Re: [Sidrops] [WGLC] draft-ietf-sidrops-roa-considerations-01 - Ends 10/March/2022
Geoff Huston <gih@apnic.net> Thu, 10 March 2022 20:25 UTC
Return-Path: <gih@apnic.net>
X-Original-To: sidrops@ietfa.amsl.com
Delivered-To: sidrops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C4DC33A0D5D for <sidrops@ietfa.amsl.com>; Thu, 10 Mar 2022 12:25:14 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.11
X-Spam-Level:
X-Spam-Status: No, score=-2.11 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=apnic.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4SkXdzyXp2WA for <sidrops@ietfa.amsl.com>; Thu, 10 Mar 2022 12:25:09 -0800 (PST)
Received: from AUS01-ME3-obe.outbound.protection.outlook.com (mail-me3aus01on20607.outbound.protection.outlook.com [IPv6:2a01:111:f403:7004::607]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BF87E3A0D65 for <sidrops@ietf.org>; Thu, 10 Mar 2022 12:25:09 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=eZLBXaicoStz8ftw/Gz/Mf450Ch3bxKCDUv0QddPxIYiykaeWJC6JNWyC/I0OlDRBw0fb3q1inSaTD87B5cxl2Y9viX5PorApB+lSflD1XE0KX6aAF9Gz1SUeUWWDPl3P1pOKPjWQ7+5GhTfAFKLg3rHD8NG0dmkBivOykJjuOjbX7fQQyh+VbassB+AIyca8tuxGXwBvUp+KC48eqSzsJrsWvdVOkBwnyrNNattOJtkxa2caunvK1FRhI9ipj8ykw4DF9KczJMfO+DU8JQg42mvS+iBP3lhxhvDXHKnCTwskp5J9SQE8KYTpDIipggp8rwPDEhqJaaJtZxH38Dvlg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=wt4TzvibyY3QjD0PDdy4+yNP2cdJs+GJBlBbXRdMGyA=; b=IVGlKJOZwlhd7PMOIceJOXvTUTSe9YqKN+dz72b/9vpLizdPu7MFiDci/V2SO5yZwRBl+w+3marzvQoxA4qD64SBIee7zhHbeWo3Ulb1LNrrJIPY8FWHR8F3FqA0Qua8iNfJo9+ii54Ctd+0oUHN1St5oug5qWr0/lUUBJSm5gv7U3XQvXKN7M6CLmHvTmcg4EN45vn7IxCmWtEAfFtIcgYPQdqQ9e7Kt7TcsbZ44SmbiEayPJilv5yioLCTIMiB+MOL7BOp3ws9Oj5y++h6wBuHV7ofK7yz4GjTc2YLaXZ2Jq0gaVgxrAsWc2NcnGjE0ufLxCX5X5LyDEi+euuJxw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=apnic.net; dmarc=pass action=none header.from=apnic.net; dkim=pass header.d=apnic.net; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=apnic.net; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=wt4TzvibyY3QjD0PDdy4+yNP2cdJs+GJBlBbXRdMGyA=; b=aJp3MOUd5KO6PvqEjsd33ocV/uBlXcAx/mPKyp4qkG19whhKImud6mKGo42H7k7xm93390oiwex1KE4B7lVKklCXl0B7z3QVBdOYbAEOyrX5GdjKYaiCn/hlfdWzSH2GW+wl10eJTafxOblyydLGilHWcoW1d+xewj9AliXsvi0=
Received: from SYZP282MB3169.AUSP282.PROD.OUTLOOK.COM (2603:10c6:10:176::18) by MEYP282MB1750.AUSP282.PROD.OUTLOOK.COM (2603:10c6:220:ba::7) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5038.14; Thu, 10 Mar 2022 20:25:01 +0000
Received: from SYZP282MB3169.AUSP282.PROD.OUTLOOK.COM ([fe80::2d75:2788:316:de9]) by SYZP282MB3169.AUSP282.PROD.OUTLOOK.COM ([fe80::2d75:2788:316:de9%4]) with mapi id 15.20.5061.022; Thu, 10 Mar 2022 20:25:01 +0000
From: Geoff Huston <gih@apnic.net>
To: Randy Bush <randy@psg.com>
CC: SIDR Operations WG <sidrops@ietf.org>
Thread-Topic: [Sidrops] [WGLC] draft-ietf-sidrops-roa-considerations-01 - Ends 10/March/2022
Thread-Index: AQHYNDJhPUxJk93DPE+sp2OhMnXz66y4edYAgAAFRICAAASQgIAAAsEAgACCLYCAAAdaAIAAAX4A
Date: Thu, 10 Mar 2022 20:25:01 +0000
Message-ID: <56A29364-EB28-4224-96D0-8A5FE95D1880@apnic.net>
References: <BYAPR18MB26961DE9F15501CCA12ECCF1C13D9@BYAPR18MB2696.namprd18.prod.outlook.com> <851649A5-9075-4956-8B57-E51F612DF6BD@nlnetlabs.nl> <m235jqa2fk.wl-randy@psg.com> <D46FDA88-15E2-4EC6-BE07-0A1A93038B64@ripe.net> <m2v8wm8278.wl-randy@psg.com> <8961B085-5022-49C8-8775-77031B3DD814@ripe.net> <m2r17a80zl.wl-randy@psg.com> <9B0B0DBF-9F7A-4A61-9EBE-BCE556150475@apnic.net> <m25yol8srn.wl-randy@psg.com>
In-Reply-To: <m25yol8srn.wl-randy@psg.com>
Accept-Language: en-AU, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-mailer: Apple Mail (2.3693.60.0.1.1)
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=apnic.net;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 136a47b9-3fd2-445f-1654-08da02d40db8
x-ms-traffictypediagnostic: MEYP282MB1750:EE_
x-microsoft-antispam-prvs: <MEYP282MB1750515D06E55CAEB0849BDEB80B9@MEYP282MB1750.AUSP282.PROD.OUTLOOK.COM>
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:SYZP282MB3169.AUSP282.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230001)(4636009)(396003)(39840400004)(376002)(366004)(346002)(136003)(76116006)(8676002)(53546011)(38100700002)(2906002)(64756008)(66556008)(66446008)(66946007)(4326008)(122000001)(71200400001)(6916009)(38070700005)(5660300002)(8936002)(508600001)(316002)(86362001)(6506007)(6486002)(33656002)(186003)(36756003)(66574015)(6512007)(2616005)(66476007)(45980500001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="us-ascii"
Content-ID: <79FD74A94CEC3040A20BEC2F87102C0E@AUSP282.PROD.OUTLOOK.COM>
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: apnic.net
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: SYZP282MB3169.AUSP282.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: 136a47b9-3fd2-445f-1654-08da02d40db8
X-MS-Exchange-CrossTenant-originalarrivaltime: 10 Mar 2022 20:25:01.2367 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 127d8d0d-7ccf-473d-ab09-6e44ad752ded
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: r2G/FcO6DSQ9s9bYw2bKbMZq7CVtMG1ituEj7CKSfeaYo2xK7fbl0jvW9skSCXYl
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MEYP282MB1750
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidrops/fqUXRRx00C2BISz8GL3LF7BigAQ>
Subject: Re: [Sidrops] [WGLC] draft-ietf-sidrops-roa-considerations-01 - Ends 10/March/2022
X-BeenThere: sidrops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: A list for the SIDR Operations WG <sidrops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidrops>, <mailto:sidrops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidrops/>
List-Post: <mailto:sidrops@ietf.org>
List-Help: <mailto:sidrops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidrops>, <mailto:sidrops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 10 Mar 2022 20:25:15 -0000
> On 11 Mar 2022, at 7:19 am, Randy Bush <randy@psg.com> wrote: > >> How many times do we need to go around and around this space before we >> realise that asynchronous demand-pull flooding designs are >> intrinsically broken? > > the internet is probably intriniscally broken; but we plod on. > > i would be *extremely* interested in your description of how the dns and > rpki would work in push models; and suspect that others would be as > well. very large scale, wide distribution, and variable connectivity > make difficult bedfellows. > agreed, yet we have TLS using just-in-time credential provisioning in the initial handshake which has very different scaling properties. The models of DNSSEC provisioning also staple the credentials to the data. RPKI is one of the few models that attempt to pre-provision the entirety of the credential sets to all relying parties all of the time, and I find myself wondering why we ever thought that such an approach would scale! yes, I agree its just one more aspect of the intrinsic brokenness of the Internet, and, as you say, we plod on! :-) Geoff
- [Sidrops] [WGLC] draft-ietf-sidrops-roa-considera… Keyur Patel
- Re: [Sidrops] [WGLC] draft-ietf-sidrops-roa-consi… Randy Bush
- Re: [Sidrops] [WGLC] draft-ietf-sidrops-roa-consi… Rob Austein
- Re: [Sidrops] [WGLC] draft-ietf-sidrops-roa-consi… George Michaelson
- Re: [Sidrops] [WGLC] draft-ietf-sidrops-roa-consi… Tom Harrison
- Re: [Sidrops] [WGLC] draft-ietf-sidrops-roa-consi… Tim Bruijnzeels
- Re: [Sidrops] [WGLC] draft-ietf-sidrops-roa-consi… Di Ma
- Re: [Sidrops] [WGLC] draft-ietf-sidrops-roa-consi… chku
- Re: [Sidrops] [WGLC] draft-ietf-sidrops-roa-consi… Randy Bush
- Re: [Sidrops] [WGLC] draft-ietf-sidrops-roa-consi… Ties de Kock
- Re: [Sidrops] [WGLC] draft-ietf-sidrops-roa-consi… Randy Bush
- Re: [Sidrops] [WGLC] draft-ietf-sidrops-roa-consi… Ties de Kock
- Re: [Sidrops] [WGLC] draft-ietf-sidrops-roa-consi… Randy Bush
- Re: [Sidrops] [WGLC] draft-ietf-sidrops-roa-consi… Ties de Kock
- Re: [Sidrops] [WGLC] draft-ietf-sidrops-roa-consi… Geoff Huston
- Re: [Sidrops] [WGLC] draft-ietf-sidrops-roa-consi… Randy Bush
- Re: [Sidrops] [WGLC] draft-ietf-sidrops-roa-consi… Geoff Huston
- Re: [Sidrops] [WGLC] draft-ietf-sidrops-roa-consi… Randy Bush
- Re: [Sidrops] [WGLC] draft-ietf-sidrops-roa-consi… Stephen Kent
- Re: [Sidrops] [WGLC] draft-ietf-sidrops-roa-consi… Tim Bruijnzeels
- Re: [Sidrops] [WGLC] draft-ietf-sidrops-roa-consi… Tim Bruijnzeels
- Re: [Sidrops] [WGLC] draft-ietf-sidrops-roa-consi… YAN Zhiwei
- Re: [Sidrops] [WGLC] draft-ietf-sidrops-roa-consi… Christopher Morrow
- Re: [Sidrops] [WGLC] draft-ietf-sidrops-roa-consi… YAN Zhiwei
- Re: [Sidrops] [WGLC] draft-ietf-sidrops-roa-consi… Ties de Kock
- Re: [Sidrops] [WGLC] draft-ietf-sidrops-roa-consi… Keyur Patel
- Re: [Sidrops] [WGLC] draft-ietf-sidrops-roa-consi… Ties de Kock