Re: [sidr] AD Review of sidr-origin-validation-signaling-09

"John G. Scudder" <jgs@juniper.net> Wed, 30 November 2016 14:07 UTC

Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0 (Mac OS X Mail 9.3 \(3124\))
From: "John G. Scudder" <jgs@juniper.net>
In-Reply-To: <m260n5hywb.wl-randy@psg.com>
Date: Wed, 30 Nov 2016 09:06:21 -0500
Content-Transfer-Encoding: quoted-printable
Message-ID: <1E8CFD67-61BA-4CD3-8A96-CF38D283BD08@juniper.net>
References: <88A45E79-880B-4F82-9FAA-80C05627A49F@cisco.com> <917E9000-8F1F-4E4F-BDEC-767E3510A71A@juniper.net> <yj9od1hdrah8.wl%morrowc@ops-netman.net> <F173D66B-3A4F-4C96-BFE2-02D83D8EB17B@juniper.net> <yj9oa8chr6to.wl%morrowc@ops-netman.net> <m260n5hywb.wl-randy@psg.com>
To: Randy Bush <randy@psg.com>
Received-SPF: None (protection.outlook.com: juniper.net does not designate permitted sender hosts)
SpamDiagnosticOutput: 1:99
SpamDiagnosticMetadata: NSPM
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 30 Nov 2016 14:06:28.9581 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SN2PR05MB2510
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidr/cdZtzQRDDCBEmJQV1AcmaXRBcpk>
Cc: Chris Morrow <morrowc@ops-netman.net>, sidr wg list <sidr@ietf.org>
Subject: Re: [sidr] AD Review of sidr-origin-validation-signaling-09
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidr/>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 30 Nov 2016 14:07:35 -0000

On Nov 30, 2016, at 8:37 AM, Randy Bush <randy@psg.com> wrote:
> the point is the tcp 'stream' does not have to be hacked in any way.
> the hack is at a layer above.

I agree. I also agree with your earlier

On Nov 29, 2016, at 8:40 PM, Randy Bush <randy@psg.com> wrote:
> none of this is new. 

I guess I will wait for Alvaro to answer, but so far I'm not seeing the need for anything more than a couple lines that remind the reader of the basic (in)security properties of BGP, maybe an RFC 4272 reference.

--John

[sidr] AD Review of sidr-origin-validation-signal… Alvaro Retana (aretana)
Re: [sidr] AD Review of sidr-origin-validation-si… Randy Bush
Re: [sidr] AD Review of sidr-origin-validation-si… Alvaro Retana (aretana)
Re: [sidr] AD Review of sidr-origin-validation-si… John G. Scudder
Re: [sidr] AD Review of sidr-origin-validation-si… Randy Bush
Re: [sidr] AD Review of sidr-origin-validation-si… Chris Morrow
Re: [sidr] AD Review of sidr-origin-validation-si… John G. Scudder
Re: [sidr] AD Review of sidr-origin-validation-si… Chris Morrow
Re: [sidr] AD Review of sidr-origin-validation-si… Randy Bush
Re: [sidr] AD Review of sidr-origin-validation-si… John G. Scudder
Re: [sidr] AD Review of sidr-origin-validation-si… Randy Bush
Re: [sidr] AD Review of sidr-origin-validation-si… Chris Morrow
Re: [sidr] AD Review of sidr-origin-validation-si… Randy Bush
Re: [sidr] AD Review of sidr-origin-validation-si… John G. Scudder
Re: [sidr] AD Review of sidr-origin-validation-si… Alvaro Retana (aretana)
Re: [sidr] AD Review of sidr-origin-validation-si… Randy Bush