Hi Danny,
On 12/20/2011 11:00 PM, Danny McPherson wrote:
I'm kinda surprised the security ADs are OK with this in a brand new
connection-oriented protocol meant to increase security of the network:
Me too. I didn't even know I'd read that draft yet:-)
When I do read it then I'll be ok with it or will
not be ok with it. Neither applies yet.
S
S.7:
"Caches and routers MUST implement unprotected transport
over TCP using a port, rpki-rtr, to be assigned, see Section 12.
Operators SHOULD use procedural means, ACLs, ... to reduce
the exposure to authentication issues."
-danny
_______________________________________________
Ietf mailing list
Ietf(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf
_______________________________________________
Ietf mailing list
Ietf(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf