IETF Logo Mail Archive

Re: [Sidrops] ASPA duplicates

Job Snijders <job@sobornost.net> Tue, 28 April 2020 18:03 UTC

Return-Path: <job@instituut.net>
X-Original-To: sidrops@ietfa.amsl.com
Delivered-To: sidrops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B1A293A12B2 for <sidrops@ietfa.amsl.com>; Tue, 28 Apr 2020 11:03:02 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.466
X-Spam-Level:
X-Spam-Status: No, score=-2.466 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HEADER_FROM_DIFFERENT_DOMAINS=0.25, RCVD_IN_MSPIKE_H2=-0.82, SPF_HELO_NONE=0.001, SPF_NONE=0.001, UNPARSEABLE_RELAY=0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ryo6ZqZG1YXw for <sidrops@ietfa.amsl.com>; Tue, 28 Apr 2020 11:03:00 -0700 (PDT)
Received: from mail-wr1-f41.google.com (mail-wr1-f41.google.com [209.85.221.41]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4112E3A12A5 for <sidrops@ietf.org>; Tue, 28 Apr 2020 11:02:59 -0700 (PDT)
Received: by mail-wr1-f41.google.com with SMTP id d17so25779381wrg.11 for <sidrops@ietf.org>; Tue, 28 Apr 2020 11:02:59 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:resent-from:resent-date:resent-message-id :resent-to:user-agent:mime-version:message-id:in-reply-to:references :date:from:to:subject; bh=nBnjLU4mlk7nq4EbAPQ/QrO9HxpHVJ7buJGARYNgIKU=; b=gbgAgVLbbhI47Jslfi4Aqt7K4kQhXKDnopiwI0aiLGObdVU28Dsb81HcZ7sOVWxlGr NNj640f0rkkPjX2d3IxwiCzGGQ5Ew5T5J0QMMGlRUbDycmuy6RNVWNeM52e2N+yOSpoi lqlgshY55KWFY2UK77hupYYJvp5KGZsbnS9mRksLEF0ZRAdGqLcoxAH2McU1OyNSwX63 BXPuDWWx22vcXdRatsDiird7z02UwXJI7dXKtfMxB1Otrj1aTSL+PFw0qw7zUW50UwID qda9W1brvnjOl1CwZ6OC3j0xedVLBRJwA3zonNtrzz4wTBR6A1taTVeWtOTZBqwEjnea chvw==
X-Gm-Message-State: AGi0Pub9axYA+JZnnCrWP0H/xZAXpREzUexuVHQVEUJv84m6zMZKlJhn 9k2P83EFuA8NM2oOqNkmAyzGdAFlAQE=
X-Google-Smtp-Source: APiQypIWyIDWAY7+vGRwiX0tEBXQjBbio209FnTQ4gJdVQjoVvNKTe9cahjIakte2alV8VtWkBrXNg==
X-Received: by 2002:adf:a543:: with SMTP id j3mr34284085wrb.34.1588096977813; Tue, 28 Apr 2020 11:02:57 -0700 (PDT)
Received: from vurt.meerval.net (vurt.meerval.net. [192.147.168.22]) by smtp.gmail.com with ESMTPSA id w10sm27616126wrg.52.2020.04.28.11.02.56 for <sidrops@ietf.org> (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Tue, 28 Apr 2020 11:02:57 -0700 (PDT)
Received: from localhost (vurt.meerval.net [local]) by vurt.meerval.net (OpenSMTPD) with ESMTPA id db34c763 for <sidrops@ietf.org>; Tue, 28 Apr 2020 18:02:56 +0000 (UTC)
Resent-From: Job Snijders <job@ntt.net>
Resent-Date: Tue, 28 Apr 2020 18:02:56 +0000
Resent-Message-ID: <20200428180256.GI88820@vurt.meerval.net>
Resent-To: sidrops@ietf.org
User-Agent: Cyrus-JMAP/3.3.0-dev0-351-g9981f4f-fmstable-20200421v1
Mime-Version: 1.0
X-PersonalityId: 103791184
Message-Id: <d7858280-d86f-4517-a7df-26fc64d3e7f7@www.fastmail.com>
In-Reply-To: <24232.24434.41224.396200@oz.mt.att.com>
References: <87pnbrspdr.wl-morrowc@ops-netman.net> <24232.24434.41224.396200@oz.mt.att.com>
Date: Tue, 28 Apr 2020 19:03:23 +0200
From: Job Snijders <job@sobornost.net>
To: Jay Borkenhagen <jayb@braeburn.org>, sidrops@ietf.org
Content-Type: text/plain
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidrops/12L9B_bZPhEB7Rxjl9pSpALrOxg>
Subject: Re: [Sidrops] ASPA duplicates
X-BeenThere: sidrops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: A list for the SIDR Operations WG <sidrops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidrops>, <mailto:sidrops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidrops/>
List-Post: <mailto:sidrops@ietf.org>
List-Help: <mailto:sidrops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidrops>, <mailto:sidrops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 28 Apr 2020 18:03:03 -0000

On Tue, Apr 28, 2020, at 18:53, Jay Borkenhagen wrote:
> The current ASPA Verification draft:
> 
>  https://tools.ietf.org/html/draft-ietf-sidrops-aspa-verification-04
> 
> .... says in Section 3 "For a selected Customer AS MAY exist only
> single ASPA object."
> 
> I concur that an ASPA object should list every authorized upstream ASN
> to avoid possible race conditions, and as such it makes sense for only
> a single ASPA object to exist at any point in time.
> 
> But how is that uniqueness to be ensured?  What should RPs do if
> multiple validated ASPA objects are ever found to exist?

Good question. What should it do?

I expect such duplicates *will* exist if ASPA were to be deployed for real: in cases where an ASN is transferred from one RIR to another RIR and one wishes to make before break.

Kind regards,

Job

v2.23.0 | Report a Bug | By Email