On Dec 7, 2012, at 12:34 AM, Christopher Morrow wrote: > On Thu, Dec 6, 2012 at 11:20 PM, Montgomery, Douglas <[email protected]> wrote: >> I was talking about when the systems designed to support the distribution >> of authorization information (e.g., RP/RPKI or some DNS based system?) >> were in steady state ... I.e., they have booted up and done their initial >> data loads. > > somewhere along the train my comment about dns got moved to 'just like > dnssec' (which I was intentionally not referring to, maybe I should > have used email as an example instead). Then in this part of the > messages I think my DNS comment got moved into 'if you distribute the > rpki data via dns instead of up/down/left/right/a-b/a-b... the > repository -> cache protocol'. I didn't mean it in that sense either > :( > > I think somewhere 5-8 messages back Arturo's note that: > 1) hosted model is just a crutch > 2) hosted model isn't intended for everyone to use > 3) most large ISP or large operations groups are expected to run their own CA
I totally agree, and I hope I was clear in ack'ing that this was something that I agreed with. > coupled with eric's notes that: > 1) hosted seems fragile for lots of operations > 2) people should think long and hard about using the hosted model of > controlling their own fate > > gets the general gist of my point: "If you use the hosted model you > are equivalently outsourcing your Mail/SMTP infrastructure to another > person, be sure you want to do that..." Yup. Agreed. Eric _______________________________________________ sidr mailing list [email protected] https://www.ietf.org/mailman/listinfo/sidr
