Re: [sidr] two stranded docuemnts - stake time

Stephen Kent <kent@bbn.com> Mon, 01 August 2016 16:33 UTC

Return-Path: <kent@bbn.com>
X-Original-To: sidr@ietfa.amsl.com
Delivered-To: sidr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D5DDB12B01B for <sidr@ietfa.amsl.com>; Mon, 1 Aug 2016 09:33:29 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.487
X-Spam-Level:
X-Spam-Status: No, score=-5.487 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-1.287, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BLPFYLzYdWmo for <sidr@ietfa.amsl.com>; Mon, 1 Aug 2016 09:33:28 -0700 (PDT)
Received: from smtp.bbn.com (smtp.bbn.com [128.33.0.80]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 55E0F12DCA7 for <sidr@ietf.org>; Mon, 1 Aug 2016 09:33:28 -0700 (PDT)
Received: from ssh.bbn.com ([192.1.122.15]:33208 helo=COMSEC.fios-router.home) by smtp.bbn.com with esmtp (Exim 4.77 (FreeBSD)) (envelope-from <kent@bbn.com>) id 1bUG9X-000GjR-BK; Mon, 01 Aug 2016 12:33:19 -0400
To: Tim Bruijnzeels <tim@ripe.net>
References: <yj9oinvzi8gj.wl%morrowc@ops-netman.net> <87E65996-2ACD-4A3A-8D20-1C7911CBBB72@tislabs.com> <58c60c65-b96c-4984-4ba4-4d4e64e51538@bbn.com> <yj9ofur2iqgd.wl%morrowc@ops-netman.net> <m28twudtww.wl%randy@psg.com> <CAL9jLab9Zaz1UjJfjJNmjU3FcMkF+mSYKLj7VGKEydK0FKOjJg@mail.gmail.com> <4866b582-0016-2136-1dc6-e95946eeff78@bbn.com> <99F55C95-7589-4594-B1B1-8988682FBB46@ripe.net> <67f9b7b7-d490-1671-3b30-8c1ab73d2d12@bbn.com> <78682CEF-7643-47B9-AD73-22ADC3B653C4@ripe.net>
From: Stephen Kent <kent@bbn.com>
Message-ID: <b748ecc4-4ad0-e99b-eb3a-fb454807948f@bbn.com>
Date: Mon, 1 Aug 2016 12:33:18 -0400
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:45.0) Gecko/20100101 Thunderbird/45.2.0
MIME-Version: 1.0
In-Reply-To: <78682CEF-7643-47B9-AD73-22ADC3B653C4@ripe.net>
Content-Type: multipart/alternative; boundary="------------4A3D61E4CED2E58F993B711C"
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidr/pcALFz8HOKd5InM2e18FJq6u5mQ>
Cc: Chris Morrow <morrowc@ops-netman.net>, sidr <sidr@ietf.org>
Subject: Re: [sidr] two stranded docuemnts - stake time
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidr/>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 01 Aug 2016 16:33:30 -0000

Tim,

I agree that the preferred approach is to persuade law enforcement folks 
to not view the RPKI as a new tool for taking down sites. However, I 
have already encountered folks in the law enforcement community who 
viewed it as such. I have argued that this wold be bad, but ...

Given the nature of the cited court case I think it's hard to argue that 
a CA in the RPKI will _never_ be compelled to take action by law 
enforcement (or by national intelligence agencies, etc.). Thus I fear it 
really is a case of when, not if.

Steve