nanog mailing list archives
Re: rpki vs. secure dns?
From: David Conrad <drc () virtualized org>
Date: Mon, 28 May 2012 14:42:40 -0700
On May 28, 2012, at 1:59 PM, Paul Vixie wrote:
third, rsync's dependencies on routing (as in the RPKI+ROA case) are not circular (which i think was david conrad's point but i'll drag it to here.)
Nope. My point was that anything that uses the Internet to fetch the data (including rsync) has a circular dependency on routing. It's just a question of timing.
ROVER expects that we will query for policy at the instant of need.
Might want to review https://ripe64.ripe.net/presentations/57-ROVER_RIPE_Apr_2012.pdf, particularly the slide entitled "Avoid a Cyclic Dependency". As far as I can tell, ROVER is simply Yet Another RPKI Access Method like rsync and bittorrent with its own positives and negatives. Regards, -drc
Current thread:
- Re: rpki vs. secure dns? Russ White (May 01)
- <Possible follow-ups>
- Re: rpki vs. secure dns? Dobbins, Roland (May 01)
- Re: rpki vs. secure dns? David Conrad (May 01)
- Re: rpki vs. secure dns? Dobbins, Roland (May 01)
- Re: rpki vs. secure dns? David Conrad (May 01)
- Re: rpki vs. secure dns? David Conrad (May 01)
- Re: rpki vs. secure dns? Dobbins, Roland (May 01)
- Re: rpki vs. secure dns? Russ White (May 01)
- Re: rpki vs. secure dns? Dobbins, Roland (May 01)
- Re: rpki vs. secure dns? Paul Vixie (May 28)
- Re: rpki vs. secure dns? David Conrad (May 28)
- Re: rpki vs. secure dns? paul vixie (May 28)
- Re: rpki vs. secure dns? Stephane Bortzmeyer (May 29)
- Re: rpki vs. secure dns? paul vixie (May 29)
- Re: rpki vs. secure dns? David Conrad (May 29)
- Re: rpki vs. secure dns? Alex Band (May 29)
- Re: rpki vs. secure dns? Richard Barnes (May 29)
- Re: rpki vs. secure dns? Alex Band (May 29)
- Re: rpki vs. secure dns? Richard Barnes (May 29)
- Re: rpki vs. secure dns? Paul Vixie (May 29)
- Re: rpki vs. secure dns? Randy Bush (May 29)
- Re: rpki vs. secure dns? Russ White (May 01)