Richard You can get nonrepudiation from hash chains. See
http://www.ietf.org/rfc/rfc4082.txt http://www.cl.cam.ac.uk/~rja14/Papers/fawkes.pdf Ross On 31 January 2012 09:36, Richard Barnes <[email protected]> wrote: > "As simple as possible, and no simpler" > > Your proposal is basically BGPSEC with MACs instead of digital > signatures. That doesn't work because another AS on the Internet can, > e.g., poison a route by appending hashes computed with another AS's > nonce. _______________________________________________ sidr mailing list [email protected] https://www.ietf.org/mailman/listinfo/sidr
