IETF Logo Mail Archive

Re: [sidr] WGLC: draft-ietf-sidr-rpsl-sig - End Jul 02 2015

Geoff Huston <gih@apnic.net> Wed, 24 June 2015 02:28 UTC

Return-Path: <gih@apnic.net>
X-Original-To: sidr@ietfa.amsl.com
Delivered-To: sidr@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E68161B33B9 for <sidr@ietfa.amsl.com>; Tue, 23 Jun 2015 19:28:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -101.801
X-Spam-Level:
X-Spam-Status: No, score=-101.801 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, SPF_PASS=-0.001, T_DKIM_INVALID=0.01, T_RP_MATCHES_RCVD=-0.01, USER_IN_WHITELIST=-100] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tI_pLY7U_5Cf for <sidr@ietfa.amsl.com>; Tue, 23 Jun 2015 19:28:22 -0700 (PDT)
Received: from nx-mailgw.apnic.net (nx-mailgw.apnic.net [IPv6:2001:dd8:9:801::25]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6E7DD1B33AA for <sidr@ietf.org>; Tue, 23 Jun 2015 19:28:21 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=apnic.net; s=c3po; h=received:received:content-type:mime-version:subject:from:in-reply-to:date:cc: content-transfer-encoding:message-id:references:to:x-mailer:return-path: x-originating-ip; bh=uANAwUib1GMculeYgm+b+AEn91N6w5mC4YE1ROzERjg=; b=QwWTRErfKvvXFj1VmX60V0Km6VRjfARN3xv2FBqrAc+RuER9krjdvwtnEGQnPX8Ch7wWc13xASttI 8Q82XjGYk+jdf1GgUWBegQcqLP0DwOOjp/rhgAzQJVMxVeKlVCgfHjwcSIe31DLComS4A0Bz6soCBF lRRER1zRTeYqsxe0=
Received: from iamda3.org.apnic.net (unknown [IPv6:2001:dd8:9:2::101:249]) by nx-mailgw.apnic.net (Halon Mail Gateway) with ESMTPS; Wed, 24 Jun 2015 12:29:33 +1000 (AEST)
Received: from dhcp150.potaroo.net (203.119.101.249) by iamda3.org.apnic.net (203.119.111.31) with Microsoft SMTP Server (TLS) id 14.1.218.12; Wed, 24 Jun 2015 12:28:17 +1000
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0 (Mac OS X Mail 8.2 \(2098\))
From: Geoff Huston <gih@apnic.net>
In-Reply-To: <55828BEC.9010605@ops-netman.net>
Date: Wed, 24 Jun 2015 12:27:43 +1000
Content-Transfer-Encoding: quoted-printable
Message-ID: <171E2299-BC19-4F10-8812-8A25321322D2@apnic.net>
References: <55828BEC.9010605@ops-netman.net>
To: draft-ietf-sidr-rpsl-sig@tools.ietf.org
X-Mailer: Apple Mail (2.2098)
X-Originating-IP: [203.119.101.249]
Archived-At: <http://mailarchive.ietf.org/arch/msg/sidr/kpoH5BpGkZfU75fUIgqfDEcbIyc>
Cc: "sidr-chairs@tools.ietf.org" <sidr-chairs@tools.ietf.org>, sidr wg list <sidr@ietf.org>
Subject: Re: [sidr] WGLC: draft-ietf-sidr-rpsl-sig - End Jul 02 2015
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidr/>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 24 Jun 2015 02:28:24 -0000

section 3.1, bullet 4 - s/notaion/notation/

Bullet 4 of this list looks confused

* Date and time fields MUST be converted to 64-bit NTP Timestamp Format [RFC5905].

    thats a binary value, 32 bits of seconds since epoch and 32 bitss of fractions - right?
    Does this also mean that the Era is 1 January 1900?

*  AS numbers MUST be converted to ASPLAIN syntax [RFC5396].

    hang on - thats ascii - why is the time field binary and this field ascii?

*  IPv6 addresses must be canonicalized as defined in [RFC5952].

    this is also ascii 

*  IPv4 addresses MUST be converted to a 32-bit representation
         (e.g., Unix's inet_aton()).

    inet_aton returns a binary struct - which is NOT ascii. 


*  All IP prefixes (IPv4 and IPv6) MUST be represented in CIDR
         notaion [RFC4632].

    so I think you are referring to a range of IP addresses.


    I assume that this means that at times this will be a list of addresses
    (i.e. the range of addresses 10.0.0.1 - 10.0.0.2 is 10.0.0.1/32 and 10.0.0.2/32)

    Are you wanting a cononical CIDR form? (i.e. should the pair of prefixes 10.0.0.0/24 and 10.0.1.0/24
    be represented as 10.0.0.0/23?)


    Other RPKI specs (e.g. RFC6487) referenced the canonical representation of a
    set of addresses as defined in RFC3779. I assume you had a good reason not to
    use the same approach


So why are some items in this list ascii and some binary? Would it make more sense to use either all binary or all ascii here?



regards,

   Geoff








> On 18 Jun 2015, at 7:14 pm, Chris Morrow <morrowc@ops-netman.net> wrote:
> 
> Howdy WG Folks,
> 
> Today is your day! we start a WGLC for:
> draft-ietf-sidr-rpsl-sig
> <https://tools.ietf.org/html/draft-ietf-sidr-rpsl-sig-07>
> 
> Abstract:
> "This document describes a method to allow parties to electronically
>  sign RPSL-like objects and validate such electronic signatures.  This
>  allows relying parties to detect accidental or malicious
>  modifications on such objects.  It also allows parties who run
>  Internet Routing Registries or similar databases, but do not yet have
>  RPSS-like authentication of the maintainers of certain objects, to
>  verify that the additions or modifications of such database objects
>  are done by the legitimate holder(s) of the Internet resources
>  mentioned in those objects."
> 
> This document is through 7 revisions, over quite a period of time, the
> Authors feel as though they have attended to all commentary so far and
> would appreciate a final read-through and thought about pushing this
> forward to IETF Last Call.
> 
> Thanks!
> -chris
> co-chair-will-o-the-wisp
> 
> _______________________________________________
> sidr mailing list
> sidr@ietf.org
> https://www.ietf.org/mailman/listinfo/sidr

v2.23.0 | Report a Bug | By Email