Re: [Sidrops] I-D Action: draft-ietf-sidrops-https-tal-07.txt

Warren Kumari <warren@kumari.net> Mon, 04 March 2019 20:46 UTC

Return-Path: <warren@kumari.net>
X-Original-To: sidrops@ietfa.amsl.com
Delivered-To: sidrops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2BD04130DEF for <sidrops@ietfa.amsl.com>; Mon, 4 Mar 2019 12:46:39 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=kumari-net.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fNU-MXUFJjNi for <sidrops@ietfa.amsl.com>; Mon, 4 Mar 2019 12:46:35 -0800 (PST)
Received: from mail-wr1-x444.google.com (mail-wr1-x444.google.com [IPv6:2a00:1450:4864:20::444]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 61D331294FA for <sidrops@ietf.org>; Mon, 4 Mar 2019 12:46:35 -0800 (PST)
Received: by mail-wr1-x444.google.com with SMTP id o17so7067628wrw.3 for <sidrops@ietf.org>; Mon, 04 Mar 2019 12:46:35 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=kumari-net.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=ltzrXnEbNjgWlNUQgjNA+3vxpsjsylwiYpEgFdZiBqk=; b=cFOKWrF5jh4l+62SEd9E8fzet7yBIWoAOPDF5E2tqfAmM2Gbq4fKL3s2DpwCGnPkEv EhepSkAOBhioGb77f55rZCo7n8TO8HDEEn6Kr87fSIMUmV80v7JZ23HOvIecP8NJBmok u2Rxv5Y3wpaBnuOgdvPa2xXMaWTzKbluFFyngNgXEjaOhihSZgJdq/hU4fRcuapmp+wt o7/HxQoC1OGSq63kQWi0vmHLkoZWG2VP1j2dDifnk9gvtzzBlWxFJCfZgSwn+n/uWpBQ yIuqu554qDCVhwownO23h+DYvGTnq/NrCqut37UE5qxhdBR4Hm4n2zJROecfK0mvL7S1 mNpw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=ltzrXnEbNjgWlNUQgjNA+3vxpsjsylwiYpEgFdZiBqk=; b=nQ93z2AXp65wmxLhU6j2eei5UN0OnjZAgHR/ZsoJNrIWQvtWKbHhBD0sh9JNCX6/EJ sS+RMgyvpuZg8e25H07ZG8lqiEmGbm+PEkSwE2WGvQO0relgkpOLmQ4fj92nJv9+1/z1 MjlLTyIato0bHTY+DmcsuM1TifIfkee3vuyvxsQhgt5PpuRT46qXFxNgiOYyQZl4++iS GdDIDMLJWiCednySSp4eFB7Hi/2aorJnCRISuwSSDbgjYtGr3sIsPR42OMRxVsLPkbHL rx036jAF4veDGPk8F11zpg3oTRI3OSl7bFpjHw5MbAyg7H1l6DEFXU7txxqlCi1ws52z Z9Lw==
X-Gm-Message-State: APjAAAXSFt7xHmHKQDq0cJ4i/dM8IhGF9e9NrKc5vWzQ+SKJz1tngoLc /0NL1fqojiTkutjTMZ9V3SYakywZsWlWSQS61eOPrw==
X-Google-Smtp-Source: APXvYqwoihmkfLe2DI/TL2PE2KL61rxsbpbLpF4eXR6A3ShwJEuQ/CEsfafzz0KDf+3XaVm4KbzSR0DAiwtQ3qeQuV4=
X-Received: by 2002:adf:8061:: with SMTP id 88mr13314832wrk.77.1551732393464; Mon, 04 Mar 2019 12:46:33 -0800 (PST)
MIME-Version: 1.0
References: <155173129794.5257.14817033443544230360@ietfa.amsl.com> <85897EED-175D-4FDF-A6C0-B62843C2519B@nlnetlabs.nl>
In-Reply-To: <85897EED-175D-4FDF-A6C0-B62843C2519B@nlnetlabs.nl>
From: Warren Kumari <warren@kumari.net>
Date: Mon, 4 Mar 2019 15:45:56 -0500
Message-ID: <CAHw9_iLbsEY0cYjqPPMyaF7tv+eJiEMpJbWoFXCNk6CXov-ewQ@mail.gmail.com>
To: Tim Bruijnzeels <tim@nlnetlabs.nl>
Cc: SIDR Operations WG <sidrops@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000196a2f05834adadd"
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidrops/6DkvSd3xTBtSh1YmRdCZS5Dje_c>
Subject: Re: [Sidrops] I-D Action: draft-ietf-sidrops-https-tal-07.txt
X-BeenThere: sidrops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: A list for the SIDR Operations WG <sidrops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidrops>, <mailto:sidrops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidrops/>
List-Post: <mailto:sidrops@ietf.org>
List-Help: <mailto:sidrops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidrops>, <mailto:sidrops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 04 Mar 2019 20:46:39 -0000

On Mon, Mar 4, 2019 at 3:30 PM Tim Bruijnzeels <tim@nlnetlabs.nl>; wrote:

> Hi all,
>
> This version addresses the nits pointed out by Warren Kumari. Thanks
> Warren!
>

Nah, thanks for a: doing it, and b: not minding that it is busy-work.

IETF LC started.
W



>
> Tim
>
> > On 4 Mar 2019, at 21:28, internet-drafts@ietf.org wrote:
> >
> >
> > A New Internet-Draft is available from the on-line Internet-Drafts
> directories.
> > This draft is a work item of the SIDR Operations WG of the IETF.
> >
> >        Title           : Resource Public Key Infrastructure (RPKI) Trust
> Anchor Locator
> >        Authors         : Geoff Huston
> >                          Samuel Weiler
> >                          George Michaelson
> >                          Stephen Kent
> >                          Tim Bruijnzeels
> >       Filename        : draft-ietf-sidrops-https-tal-07.txt
> >       Pages           : 11
> >       Date            : 2019-03-04
> >
> > Abstract:
> >   This document defines a Trust Anchor Locator (TAL) for the Resource
> >   Public Key Infrastructure (RPKI).  TALs allow Relying Parties in the
> >   RPKI to download the current Trust Anchor (TA) CA certificate from
> >   one or more locations, and verify that the key of this self-signed
> >   certificate matches the key on the TAL.  Thus, Relying Parties can be
> >   configured with TA keys, but allow these TAs to change the content of
> >   their CA certificate.  In particular it allows TAs to change the set
> >   of Internet Number Resources included in the RFC3779 extension of
> >   their certificate.
> >
> >   This document obsoletes the previous definition of Trust Anchor
> >   Locators in RFC 7730 by adding support for HTTPS URIs.
> >
> >
> > The IETF datatracker status page for this draft is:
> > https://datatracker.ietf.org/doc/draft-ietf-sidrops-https-tal/
> >
> > There are also htmlized versions available at:
> > https://tools.ietf.org/html/draft-ietf-sidrops-https-tal-07
> > https://datatracker.ietf.org/doc/html/draft-ietf-sidrops-https-tal-07
> >
> > A diff from the previous version is available at:
> > https://www.ietf.org/rfcdiff?url2=draft-ietf-sidrops-https-tal-07
> >
> >
> > Please note that it may take a couple of minutes from the time of
> submission
> > until the htmlized version and diff are available at tools.ietf.org.
> >
> > Internet-Drafts are also available by anonymous FTP at:
> > ftp://ftp.ietf.org/internet-drafts/
> >
> > _______________________________________________
> > Sidrops mailing list
> > Sidrops@ietf.org
> > https://www.ietf.org/mailman/listinfo/sidrops
>
> _______________________________________________
> Sidrops mailing list
> Sidrops@ietf.org
> https://www.ietf.org/mailman/listinfo/sidrops
>


-- 
I don't think the execution is relevant when it was obviously a bad idea in
the first place.
This is like putting rabid weasels in your pants, and later expressing
regret at having chosen those particular rabid weasels and that pair of
pants.
   ---maf