At 11:53 AM -0400 7/28/11, Doug Montgomery wrote:
...
One could think of having RS's somehow announce/declare themselves (e.g.,
an RPKI object/flag) ... But I will point out that if I am unscrupulous I
will just announce myself and proceed.
yes, but if you do so, then there is a signed record of that, if we
follow Roque's suggestion and include an EKU in the router cert. If
contracts for resource allocation include language that prohibits
using the RPKI to make false assertions about RS-ness, then this
could be a basis for revocation ...
(As someone who is going through the resource allocation process with
an RIR, I know that there are already a lot of criteria that I have
promised to not violate, and that provide a basis for termination of
my allocation, so this could be added to that list :-).)
Steve
_______________________________________________
sidr mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/sidr
