IETF Logo Mail Archive

Re: [sidr] pCNT & prepending

XIANG Yang <xiangy08@csnet1.cs.tsinghua.edu.cn> Thu, 28 July 2011 15:11 UTC

Return-Path: <sharangxy@gmail.com>
X-Original-To: sidr@ietfa.amsl.com
Delivered-To: sidr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A163521F8C4E for <sidr@ietfa.amsl.com>; Thu, 28 Jul 2011 08:11:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.684
X-Spam-Level:
X-Spam-Status: No, score=-1.684 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, MISSING_HEADERS=1.292, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id T2TXBuWD75CU for <sidr@ietfa.amsl.com>; Thu, 28 Jul 2011 08:11:58 -0700 (PDT)
Received: from mail-vx0-f172.google.com (mail-vx0-f172.google.com [209.85.220.172]) by ietfa.amsl.com (Postfix) with ESMTP id 045AB21F8C4D for <sidr@ietf.org>; Thu, 28 Jul 2011 08:11:57 -0700 (PDT)
Received: by vxi40 with SMTP id 40so2524506vxi.31 for <sidr@ietf.org>; Thu, 28 Jul 2011 08:11:57 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:from:date :x-google-sender-auth:message-id:subject:cc:content-type; bh=eLKsz3Tpy90KhBcBQudrNDhBhMKEf33XWlRdG4utMe8=; b=NGMjgCXex9gLWosFyY/WsPPYSQpqMK08aV2ev0mRmpT9tTETMJGzdxTuD2VUe7HhI1 3UFtuv8bI7N+ykb2NuAwwAeKIig06DmUu8PvqS6CqVDNrIDL8NUKehAEXx2k//uSxcvA dO3ghK8y2sPK7blLnX0C9q2wZq8GWkrWCJ7Ng=
Received: by 10.220.7.79 with SMTP id c15mr45023vcc.3.1311865917116; Thu, 28 Jul 2011 08:11:57 -0700 (PDT)
MIME-Version: 1.0
Sender: sharangxy@gmail.com
Received: by 10.220.190.199 with HTTP; Thu, 28 Jul 2011 08:11:17 -0700 (PDT)
In-Reply-To: <3E7A5153-26C1-4974-9A1B-33AB92FCD657@tcb.net>
References: <3E7A5153-26C1-4974-9A1B-33AB92FCD657@tcb.net>
From: XIANG Yang <xiangy08@csnet1.cs.tsinghua.edu.cn>
Date: Thu, 28 Jul 2011 23:11:17 +0800
X-Google-Sender-Auth: -Plgnk4SFt9saP8jT0vO30QcdeM
Message-ID: <CA+rW-LBMWPRYhK+Q7fhymKnvhYetroqBG0p=CvuN-OnysSK4QA@mail.gmail.com>
Cc: sidr wg list <sidr@ietf.org>
Content-Type: multipart/alternative; boundary="000325573d2afb912a04a92295e1"
Subject: Re: [sidr] pCNT & prepending
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/sidr>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 28 Jul 2011 15:11:58 -0000

+1 support.
It's import to defend "AS removal" attack.
_____________________________________________________
Yang Xiang, PhD student, Tsinghua Univ., about.me/xiangyang



2011/7/28 Danny McPherson <danny@tcb.net>

>
> Doug et al,
> I like the general objective of pCNT and this seems a good idea to me.  My
> only comment at the microphone was that if we add this for compression, then
> validation should require that pCNT MUST be equal to the number of
> _contiguous ASx appearances in the path (i.e., no more, no less, and only
> contiguous).
>
> I do wonder if pCNT=0 for transparent route servers introduces the
> opportunity for some sort of downgrade attack of sorts..
>
> -danny
> _______________________________________________
> sidr mailing list
> sidr@ietf.org
> https://www.ietf.org/mailman/listinfo/sidr
>

v2.23.0 | Report a Bug | By Email