Stephen Kent wrote on 16-09-2009 17:53: [...] > > Statements about perceived trust in TAs are useful in PKIs that anoint > 3rd parties as TAs, independent of real world authorization. The RPLI is > not such a PKI. Instead it seeks to have the real world entities that > manage allocation of resources act as CAs. I would urge us to NOT try to > make the RPKI into a trusted 3rd party PKI. >
I agree. However, I envisage a scenario when the RP in your local TA management scheme announces itself globally as a root CA/TA. And then the question arises how one can distinguish between these ersatz RPKIs and associated stuff (repositories, ROAs, etc.)? > Steve Andrei > > > ------------------------------------------------------------------------ > > _______________________________________________ > sidr mailing list > sidr@ietf.org > https://www.ietf.org/mailman/listinfo/sidr _______________________________________________ sidr mailing list sidr@ietf.org https://www.ietf.org/mailman/listinfo/sidr
