IETF Logo Mail Archive

Re: [sidr] Request for WG Last Call for draft-ietf-sidr-bogons-02.txt and draft-ietf-sidr-roa-validation-01.txt

Stephen Kent <kent@bbn.com> Fri, 12 December 2008 21:50 UTC

Return-Path: <sidr-bounces@ietf.org>
X-Original-To: sidr-archive@megatron.ietf.org
Delivered-To: ietfarch-sidr-archive@core3.amsl.com
Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 37F803A6889; Fri, 12 Dec 2008 13:50:40 -0800 (PST)
X-Original-To: sidr@core3.amsl.com
Delivered-To: sidr@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id D23F43A6889 for <sidr@core3.amsl.com>; Fri, 12 Dec 2008 13:50:38 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.351
X-Spam-Level:
X-Spam-Status: No, score=-2.351 tagged_above=-999 required=5 tests=[AWL=0.248, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ME5EAiXLzs-l for <sidr@core3.amsl.com>; Fri, 12 Dec 2008 13:50:38 -0800 (PST)
Received: from mx3.bbn.com (mx3.bbn.com [128.33.1.81]) by core3.amsl.com (Postfix) with ESMTP id E4D643A67E4 for <sidr@ietf.org>; Fri, 12 Dec 2008 13:50:37 -0800 (PST)
Received: from dhcp89-089-071.bbn.com ([128.89.89.71]) by mx3.bbn.com with esmtp (Exim 4.63) (envelope-from <kent@bbn.com>) id 1LBFu0-00084Y-CQ; Fri, 12 Dec 2008 16:50:28 -0500
Mime-Version: 1.0
Message-Id: <p06240803c5688a100d5a@[128.89.89.71]>
In-Reply-To: <E485B444-95DA-4FC5-8A4B-D044F2C10F97@hxr.us>
References: <C5521DCD.5484%andy@arin.net> <p06240501c559c1c219eb@[128.89.89.227]> <BEA2AFBC-3315-4ECB-95C2-FB515C6ED01E@apnic.net> <p06240501c55b5d22b2c5@[69.58.70.106]> <3998050D-E54A-4F8B-8D18-0AAB55956879@hxr.us> <p06240800c56836ccc2af@[128.33.244.160]> <E485B444-95DA-4FC5-8A4B-D044F2C10F97@hxr.us>
Date: Fri, 12 Dec 2008 16:46:25 -0500
To: Andrew Newton <andy@hxr.us>
From: Stephen Kent <kent@bbn.com>
Cc: sidr@ietf.org
Subject: Re: [sidr] Request for WG Last Call for draft-ietf-sidr-bogons-02.txt and draft-ietf-sidr-roa-validation-01.txt
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/sidr>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"; Format="flowed"
Sender: sidr-bounces@ietf.org
Errors-To: sidr-bounces@ietf.org

At 2:31 PM -0500 12/12/08, Andrew Newton wrote:
>On Dec 12, 2008, at 10:52 AM, Stephen Kent wrote:
>...
>Steve,
>
>Thanks for the information.  That was very helpful.
>
>As to the use of a negative attestation (be it BOA or AS 0 ROA) by a 
>registry, that will most likely be decided by policy in my opinion.  
>But I do believe there are operational differences between the two approaches.
>
>A 1 day lifetime is reasonable during the working week, but weekends 
>and holidays are a different story.  And often times those weekends 
>are used for maintenance windows.  Additionally, there are exception 
>cases were allocations need to be updated urgently and then there 
>are trouble shooting events... in both these situations an AS 0 ROA 
>acts like an another moving part that needs to be double checked 
>whereas a BOA requires less care and maintenance.  From my 
>perspective, a BOA seems less error prone should negative 
>attestations be desired.

First, recall that each CRL says when the next CRL will be issued, so 
if one decides to not issue CRLs on weekend and holidays, that 
distinction is easy to express in the CRL NextUpdate field. 
Similarly, if the intent is to not make new allocations and enable 
then during such periods, the AS 0 ROA can be given a longer lifetime 
for those days.

Separately, I don't think I understand the operational difference. A 
BOA, as a signed object, would need to be revoked just as an AS 0 ROA 
would, and it would have the same lifetime management requirements. 
Which aspect of BOAs vs. AA 0 ROAs, do you believe make the former 
easier to deal with in these contexts?

>I think there is also another angle to the adoption issue that needs 
>consideration.  As I stated, I do not know if negative attestations 
>will be immediately adopted and at what level.  But let's 
>hypothesize about a community that adopts RPKI and does not use 
>them.  And then, 5 years after adoption they determine that such a 
>thing is needed.  To get them, there would be a need to cycle back 
>through the standards track and software adoption curve.  It seems 
>better to have BOAs in the standard now and have them ignored then 
>to have to iterate through another standards & software adoption 
>process.

I think there are several, separable issues here. One issue is 
whether we need to make provisions for negative assertions. If so, 
then I agree that making provisions for such assertions sooner is 
better.  A second issue is the scope of such assertions (just address 
space or address space and AS numbers).  Then  we can ask what form 
such assertions should take, e.g., BOAs vs. ROAs, vs. ?

I observe that if the scope of such assertions is just address space, 
and not AS numbers I believe we can do this via ROAs, and thus we 
already have the necessary mechanism available. It then becomes a 
matter of policy whether to make such assertions ort not.

Steve
_______________________________________________
sidr mailing list
sidr@ietf.org
https://www.ietf.org/mailman/listinfo/sidr

v2.23.0 | Report a Bug | By Email