All, Robert and I have found the time/energy to push this work to completion. This version does not contain any substantive updates from the -05, I simply got this version out to allow for discussion on it to resume.
One question that I would like to discuss is the currently optional "o" attribute. Robert feels it is not needed if the "c" attribute references a RFC 3779-compliant certificate. I feel that the flexibility of having multiple signatures allows for instances where different parties own, for example, the prefix being advertised and the ASN. I would appreciate feedback on this issue. A follow-on version will address comments raised previously on the document. Regards, Brian On 11/26/14 11:44 AM, internet-dra...@ietf.org wrote: > > A New Internet-Draft is available from the on-line Internet-Drafts > directories. > This draft is a work item of the Secure Inter-Domain Routing Working Group > of the IETF. > > Title : Securing RPSL Objects with RPKI Signatures > Authors : Robert Kisteleki > Brian Haberman > Filename : draft-ietf-sidr-rpsl-sig-06.txt > Pages : 14 > Date : 2014-11-26 > > Abstract: > This document describes a method to allow parties to electronically > sign RPSL-like objects and validate such electronic signatures. This > allows relying parties to detect accidental or malicious > modifications on such objects. It also allows parties who run > Internet Routing Registries or similar databases, but do not yet have > RPSS-like authentication of the maintainers of certain objects, to > verify that the additions or modifications of such database objects > are done by the legitimate holder(s) of the Internet resources > mentioned in those objects. > > > The IETF datatracker status page for this draft is: > https://datatracker.ietf.org/doc/draft-ietf-sidr-rpsl-sig/ > > There's also a htmlized version available at: > http://tools.ietf.org/html/draft-ietf-sidr-rpsl-sig-06 > > A diff from the previous version is available at: > http://www.ietf.org/rfcdiff?url2=draft-ietf-sidr-rpsl-sig-06 > > > Please note that it may take a couple of minutes from the time of submission > until the htmlized version and diff are available at tools.ietf.org. > > Internet-Drafts are also available by anonymous FTP at: > ftp://ftp.ietf.org/internet-drafts/ > > _______________________________________________ > sidr mailing list > sidr@ietf.org > https://www.ietf.org/mailman/listinfo/sidr >
signature.asc
Description: OpenPGP digital signature
_______________________________________________ sidr mailing list sidr@ietf.org https://www.ietf.org/mailman/listinfo/sidr