constraining RPKI Trust Anchors
Joelja Bogus
joelja at bogus.com
Thu Oct 12 13:07:36 UTC 2023
Sent from my iPhone
> On Oct 11, 2023, at 15:29, Randy Bush <randy at psg.com> wrote:
>
>
>>
>> So while each RP should be able to make policy decisions based on its
>> own local criteria, managing a default set of constraints is something
>> that is best done centralized. Who do you envision should manage these
>> lists? RP software maintainers? RIRs? Others?
>
> and how will this pain-to-maintain list be distributed? how do i know
> a copy is authentic not an attack?
>
> i am all for a single root of trust. it's just that i thought it was
> the iana's job. but i am easily confused.
Not clear to me how IANA constrains the behavior of the rirs either now or in the future.
> randy
>
More information about the NANOG
mailing list