidr@ietfa.amsl.com
Delivered-To: sidr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2BCC211E813E for <sidr@ietfa.amsl.com>; Mon, 11 Jul 2011 11:06:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -106.599
X-Spam-Level:
X-Spam-Status: No, score=-106.599 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5Rpyp8ZBZdw6 for <sidr@ietfa.amsl.com>; Mon, 11 Jul 2011 11:06:16 -0700 (PDT)
Received: from smtp.bbn.com (smtp.bbn.com [128.33.0.80]) by ietfa.amsl.com (Postfix) with ESMTP id B1BF811E8138 for <sidr@ietf.org>; Mon, 11 Jul 2011 11:06:16 -0700 (PDT)
Received: from dhcp89-089-024.bbn.com ([128.89.89.24]:49200) by smtp.bbn.com with esmtp (Exim 4.74 (FreeBSD)) (envelope-from <kent@bbn.com>) id 1QgKs0-0004BB-KL; Mon, 11 Jul 2011 14:06:12 -0400
Mime-Version: 1.0
Message-Id: <p06240805ca40eb99b038@[128.89.89.24]>
In-Reply-To: <C6D4299F-7C55-4420-B114-A829533A981C@cisco.com>
References: <20110708161252.27961.972.idtracker@ietfa.amsl.com> <42FAFCD2-C5F0-471C-8E90-A6AF0EC17DE6@cisco.com> <AAA28269-7DC5-4E19-A05B-6FAA4DF01388@cisco.com> <C6D4299F-7C55-4420-B114-A829533A981C@cisco.com>
Date: Mon, 11 Jul 2011 14:05:51 -0400
To: Roque Gagliano <rogaglia@cisco.com>
From: Stephen Kent <kent@bbn.com>
Content-Type: text/plain; charset="us-ascii"; format="flowed"
Cc: "sidr@ietf.org wg" <sidr@ietf.org>
Subject: Re: [sidr] I-D Action: draft-ietf-sidr-algorithm-agility-01.txt
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/sidr>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 11 Jul 2011 18:06:17 -0000

At 11:29 AM +0200 7/11/11, Roque Gagliano wrote:
>...
>(Roque) These are the "CA that have children and with whom the 
>signaling is carried out through the provisioning protocol".
>
>What about changing the definition to"
>
>Non-Leaf CA: A CA that issues certificates to external entities by 
>using the provisioning protocol described in [PROV.].

I disagree with Brian here.  the prov protocol is one way to have certs issued,
but it is not the only way, e.g., see the managed CA services offered by most
of the RIRs.  I'd prefer the definition I suggested in my (belated) 
reply to Brian's message.

Steve