Re: [sidr] I-D Action: draft-ietf-sidr-rpki-validation-reconsidered-02.txt
Geoff Huston <gih@apnic.net> Fri, 09 October 2015 17:11 UTC
Return-Path: <gih@apnic.net>
X-Original-To: sidr@ietfa.amsl.com
Delivered-To: sidr@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DC0E91B48C1 for <sidr@ietfa.amsl.com>; Fri, 9 Oct 2015 10:11:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -101.801
X-Spam-Level:
X-Spam-Status: No, score=-101.801 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, SPF_PASS=-0.001, T_DKIM_INVALID=0.01, T_RP_MATCHES_RCVD=-0.01, USER_IN_WHITELIST=-100] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cbJiUQo-7ZWW for <sidr@ietfa.amsl.com>; Fri, 9 Oct 2015 10:11:16 -0700 (PDT)
Received: from ao-mailgw.apnic.net (ao-mailgw.apnic.net [IPv6:2001:dd8:8:701::25]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 73C0D1B48AA for <sidr@ietf.org>; Fri, 9 Oct 2015 10:11:15 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=apnic.net; s=c3po; h=received:received:content-type:mime-version:subject:from:in-reply-to:date: content-transfer-encoding:message-id:references:to:x-mailer:return-path; bh=zozZks8u3oYzBVeVneIORT0Scptp6wsIvo/RLyXVi+k=; b=rqg4hwLaFvw6cZ+mHw06skqjPb3PUGfAuh9MfSzTi/1G37aQDu7n1RP6Yr/ghjEZCZ8DmBYrWxdFm 8Moi5QcFoYVbCJo+Svn/H4eNPo7EvUFq+MvxS5SXQ2hOIG1SqYx3stSuXNRTrQBElB8jlBlgtddtbZ Rt69z1EOmqa4L5Kk=
Received: from iamda3.org.apnic.net (unknown [IPv6:2001:dd8:9:2::101:249]) by ao-mailgw.apnic.net (Halon Mail Gateway) with ESMTPS for <sidr@ietf.org>; Sat, 10 Oct 2015 03:11:10 +1000 (AEST)
Received: from [172.16.137.34] (203.119.101.249) by iamda3.org.apnic.net (203.119.111.31) with Microsoft SMTP Server (TLS) id 14.1.218.12; Sat, 10 Oct 2015 03:11:23 +1000
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0 (Mac OS X Mail 9.0 \(3094\))
From: Geoff Huston <gih@apnic.net>
In-Reply-To: <20151009170650.4800.42354.idtracker@ietfa.amsl.com>
Date: Fri, 09 Oct 2015 13:11:04 -0400
Content-Transfer-Encoding: quoted-printable
Message-ID: <F71B8751-E079-4C5B-B7F4-6B3AD81B48D8@apnic.net>
References: <20151009170650.4800.42354.idtracker@ietfa.amsl.com>
To: sidr wg list <sidr@ietf.org>
X-Mailer: Apple Mail (2.3094)
Archived-At: <http://mailarchive.ietf.org/arch/msg/sidr/f6AbgiIdaLxlN809xPd1RIzT5Ns>
Subject: Re: [sidr] I-D Action: draft-ietf-sidr-rpki-validation-reconsidered-02.txt
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidr/>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 09 Oct 2015 17:11:18 -0000
A date refresher, but with a minor excision in the intro sections to remove the false impression that the only problem here is one related to address transfers between RIRs. There is a more general issue of the robustness of certificate issuance and revocation tracking a space that includes the dynamic state change of resources that this draft addresses. Geoff > On 9 Oct 2015, at 1:06 PM, internet-drafts@ietf.org wrote: > > > A New Internet-Draft is available from the on-line Internet-Drafts directories. > This draft is a work item of the Secure Inter-Domain Routing Working Group of the IETF. > > Title : RPKI Validation Reconsidered > Authors : Geoff Huston > George Michaelson > Carlos M. Martinez > Tim Bruijnzeels > Andrew Lee Newton > Alain Aina > Filename : draft-ietf-sidr-rpki-validation-reconsidered-02.txt > Pages : 12 > Date : 2015-10-09 > > Abstract: > This document reviews the certificate validation procedure specified > in RFC6487 and highlights aspects of operational fragility in the > management of certificates in the RPKI. > > > The IETF datatracker status page for this draft is: > https://datatracker.ietf.org/doc/draft-ietf-sidr-rpki-validation-reconsidered/ > > There's also a htmlized version available at: > https://tools.ietf.org/html/draft-ietf-sidr-rpki-validation-reconsidered-02 > > A diff from the previous version is available at: > https://www.ietf.org/rfcdiff?url2=draft-ietf-sidr-rpki-validation-reconsidered-02 > > > Please note that it may take a couple of minutes from the time of submission > until the htmlized version and diff are available at tools.ietf.org. > > Internet-Drafts are also available by anonymous FTP at: > ftp://ftp.ietf.org/internet-drafts/ > > _______________________________________________ > sidr mailing list > sidr@ietf.org > https://www.ietf.org/mailman/listinfo/sidr
- [sidr] I-D Action: draft-ietf-sidr-rpki-validatio… internet-drafts
- Re: [sidr] I-D Action: draft-ietf-sidr-rpki-valid… Geoff Huston
- Re: [sidr] posted: draft-huston-sidr-validity-00.… Geoff Huston
- [sidr] posted: draft-huston-sidr-validity-00.txt Geoff Huston
- Re: [sidr] posted: draft-huston-sidr-validity-00.… Arturo Servin
- Re: [sidr] posted: draft-huston-sidr-validity-00.… Geoff Huston
- Re: [sidr] posted: draft-huston-sidr-validity-00.… Roque Gagliano (rogaglia)