constraining RPKI Trust Anchors

• Previous message (by thread): constraining RPKI Trust Anchors
• Next message (by thread): NANOG 89 Socials + More - There is Still Time to Register! Join Us Virtually!
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Sent from my iPhone

> On Oct 11, 2023, at 15:29, Randy Bush <randy at psg.com> wrote:
> 
> 
>> 
>> So while each RP should be able to make policy decisions based on its
>> own local criteria, managing a default set of constraints is something
>> that is best done centralized. Who do you envision should manage these
>> lists? RP software maintainers? RIRs? Others?
> 
> and how will this pain-to-maintain list be distributed?  how do i know
> a copy is authentic not an attack?
> 
> i am all for a single root of trust.  it's just that i thought it was
> the iana's job.  but i am easily confused.

Not clear to me how IANA constrains the behavior of the rirs either now or in the future. 

> randy
> 

• Previous message (by thread): constraining RPKI Trust Anchors
• Next message (by thread): NANOG 89 Socials + More - There is Still Time to Register! Join Us Virtually!
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]