On 2015-09-04 13:08, Sriram, Kotikalapudi wrote:
3. In consideration of the above (#2), the document should instead
strongly recommend that “if an AS signs an update without verifying
first,
it SHOULD return to the update at its earliest and verify, and
forward
a new signed update, if necessary." Make this a strong BCP
recommendation.
Without replay protection, I don't see how this recommendation would
help. I.e., the old signed update would still be valid.
--
David Eric Mandelberg / dseomn
http://david.mandelberg.org/
_______________________________________________
sidr mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/sidr
