[Sidrops] Fw: New Version Notification for draft-sriram-sidrops-as-hijack-detection-00.txt

"Sriram, Kotikalapudi (Fed)" <kotikalapudi.sriram@nist.gov> Tue, 14 July 2020 12:44 UTC

Return-Path: <kotikalapudi.sriram@nist.gov>
X-Original-To: sidrops@ietfa.amsl.com
Delivered-To: sidrops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 460263A0BEF for <sidrops@ietfa.amsl.com>; Tue, 14 Jul 2020 05:44:32 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.103
X-Spam-Level:
X-Spam-Status: No, score=-2.103 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FROM_GOV_DKIM_AU=-0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=nist.gov
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zWeh3GqnxcF7 for <sidrops@ietfa.amsl.com>; Tue, 14 Jul 2020 05:44:31 -0700 (PDT)
Received: from GCC02-DM3-obe.outbound.protection.outlook.com (mail-dm3gcc02on2097.outbound.protection.outlook.com [40.107.91.97]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D17C63A0BDB for <sidrops@ietf.org>; Tue, 14 Jul 2020 05:44:30 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=GwWnWgVpP2V1DO8K6RHjKtlMfi02Vsvg59CpAYJt8ax5iujt6+n7sK3Ye1dF6o3m7nox8FgT8Z9rN7SATv1d/i85VXKcaYYqsPDusGzacBRL62yhMxw9iSly6yAXSntdB0DZjMueVWDQPFrdZ/qJV6nH8V67DtjZ7wbu46jyO/VAdO8UeGeiNZWpytrhCiU6KmAutj98VYXtzfLa+QRbbNYZCBmCu1lOAyQMxp3ro2Yun4/2UFwOclh4Q13Bk8Bene6cgq8Nv4qQudc5fP6GjslbZbldp4BaZyu8xHj+8F73CDBxfvFiWdnwxUg+iu30UoupsqdPgxr6qcFnpLLwOg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=n4t61YjOoBHn7DDq+iL3Qkq0Xw6bYCVXlLBJvBYhR2w=; b=kzOZ45/iyOFY1gNt7o/H+Kss9emrQtgBeKs5ZzfCq86nMAGXY9/3mGX8fh5EkiFZ7eBmpFgSmp1kEWnihI3hLERPJI9p6Q7ohltQc8oie4B+pduP6jxUYST4vkPSwo8LfbGtdubwFxGMbAZwx+Xd+Jszi4TzpRNlOyUd0+RcrgLe6jTktFb1Yw1VsWer0GxphuRUHqw4D6VycLTDCvXt7fgm7veMKrBXYM/MHXan6vdQ186q0Qv8OnTXTyp8ANcfSEvwR+FcvFBH+U4miPpDfCcVXSmosXZEg7gm+H6dSWV2IB2OgURcgsOcIGd8P1mEn/PNE2KUolZ96yV4+gxcPQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=nist.gov; dmarc=pass action=none header.from=nist.gov; dkim=pass header.d=nist.gov; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nist.gov; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=n4t61YjOoBHn7DDq+iL3Qkq0Xw6bYCVXlLBJvBYhR2w=; b=qGbi6yqM+09S6FmgtKTmiQd5z2x6BesYQYLndK3+f0dm6e4IRIsKUq2WY7xANeqN0cPCOi13SN4T6g4md2vuOKSBna8zGfvhayFChLO/oF/UR0rwExtJPpfJiK/MJUsoefgncOt8XnjEYCOMeytn15mH9P0N11kjTMPUpuR5Ul8=
Received: from BL0PR0901MB3682.namprd09.prod.outlook.com (2603:10b6:207:1a::32) by MN2PR09MB5721.namprd09.prod.outlook.com (2603:10b6:208:214::18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3174.25; Tue, 14 Jul 2020 12:44:29 +0000
Received: from BL0PR0901MB3682.namprd09.prod.outlook.com ([fe80::e059:5d95:bac6:d034]) by BL0PR0901MB3682.namprd09.prod.outlook.com ([fe80::e059:5d95:bac6:d034%3]) with mapi id 15.20.3195.017; Tue, 14 Jul 2020 12:44:29 +0000
From: "Sriram, Kotikalapudi (Fed)" <kotikalapudi.sriram@nist.gov>
To: "sidrops@ietf.org" <sidrops@ietf.org>
Thread-Topic: New Version Notification for draft-sriram-sidrops-as-hijack-detection-00.txt
Thread-Index: AQHWWXDBx8ENmdVQR0WmcYtUapXFZakHAZr3
Date: Tue, 14 Jul 2020 12:44:29 +0000
Message-ID: <BL0PR0901MB36823BF874ACB70B10DE60CA84610@BL0PR0901MB3682.namprd09.prod.outlook.com>
References: <159468437841.24043.6674919154308133890@ietfa.amsl.com>
In-Reply-To: <159468437841.24043.6674919154308133890@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=none action=none header.from=nist.gov;
x-originating-ip: [129.6.197.170]
x-ms-publictraffictype: Email
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: 0d924b07-d3a3-4e49-adc9-08d827f3a668
x-ms-traffictypediagnostic: MN2PR09MB5721:
x-microsoft-antispam-prvs: <MN2PR09MB57210F622695AB6131C9C53184610@MN2PR09MB5721.namprd09.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: /L76WR/IS8bgpaUq0pYVUjQzW8y7YVOfoxNKwKllwOthkG/fq8ggErqe/i6SuuhllwKC+T9nZw9EwdLbeCoyrlO/WHu0BuF7Ie4C4uYvPoH31HVu4wT5YnbT2sS0UW0z8E5OrMHDtZc6Db3lyiXh1xnc/FMBcMEb9oJsng7Zw3E6rnjH1nBS3oXZ6Rp9+Ckx091YUftWkmzG3t9aHJao+Fqvz7tegd+Y/7VnkT19SN5XEbEfBdSEVhwY3DpPN8kaUK0mKQLDs6Q6FjvjZM68fRj2fLzVduaLsmlExrqAHIWyU8x/4AyrKc13HeyOAb2vqYzmuhXNbpbdsTBM2aAZRipgq/Xo3ndU7Z9GdGCwVJXnJeiouFdzFNBLb5kMISiQobBc7U/jW6WoUoKmYSy5Ng==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BL0PR0901MB3682.namprd09.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(346002)(376002)(366004)(396003)(39860400002)(136003)(6916009)(5660300002)(86362001)(52536014)(8676002)(478600001)(966005)(8936002)(186003)(9686003)(450100002)(55016002)(33656002)(71200400001)(6506007)(53546011)(26005)(316002)(7696005)(66574015)(83380400001)(2906002)(15650500001)(76116006)(91956017)(66946007)(66556008)(64756008)(66476007)(66446008); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata: WW5Z2Yeo0pXV0/A9PjSVP5Vo5DHISkSTegPzMRvOHbmpEV/lnnaEUBycHApBJxKpcL7GdqeTvv7nMFcb7nsBHrAMEAJgAnLcvyP+P9atO2NPpDAP455PEgvCxNHgCYFBqa4qrQ/WJSHii1R+NW7xqz5Up/0zEu4IVg6fFTHiYCL6S7Pmy6A+hDEY5wS3BeZ9fbCcwXFGOBe9wqQD+gp1LaAED1Fy2OwIuwlwGH75DyDe+8HnhrP/s4KC79b+LUOYiU9SEIlez1lxfTmeLcAlNwGE2H4VY3BbZ+TS1FH1m0HK6EWsUVV7FlN6bl4t1WJwqc+Gzunz9ihm+/pMUH5Q1FqsrmeihGg59jhbq/xCM2PKUjkD28st1C5uutvvEw5hraaCc2X214D5OO4Ef9qoH5KW3YyFV0IWU6VHxe4D61rPJA+8lxiOkPLMIxW9/NoNGZfn5IqyCQGSirx6s+glp+rqeJbWtz9/VtNgF390VE0=
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: nist.gov
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BL0PR0901MB3682.namprd09.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 0d924b07-d3a3-4e49-adc9-08d827f3a668
X-MS-Exchange-CrossTenant-originalarrivaltime: 14 Jul 2020 12:44:29.4360 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 2ab5d82f-d8fa-4797-a93e-054655c61dec
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: JznIqG+QQlQXnEQ/l/T0ZXdPTLnqigOixGcvTMZ07n30N9ZMKm8xUd7MgnlkkuyIfbrSlT1UElTXDAYt2/Ta6w==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR09MB5721
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidrops/QWuGag4qF-2jb1A4X40nPsmV3_0>
Subject: [Sidrops] Fw: New Version Notification for draft-sriram-sidrops-as-hijack-detection-00.txt
X-BeenThere: sidrops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: A list for the SIDR Operations WG <sidrops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidrops>, <mailto:sidrops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidrops/>
List-Post: <mailto:sidrops@ietf.org>
List-Help: <mailto:sidrops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidrops>, <mailto:sidrops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 14 Jul 2020 12:44:32 -0000

Comments on the draft are welcome.
Chairs have kindly allocated time to present this at IETF 108 SIDROPS meeting.

Sriram
________________________________________
From: internet-drafts@ietf.org <internet-drafts@ietf.org>
Sent: Monday, July 13, 2020 7:52 PM
To: Sriram, Kotikalapudi (Fed); Montgomery, Douglas C. (Fed)
Subject: New Version Notification for draft-sriram-sidrops-as-hijack-detection-00.txt

A new version of I-D, draft-sriram-sidrops-as-hijack-detection-00.txt
has been successfully submitted by Kotikalapudi Sriram and posted to the
IETF repository.

Name:           draft-sriram-sidrops-as-hijack-detection
Revision:       00
Title:          AS Hijack Detection and Mitigation
Document date:  2020-07-13
Group:          Individual Submission
Pages:          5
URL:            https://www.ietf.org/id/draft-sriram-sidrops-as-hijack-detection-00.txt 
Htmlized:       https://tools.ietf.org/html/draft-sriram-sidrops-as-hijack-detection-00 

Abstract:
   This document proposes a method for detection and mitigation of AS
   hijacking.  In this mechanism, an AS operator registers a new object
   in the RPKI called 'ROAs Exist for All Prefixes (REAP)'.  REAP is
   digitally signed using the AS holder's certificate.  By registering
   REAP, the AS operator is declaring that they have Route Origin
   Authorization (ROA) coverage for all prefixes originated by their AS.
   A receiving AS will mark a route as Invalid if the prefix is not
   covered by any Validated ROA Payload (VRP) and the route origin AS
   has signed a REAP.  Here Invalid means that the route is determined
   to be an AS hijack.