>From: Matthias Waehlisch [mailto:[email protected]] >Hi Sriram, > > just a quick remark regarding "such events occur rarely". I would say that > this >depends on the scenario behind. If you consider complexity attacks, for >example, >where a prefix owner malicously changes ROAs, those event can occur often. >
Just to understand the "complexity" attacker's purpose, what is he trying to accomplish by changing his prefix's origination AS (and hence ROA) frequently? Do you mean that he can bloat the CRL into something huge by repeatedly issuing many EE certs and their revocations? Sriram _______________________________________________ sidr mailing list [email protected] https://www.ietf.org/mailman/listinfo/sidr
