Re: [Sidrops] [WG ADOPTION] draft-va-sidrops-deploy-reconsidered-01 - ENDS 08/11/2019 (Aug 11)

Stephen Kent <stkent@verizon.net> Fri, 13 September 2019 23:50 UTC

Return-Path: <stkent@verizon.net>
X-Original-To: sidrops@ietfa.amsl.com
Delivered-To: sidrops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B31781200FD for <sidrops@ietfa.amsl.com>; Fri, 13 Sep 2019 16:50:27 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=verizon.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Sm7xP7_TJZ-G for <sidrops@ietfa.amsl.com>; Fri, 13 Sep 2019 16:50:26 -0700 (PDT)
Received: from sonic302-3.consmr.mail.bf2.yahoo.com (sonic302-3.consmr.mail.bf2.yahoo.com [74.6.135.42]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CA6C512008C for <sidrops@ietf.org>; Fri, 13 Sep 2019 16:50:25 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=verizon.net; s=a2048; t=1568418624; bh=6Ta7doc3EH2Hq7eWh8KZ7og6FKdmkBJ4WK2U/p2L5Y0=; h=Subject:To:References:From:Date:In-Reply-To:From:Subject; b=qmArj1Vfk9gWurXynCFQMs82ngNFlYuCxZJS5rm+k3J1ZKGVfYi08bgnm+sPOLmLdPEE1/7F6MF8lg+TH8BmNmZWB2UxRHFsvoQSPoKNlq72drkBn3A9/4GrJQlWRPi8Ss2dZm7vD10vqPW3UYlISuJYc5OZHwa1oi890RED4MNqXLepsBogs8BeCD4xbX7HBhLZ4nR/HszQirUO34XubJq2yAfKP998EQIo1GPOOEL95rIEgJiUQw0iiYsa0TjhxAcoDzagqaRM18v+O41xAb0YiCPZierY9GuUWdZB6+iRaY0LyZRbXQk00Z1FAiDy0xkphIRrOGV6+WqqsH0D9w==
X-YMail-OSG: tTjjbaYVM1kGwkT.jXG5Hh_htIWhj65D7sLqLm3KpC5qhicCoA5uC7AbJ6HFjhx RR61._5CxZmKJLDKirRDpIZBDx0PbMEjc8kkYIMmXRVYyD8PAyTE6gqTsUL3r6Kycf17udS7aZ8A N6u4Luoevt1D0dXcWuZpysS8A6hiTGb76ppl2Qc70YHy2KdOSaWee5O8XQ5WFKlC_KU1orB3I.rC mMxRTm3KNw0X5XqKJMMWpI58rAD2pw9hSxVj_xWtJ1ZupVlo7UB1ZV180RaYwQn3.azy8yGMjog8 jWxa8BWTnjlVEMBBKf9jQC0vd3n0Ucb_MgJn0svIwiRRlTvszPYq9NoxguMlHiYm7GXpR5Azt8SM qMdzC5N_4z6SLoXFRdNZSWq5Nl9Ho7rqTfQDXEUjawz7j5npsvVHITkyoDcf8o_AgR55uWmvnVDe G1G2SUzH6wzkYdXoyELNVeYb7nUGKAPdBwcURUVlEtu5ZyA7Qk1AFh9VlfgfrjdemlvRBYnuqDoQ vQsdK424dyalHO1EHmYf0_WGxby4buvt5UZlpAfmLSboLntRTMYkdXZhxmycCm0eKEpm8.MDR0WA C1GbxlzR7D2FPe5uoI.gPJF0Po76UluyCrf2lXBJ32F3gekpZ4e4hNIFmhJrRciVI7Ud_CITF2hq qlBE3KaFyng6wYCmf1SH1RermoTm9vcb5vCvbf6SKxn_x_lL0nYGgSxKrE1.rH04294wBk57f04R nZ2CTjS4FmxnTAzl_mm0jdjDsLxfPXzsg2YWjZnCMTTjm8elkfu15LrF3ufkOzBZoocsIIgr5FS7 70kLUzx_iG3xEgFI7W9Gl528Vkajdn4rGoP1Fa0SnKo_bieRwPRkHnq6Eca2NYCyjHRlA_V3zZkr XCqapJbo1_j4X.G8lNt1k0YUoPyUmIqAIzzHnVbnt93SVBLOhkrYJbIgirPEkBOLehAZFceaHtXo uMDI60E9hWznrLZH68n5WsAe2kPI5AGxnpV10GX_FC6eVfS3nQk3AV4jWr.l6av3EXSuQGctUsME 3dNIQ6D3v.oczzecqj4.jjH4o5AXUtXmB9rvyheMaSbckCf9rte5Wnrt5CWwYlEX3wQD6oGcBm5d JW5wjHaU4thgSbIdCaeyMyq7IVIV1JgVXP6m9Fh1JTSB2mZTjpGBtA09PYH0huBFlVxWbv8VEAFm GOYVElOBn.7jxmM_mIN4MnzgnSmoYMcO2yHSHGyFrchYL9KWHeM4Jh5CNrRTiokdP9.Nji1GAFT5 b.vOAQtVP3ErsRA7FSl7a6f3tKed7Av0GBwGNcCfyDU6gNQFhPZLO.eaa27eVY0Vd47K.wGY-
Received: from sonic.gate.mail.ne1.yahoo.com by sonic302.consmr.mail.bf2.yahoo.com with HTTP; Fri, 13 Sep 2019 23:50:24 +0000
Received: by smtp413.mail.bf1.yahoo.com (Oath Hermes SMTP Server) with ESMTPA ID a1c6ef8fbd7ebcd37da10b762da42ddf; Fri, 13 Sep 2019 23:50:20 +0000 (UTC)
To: sidrops@ietf.org
References: <yj9o7e8bjdaj.wl-morrowc@ops-netman.net> <aed96e4a-0ba3-20e3-7412-c7d62cd6d193@foobar.org>
From: Stephen Kent <stkent@verizon.net>
Message-ID: <1d35c5cd-7303-3ac5-49c8-87f478a61a4e@verizon.net>
Date: Fri, 13 Sep 2019 19:50:19 -0400
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.14; rv:60.0) Gecko/20100101 Thunderbird/60.9.0
MIME-Version: 1.0
In-Reply-To: <aed96e4a-0ba3-20e3-7412-c7d62cd6d193@foobar.org>
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 8bit
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidrops/v6YsbwaDQI5o-VnCgvVZ9umRFAs>
Subject: Re: [Sidrops] [WG ADOPTION] draft-va-sidrops-deploy-reconsidered-01 - ENDS 08/11/2019 (Aug 11)
X-BeenThere: sidrops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: A list for the SIDR Operations WG <sidrops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidrops>, <mailto:sidrops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidrops/>
List-Post: <mailto:sidrops@ietf.org>
List-Help: <mailto:sidrops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidrops>, <mailto:sidrops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 13 Sep 2019 23:50:28 -0000

CAs are "Certification Authorities", not "Certificate Authorities", if 
anyone cares.

> Chris Morrow wrote on 21/07/2019 22:19:
>> SIDROps folks!
>>
>> Please consider this an adoption call for the subject draft, abstract
>> of which is:
>>
>> ???? "This document defines a deployment model for reconsidered validation
>> ?????? [RFC8360] in the Resource Public Key Infrastructure (RPKI).
>>
>> ?????? It stipulates that Relying Parties in the RPKI MUST support
>> ?????? reconsidered validation by 1 July TBD-Year, and that Certificate
>> ?????? Authorities MAY use the reconsidered validation OIDs in CA
>> ?????? certificates that they issue from this date.?? Furthermore 
>> Certificate
>> ?????? Authorities should monitor whether the set of resources in CA
>> ?????? certificate they receive has shrunk, and make adjustments in the CA
>> ?????? certificates and/or other RPKI objects when appropriate."
>>
>> Please have a read, discuss, and comment over the next ~3 weeks period.
>> Thanks for your prompt attention to this matter.
>
> belatedly, this seems like a good idea.?? My crypto ca/chain-of-trust 
> fu is not up to seeing anything obviously wrong with the idea.
>
> Nick
>
> _______________________________________________
> Sidrops mailing list
> Sidrops@ietf.org
> https://www.ietf.org/mailman/listinfo/sidrops
>