All,
Robert and I have found the time/energy to push this work to
completion. This version does not contain any substantive updates from
the -05, I simply got this version out to allow for discussion on it to
resume.
One question that I would like to discuss is the currently optional
"o" attribute. Robert feels it is not needed if the "c" attribute
references a RFC 3779-compliant certificate. I feel that the
flexibility of having multiple signatures allows for instances where
different parties own, for example, the prefix being advertised and the
ASN. I would appreciate feedback on this issue.
A follow-on version will address comments raised previously on the
document.
Regards,
Brian
On 11/26/14 11:44 AM, [email protected] wrote:
>
> A New Internet-Draft is available from the on-line Internet-Drafts
> directories.
> This draft is a work item of the Secure Inter-Domain Routing Working Group
> of the IETF.
>
> Title : Securing RPSL Objects with RPKI Signatures
> Authors : Robert Kisteleki
> Brian Haberman
> Filename : draft-ietf-sidr-rpsl-sig-06.txt
> Pages : 14
> Date : 2014-11-26
>
> Abstract:
> This document describes a method to allow parties to electronically
> sign RPSL-like objects and validate such electronic signatures. This
> allows relying parties to detect accidental or malicious
> modifications on such objects. It also allows parties who run
> Internet Routing Registries or similar databases, but do not yet have
> RPSS-like authentication of the maintainers of certain objects, to
> verify that the additions or modifications of such database objects
> are done by the legitimate holder(s) of the Internet resources
> mentioned in those objects.
>
>
> The IETF datatracker status page for this draft is:
> https://datatracker.ietf.org/doc/draft-ietf-sidr-rpsl-sig/
>
> There's also a htmlized version available at:
> http://tools.ietf.org/html/draft-ietf-sidr-rpsl-sig-06
>
> A diff from the previous version is available at:
> http://www.ietf.org/rfcdiff?url2=draft-ietf-sidr-rpsl-sig-06
>
>
> Please note that it may take a couple of minutes from the time of submission
> until the htmlized version and diff are available at tools.ietf.org.
>
> Internet-Drafts are also available by anonymous FTP at:
> ftp://ftp.ietf.org/internet-drafts/
>
> _______________________________________________
> sidr mailing list
> [email protected]
> https://www.ietf.org/mailman/listinfo/sidr
>
signature.asc
Description: OpenPGP digital signature
_______________________________________________ sidr mailing list [email protected] https://www.ietf.org/mailman/listinfo/sidr
