IETF Logo Mail Archive

Re: [sidr] WGLC - draft-ietf-sidr-rpki-validation-reconsidered - ends 10/25/2016

Tim Bruijnzeels <tim@ripe.net> Tue, 01 November 2016 08:17 UTC

Return-Path: <tim@ripe.net>
X-Original-To: sidr@ietfa.amsl.com
Delivered-To: sidr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2F21012949F; Tue, 1 Nov 2016 01:17:14 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.397
X-Spam-Level:
X-Spam-Status: No, score=-3.397 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-1.497] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5krRiPpO4BE9; Tue, 1 Nov 2016 01:17:12 -0700 (PDT)
Received: from molamola.ripe.net (molamola.ripe.net [IPv6:2001:67c:2e8:11::c100:1371]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4630712949A; Tue, 1 Nov 2016 01:17:12 -0700 (PDT)
Received: from titi.ripe.net ([193.0.23.11]) by molamola.ripe.net with esmtps (TLSv1.2:DHE-RSA-AES256-GCM-SHA384:256) (Exim 4.84_2) (envelope-from <tim@ripe.net>) id 1c1UFn-0009T3-3q; Tue, 01 Nov 2016 09:17:08 +0100
Received: from sslvpn.ripe.net ([193.0.20.230] helo=vpn-24.ripe.net) by titi.ripe.net with esmtps (TLSv1:DHE-RSA-AES256-SHA:256) (Exim 4.84_2) (envelope-from <tim@ripe.net>) id 1c1UFm-0005a6-Up; Tue, 01 Nov 2016 09:17:06 +0100
Mime-Version: 1.0 (Mac OS X Mail 9.3 \(3124\))
Content-Type: text/plain; charset="utf-8"
From: Tim Bruijnzeels <tim@ripe.net>
In-Reply-To: <FE412537-7A83-4EF0-BE12-BEA57A17AB0C@sn3rd.com>
Date: Tue, 01 Nov 2016 09:17:06 +0100
Content-Transfer-Encoding: quoted-printable
Message-Id: <FD849117-9903-498E-BD94-C000D38565BB@ripe.net>
References: <yj9otwcjnfkl.wl%morrowc@ops-netman.net> <DM2PR09MB0446D5E5310327B1766D6D4384AB0@DM2PR09MB0446.namprd09.prod.outlook.com> <8E2E93F5-6184-4E58-8EF8-65C5D43E54A2@ripe.net> <FE412537-7A83-4EF0-BE12-BEA57A17AB0C@sn3rd.com>
To: Sean Turner <sean@sn3rd.com>
X-Mailer: Apple Mail (2.3124)
X-ACL-Warn: Delaying message
X-RIPE-Spam-Level: -----------
X-RIPE-Spam-Report: Spam Total Points: -11.9 points pts rule name description ---- ---------------------- ------------------------------------ -7.5 ALL_TRUSTED Passed through trusted hosts only via SMTP -2.5 RP_MATCHES_RCVD Envelope sender domain matches handover relay domain -1.9 BAYES_00 BODY: Bayes spam probability is 0 to 1% [score: 0.0000]
X-RIPE-Signature: 784d7acfe6559f2a0b602ec6519a0719c6a0d47894caac70f4af95ed07d833d5
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidr/zcokI9ZKcUaFI7JuzQz9TQCXrH4>
Cc: "sidr-ads@ietf.org" <sidr-ads@ietf.org>, Chris Morrow <morrowc@ops-netman.net>, "sidr-chairs@ietf.org" <sidr-chairs@ietf.org>, "sidr@ietf.org" <sidr@ietf.org>
Subject: Re: [sidr] WGLC - draft-ietf-sidr-rpki-validation-reconsidered - ends 10/25/2016
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidr/>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 01 Nov 2016 08:17:14 -0000

Hi Sean,

> On 31 Oct 2016, at 20:06, Sean Turner <sean@sn3rd.com> wrote:
> 
> I didn’t compile it, but it looks right to me.  And for what it’s worth, you did exactly what I would have done by copying the syntax into the mainbody in order to explain it, but imposing it directly from 3779/6268 in the module.

To be fair I took that module straight out of the thread between you and Tom :)

In any case thank you very much for looking at this.

Tim


> 
> spt
> 
>> On Oct 26, 2016, at 11:32, Tim Bruijnzeels <tim@ripe.net> wrote:
>> 
>> Hi Sean, Tom, Russ, and all,
>> 
>> Sorry for bringing this up late. Technically past 25 October, and yes I would like to see this go through as you might expect from an author...
>> 
>> That said, can someone with good ASN.1-fu please have look at the changes w.r.t. ASN.1 structure and OIDs? I tried to include all your comments properly - but I would feel safer if one of you could confirm.
>> 
>> Thanks
>> Tim
>> 
>> 
>>> On 26 Oct 2016, at 05:13, Sriram, Kotikalapudi (Fed) <kotikalapudi.sriram@nist.gov> wrote:
>>> 
>>> I read the draft once again. I support publication.
>>> 
>>> Found a minor typo in the last paragraph on p.15 (can be dealt with during RFC editor review process):
>>> s/the loss of on IP address prefix from the VRS-IP/the loss of one IP address prefix from the VRS-IP/
>>> 
>>> Sriram
>>> 
>>> ________________________________________
>>> From: sidr <sidr-bounces@ietf.org> on behalf of Chris Morrow <morrowc@ops-netman.net>
>>> Sent: Tuesday, October 11, 2016 10:08 AM
>>> To: sidr@ietf.org; sidr-chairs@ietf.org; sidr-ads@ietf.org
>>> Subject: [sidr] WGLC - draft-ietf-sidr-rpki-validation-reconsidered - ends      10/25/2016
>>> 
>>> Howdy WG folks!
>>> The authors of:
>>> draft-ietf-sidr-rpki-validation-reconsidered
>>> 
>>> believe they have addressed all inflight concerns/comments, the
>>> request is to WGLC this, consider it's place in the world and if
>>> appropriate pass this document along to the IESG for publication.
>>> 
>>> The abstract for this draft is:
>>> "This document proposes an update to the certificate validation
>>> procedure specified in RFC 6487 that reduces aspects of operational
>>> fragility in the management of certificates in the RPKI, while
>>> retaining essential security features."
>>> 
>>> Let's have a read through, consider and reply with your thoughts please,
>>> this WGLC is set to expire: 10/25/2016 - October 25, 2016.
>>> 
>>> thanks for reading/replying/thinking!
>>> -chris
>>> co-chair-persona
>>> 
>>> _______________________________________________
>>> sidr mailing list
>>> sidr@ietf.org
>>> https://www.ietf.org/mailman/listinfo/sidr
>> 
>

v2.23.0 | Report a Bug | By Email