> Just because the RIRs are the only organization offering hosting services, > doesn't mean that they are the only ones that can offer hosting services. > Certainly an enterprising Internet company with DDOS mitigation services > could offer RPKI CA hosting or simply hosting of RPKI repositories for > DDOS mitigation.
Yeah, while I'm not proposing that, my whole point was triggered off the assertion that there will be 5 repos, and that the hosted model fits the eventual needs. That thinking ignored too much grey area for me. > Just to reiterate the points Carlos made regarding DDOS of RPKI > repositories (which is the issue, not the hosting services): 1) if DDOS of > the repositories is in question, we should look at the > multiple-publication points proposal, and 2) switching to an HTTP fetching > protocol would broaden the available base of organizations that might wish > to distribute RPKI repositories. For 1) I think considering the results of DDoS'ing the repos should be part of the thinking. For 2) I (personally) haven't thought that through enough to adopt a position. Eric _______________________________________________ sidr mailing list [email protected] https://www.ietf.org/mailman/listinfo/sidr
