And THE organization can also take down bgp-peers, shutdown interfaces,
etc.
At the end, it is its space, they can revoke certs.
Cheers,
as
On 3/20/13 9:50 AM, Danny McPherson wrote:
>
> Interesting presentation here:
>
> http://www.cs.bu.edu/~goldbe/papers/Cooper_RPKI_BFOC.pdf
>
> "The RPKI (Resource Public Key Infrastructure) is a new infrastructure
> to secure Internet routing
> It’s been in deployment since ~2011 But, it also creates new risks
> (misconfigurations and takedowns)
> that could make IP prefixes unreachable"
>
> Given we've been concerned (and vocal) about this from an operational
> perspective since RPKI's proposed "tight coupling" into BGPSEC
> discussions many years ago...
>
> -danny
>
> _______________________________________________
> sidr mailing list
> [email protected]
> https://www.ietf.org/mailman/listinfo/sidr
_______________________________________________
sidr mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/sidr
