Return-Path: X-Original-To: sidr@ietfa.amsl.com Delivered-To: sidr@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BB3AD1294E5 for ; Sun, 11 Dec 2016 14:16:09 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -9.796 X-Spam-Level: X-Spam-Status: No, score=-9.796 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, RP_MATCHES_RCVD=-2.896] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rDlCBZ-B7OLj for ; Sun, 11 Dec 2016 14:16:08 -0800 (PST) Received: from nagasaki.bogus.com (nagasaki.bogus.com [IPv6:2001:418:1::81]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 388811293EB for ; Sun, 11 Dec 2016 14:16:08 -0800 (PST) Received: from mb-3.local (c-73-202-177-209.hsd1.ca.comcast.net [73.202.177.209]) (authenticated bits=0) by nagasaki.bogus.com (8.15.2/8.15.2) with ESMTPSA id uBBMG2a2047249 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NOT); Sun, 11 Dec 2016 22:16:05 GMT (envelope-from joelja@bogus.com) X-Authentication-Warning: nagasaki.bogus.com: Host c-73-202-177-209.hsd1.ca.comcast.net [73.202.177.209] claimed to be mb-3.local To: Randy Bush , Alvaro Retana References: <1FBAD3F8-5387-47A3-9988-A49A3133490A@cisco.com> From: joel jaeggli Message-ID: <167fc1b5-50b9-a240-afb7-080ab97f1805@bogus.com> Date: Sun, 11 Dec 2016 14:15:58 -0800 User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.12; rv:50.0) Gecko/20100101 Thunderbird/50.0 MIME-Version: 1.0 In-Reply-To: Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="654232nt0hufwvaVXEqsM1qXmj0x1lRI6" Archived-At: Cc: sidr wg list Subject: Re: [sidr] AD Review of draft-ietf-sidr-bgpsec-ops-10 X-BeenThere: sidr@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: Secure Interdomain Routing List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 11 Dec 2016 22:16:10 -0000 This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --654232nt0hufwvaVXEqsM1qXmj0x1lRI6 Content-Type: multipart/mixed; boundary="51D7oUia0qsXLm71s2fPhCA7BVfRMIesq"; protected-headers="v1" From: joel jaeggli To: Randy Bush , Alvaro Retana Cc: sidr wg list Message-ID: <167fc1b5-50b9-a240-afb7-080ab97f1805@bogus.com> Subject: Re: [sidr] AD Review of draft-ietf-sidr-bgpsec-ops-10 References: <1FBAD3F8-5387-47A3-9988-A49A3133490A@cisco.com> In-Reply-To: --51D7oUia0qsXLm71s2fPhCA7BVfRMIesq Content-Type: text/plain; charset=windows-1252 Content-Language: en-US Content-Transfer-Encoding: quoted-printable On 12/7/16 1:07 PM, Randy Bush wrote: > otoh, private AS numbers are used in non-confed topologies, e.g. the bg= p > stub customer who uses a private AS. they should not sign of course. > but once i receive their announcement and strip the private AS, > can/should i sign? i just looked at bgpsec-protocol and found no > guidance. from that vantage point you are the origin. it's not clear to me that a customer relationship is substantively then if you do this internal to your org. operationally the'yre probably also registering route objects, issuing LOAS and operating on behalf of the private ASN. > randy >=20 > _______________________________________________ > sidr mailing list > sidr@ietf.org > https://www.ietf.org/mailman/listinfo/sidr >=20 --51D7oUia0qsXLm71s2fPhCA7BVfRMIesq-- --654232nt0hufwvaVXEqsM1qXmj0x1lRI6 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Comment: GPGTools - http://gpgtools.org iEYEARECAAYFAlhN0B4ACgkQ8AA1q7Z/VrINCACfQ4CvghzMekUWYMVgoEcbd8mi wtAAnijS0VljOj/iN/fK6fcVXpKnlQSP =vgWY -----END PGP SIGNATURE----- --654232nt0hufwvaVXEqsM1qXmj0x1lRI6--