Late to the discussion because I needed to have cycles to read and think about this draft...
On 7/31/14, 4:03 PM, "Stephen Kent" <[email protected]> wrote: >Terry has reminded us that, even if such accidents occur, the world does >not end, at >least wrt origin validation. Thus, for the current set of SIDR RFCs, the >damage that >would occur is not nearly so great as some have suggested; until the >error is fixed (which >one would presume would be fairly quickly), origin validation would >treat the affected >routes as no worse than they are treated today. WG] Maybe I'm missing something, but I'm not sure I agree with this characterization. This is probably true for routes that transition from Valid to Unknown, but not if they are actually found to be Invalid, which is what I understand would be the result of the problem discussed in this draft - invalid certs = invalid routes. While policy is ultimately a local matter, in 7115 we recommend dropping invalids due to the fact that it isn't possible to depref any routes enough to ensure that they are never used if they are more specific than a valid or unknown route with a comparably higher local pref. Unless we're changing that guidance, "% Network not in table" is worse than they'd be treated today. Deploying SIDR OV is about risk vs reward, i.e. How much benefit do I gain in terms of what outages (attack vectors) I'm protecting myself and my customers against vs what risk the same parties incur for experiencing other outages that only exist if I am deploying OV. The possibility of routes being invalidated and dropped on account of a botched cert overlap or migration puts this squarely on the wrong side of the risk/reward balance. Thanks Wes George This E-mail and any of its attachments may contain Time Warner Cable proprietary information, which is privileged, confidential, or subject to copyright belonging to Time Warner Cable. This E-mail is intended solely for the use of the individual or entity to which it is addressed. If you are not the intended recipient of this E-mail, you are hereby notified that any dissemination, distribution, copying, or action taken in relation to the contents of and attachments to this E-mail is strictly prohibited and may be unlawful. If you have received this E-mail in error, please notify the sender immediately and permanently delete the original and any copy of this E-mail and any printout. _______________________________________________ sidr mailing list [email protected] https://www.ietf.org/mailman/listinfo/sidr
