Re: [sidr] I-D Action: draft-ietf-sidr-delta-protocol-04.txt
Tim Bruijnzeels <tim@ripe.net> Thu, 29 September 2016 09:52 UTC
Return-Path: <tim@ripe.net>
X-Original-To: sidr@ietfa.amsl.com
Delivered-To: sidr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 41F4F12B3CE for <sidr@ietfa.amsl.com>; Thu, 29 Sep 2016 02:52:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.216
X-Spam-Level:
X-Spam-Status: No, score=-4.216 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-2.316] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id DFhGjLRmHoHx for <sidr@ietfa.amsl.com>; Thu, 29 Sep 2016 02:52:24 -0700 (PDT)
Received: from mahimahi.ripe.net (mahimahi.ripe.net [IPv6:2001:67c:2e8:11::c100:1372]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9034112B3CC for <sidr@ietf.org>; Thu, 29 Sep 2016 02:52:24 -0700 (PDT)
Received: from titi.ripe.net ([193.0.23.11]) by mahimahi.ripe.net with esmtps (TLSv1.2:DHE-RSA-AES256-GCM-SHA384:256) (Exim 4.84) (envelope-from <tim@ripe.net>) id 1bpY0r-000CRU-Rf for sidr@ietf.org; Thu, 29 Sep 2016 11:52:23 +0200
Received: from sslvpn.ripe.net ([193.0.20.230] helo=vpn-145.ripe.net) by titi.ripe.net with esmtps (TLSv1:AES256-SHA:256) (Exim 4.72) (envelope-from <tim@ripe.net>) id 1bpY0r-0003Tn-Mt; Thu, 29 Sep 2016 11:52:21 +0200
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 9.3 \(3124\))
From: Tim Bruijnzeels <tim@ripe.net>
In-Reply-To: <147514224540.18574.7561511491261263930.idtracker@ietfa.amsl.com>
Date: Thu, 29 Sep 2016 11:52:14 +0200
Content-Transfer-Encoding: quoted-printable
Message-Id: <1DA0CABF-735C-464C-B3B5-6E2FF52093FE@ripe.net>
References: <147514224540.18574.7561511491261263930.idtracker@ietfa.amsl.com>
To: sidr <sidr@ietf.org>
X-Mailer: Apple Mail (2.3124)
X-ACL-Warn: Delaying message
X-RIPE-Spam-Level: ------------
X-RIPE-Spam-Report: Spam Total Points: -12.4 points pts rule name description ---- ---------------------- ------------------------------------ -7.5 ALL_TRUSTED Passed through trusted hosts only via SMTP -3.0 RP_MATCHES_RCVD Envelope sender domain matches handover relay domain -1.9 BAYES_00 BODY: Bayes spam probability is 0 to 1% [score: 0.0000]
X-RIPE-Signature: 784d7acfe6559f2a0b602ec6519a07197c2a69611c0d4fa7d73d4636e1aa96c6
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidr/rKkRwRoNZji4zSbl_bFLNCAfeKo>
Subject: Re: [sidr] I-D Action: draft-ietf-sidr-delta-protocol-04.txt
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidr/>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 29 Sep 2016 09:52:26 -0000
Hi all, This version contains only minor changes compared to the previous version: > https://www.ietf.org/rfcdiff?url2=draft-ietf-sidr-delta-protocol-04 Most notably we have changed "the RP SHOULD continue to retrieve the data" to "the RP MUST continue to retrieve the data" in case of TLS certificate or host name validation issues. The authors believe this is feasible to implement since we now have two working implementations for this. Other than that we have added a Security Considerations section, and the IANA Considerations section is updated to request an update to the PKIX Access Descriptor registry. We believe that this work is now done. We have two interoperating publication servers and two interoperating validators. We would like to ask the chairs for last call on this document. Thanks Tim Bruijnzeels > On 29 Sep 2016, at 11:44, internet-drafts@ietf.org wrote: > > > A New Internet-Draft is available from the on-line Internet-Drafts directories. > This draft is a work item of the Secure Inter-Domain Routing of the IETF. > > Title : RPKI Repository Delta Protocol > Authors : Tim Bruijnzeels > Oleg Muravskiy > Bryan Weber > Rob Austein > Filename : draft-ietf-sidr-delta-protocol-04.txt > Pages : 19 > Date : 2016-09-29 > > Abstract: > In the Resource Public Key Infrastructure (RPKI), certificate > authorities publish certificates, including end entity certificates, > Certificate Revocation Lists (CRL), and RPKI signed objects to > repositories. Relying Parties (RP) retrieve the published > information from those repositories. This document specifies a delta > protocol which provides relying parties with a mechanism to query a > repository for incremental updates, thus enabling the RP to keep its > state in sync with the repository. > > > The IETF datatracker status page for this draft is: > https://datatracker.ietf.org/doc/draft-ietf-sidr-delta-protocol/ > > There's also a htmlized version available at: > https://tools.ietf.org/html/draft-ietf-sidr-delta-protocol-04 > > A diff from the previous version is available at: > https://www.ietf.org/rfcdiff?url2=draft-ietf-sidr-delta-protocol-04 > > > Please note that it may take a couple of minutes from the time of submission > until the htmlized version and diff are available at tools.ietf.org. > > Internet-Drafts are also available by anonymous FTP at: > ftp://ftp.ietf.org/internet-drafts/ > > _______________________________________________ > sidr mailing list > sidr@ietf.org > https://www.ietf.org/mailman/listinfo/sidr
- [sidr] I-D Action: draft-ietf-sidr-delta-protocol… internet-drafts
- Re: [sidr] I-D Action: draft-ietf-sidr-delta-prot… Tim Bruijnzeels