On Mar 11, 2013, at 1:14 PM, Randy Bush <[email protected]> wrote: > but, as stated previously, i have serious reservations about it. at a > minimum, the sec cons must say that the uri can be an attack vector.
Such as the following? "RPKI Certificates contain URIs, all of which have potential of being attack vectors. An additional policy-qualifier URI adds one more potential vector for attack, which should be considered before dereferencing it." (or should the first statement above go into the RPKI framework document?) /John _______________________________________________ sidr mailing list [email protected] https://www.ietf.org/mailman/listinfo/sidr
