IETF Logo Mail Archive

Re: [sidr] working group adoption call for draft-kklf-sidr-route-server-rpki-light-01

"Carlos M. Martinez" <carlosm3011@gmail.com> Thu, 05 May 2016 21:17 UTC

Return-Path: <carlosm3011@gmail.com>
X-Original-To: sidr@ietfa.amsl.com
Delivered-To: sidr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6F65712D0C0 for <sidr@ietfa.amsl.com>; Thu, 5 May 2016 14:17:01 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.45
X-Spam-Level:
X-Spam-Status: No, score=-2.45 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Hm6XUP9XlzqX for <sidr@ietfa.amsl.com>; Thu, 5 May 2016 14:16:59 -0700 (PDT)
Received: from mail-yw0-x235.google.com (mail-yw0-x235.google.com [IPv6:2607:f8b0:4002:c05::235]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C367512D0BD for <sidr@ietf.org>; Thu, 5 May 2016 14:16:59 -0700 (PDT)
Received: by mail-yw0-x235.google.com with SMTP id g133so145066630ywb.2 for <sidr@ietf.org>; Thu, 05 May 2016 14:16:59 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=reply-to:subject:references:to:from:message-id:date:user-agent :mime-version:in-reply-to:content-transfer-encoding; bh=y87LZd3xWmFtTABxK/GZk6gdM6QlLyABuT+VkQBnUaA=; b=I5QKMOhE/Cz9RT4b6vq5Yqa2rMPz7ahtrCGRar/Ub69cXEc8x9tV7OLV/JK9AfxWU5 oOYToGFu/6YxQTEgMNIU9K2RNU1y5H+zNDVvo8GUbLxhBoJFXS/ERWSiGWALfnmip/mn xCxkr6AwpLDVbnlrHl+CYF6nF4DYG8VzbDWVf7m/dYaiQApgmvZhuAYrQSti/5YRfOUX ktcoCN/xWbEflv4sEK49ERhyhLX/AjPKDy5HBSZzq/+UB/xj0VHj2vzfdMaYa9OaGGPL cyGvq36h7DcRNylx+GVegE4W/Q9oF2S3Jxp5S5j++CgoQnrUMh1jbavsN0bDTFmF7WuA CApg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:reply-to:subject:references:to:from:message-id :date:user-agent:mime-version:in-reply-to:content-transfer-encoding; bh=y87LZd3xWmFtTABxK/GZk6gdM6QlLyABuT+VkQBnUaA=; b=TK6XCfQUvt3etpmOkIq4hxelOA+10b+jHy13JQhOBKL1jHL8ZRGlX/4EJlcZbY/WaX DSp9aFSrosNlPUBSqOeORvWQdlRWExkT6YECKUFobXd9+03rWTBLf/RbA+23oVY0dvm5 p1GJwB3Wt8oveEVGzJ5UiYAmknnwh4AsE423E3hLHrMtgd+QOaJHWJBVMh6FWQ9UYmtO BIzU+EMhgcDoxnyQVVZoSqiLBUq2EZ44MNZaaqV2UkW0ys7KQ1cg8l15I94Ll5xemt+Y P5sq6by8tvSaum55iI2RAvpjUYj6HZN9lfl/U2NhN2glP6zZ8QPx9g+Gb4ITyWhzkAkR nbyA==
X-Gm-Message-State: AOPr4FX+mAD9fKIDtlnLfrW+ZrqOa7hSFm6JJ12BRiCpvy72WWrm8r+qBD7j5oeRa1Wg9g==
X-Received: by 10.37.202.196 with SMTP id a187mr10050730ybg.121.1462483019044; Thu, 05 May 2016 14:16:59 -0700 (PDT)
Received: from ?IPv6:2001:13c7:7003:100:788b:c742:dc07:a0c3? ([2001:13c7:7003:100:788b:c742:dc07:a0c3]) by smtp.googlemail.com with ESMTPSA id q132sm6753417ywc.21.2016.05.05.14.16.57 for <sidr@ietf.org> (version=TLSv1/SSLv3 cipher=OTHER); Thu, 05 May 2016 14:16:58 -0700 (PDT)
References: <13075573-8AFA-41D7-B0A3-E2B94DF78E61@tislabs.com> <CAL9jLaa6rcJ42cFyJEW1XTcvMfqnLr++VE7kHgpOG1ywL4S1JA@mail.gmail.com> <alpine.WNT.2.00.1605051758070.2308@mw-PC> <CAL9jLaY355-o1yF+whryMNWTJTyET_d082ZTBapE0CtaVdy3Wg@mail.gmail.com>
To: sidr@ietf.org
From: "Carlos M. Martinez" <carlosm3011@gmail.com>
Message-ID: <22b44efa-bd76-0feb-d1ad-2c5b5c3b845c@gmail.com>
Date: Thu, 05 May 2016 17:16:56 -0400
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:45.0) Gecko/20100101 Thunderbird/45.0
MIME-Version: 1.0
In-Reply-To: <CAL9jLaY355-o1yF+whryMNWTJTyET_d082ZTBapE0CtaVdy3Wg@mail.gmail.com>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: 8bit
Archived-At: <http://mailarchive.ietf.org/arch/msg/sidr/RCQmd6W6FWeMNFP5bfiKWh9p_60>
Subject: Re: [sidr] working group adoption call for draft-kklf-sidr-route-server-rpki-light-01
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
Reply-To: carlos@lacnic.net
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidr/>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 05 May 2016 21:17:01 -0000

hey!

On 5/5/16 3:30 PM, Christopher Morrow wrote:
>     > I think it's an interesting topic to discuss, I'm a little worried
>     > that: "Because the third party said things are 'ok' I'll believe
>     > things are ok!"
>     >
>     > mostly because I don't see a clear method to ensure that 'third party' has:
>     >   1) up-to-date information
>     >
>       Same with RTR cache server.
> 
> 
> ​except I run the server and can get some data about how updated/etc it
> is with respect to collection of roa/etc data.​

Not always. In a couple of IXs I know the RTR server is shared and is
provided as a service to the IXs members.

They trust each other enough to do this, so not trusting the route
server would be kind of silly.

In any case, you, personally as an individual IX member, are free to
have any misgivings about the operational expertise of the IX and you
can adjust your BGP configs accordingly (de-prefing whatever you learn
from elbonia-ix, ignoring validation state, overwriting communities). I
just don't see an argument against what the draft proposes in the
scenario you describe.

However, if you dis-trust a particular IX too much, maybe you just
should de-peer them. But we disgress :-)

-Carlos

PS: I loved the name Elbonia, Can I license it from you ? :-)

v2.23.0 | Report a Bug | By Email