This archive is retained to ensure existing URLs remain functional. It will not contain any emails sent to this mailing list after July 1, 2024. For all messages, including those sent before and after this date, please visit the new location of the archive at https://mailman.ripe.net/archives/list/routing-wg@ripe.net/
[routing-wg] Penetration Test Report for RPKI
- Previous message (by thread): [routing-wg] Penetration Test Report for RPKI
- Next message (by thread): [routing-wg] Penetration Test Report for RPKI
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Randy Bush
randy at psg.com
Tue Dec 21 22:23:01 CET 2021
> We hope you will find these reports useful very much so. thank you. btw, re RIPE-009 - Unencrypted Communication in the up/down protocol, objects are cms wrapped and hence signed and objct authenticated; i.e. i would not panic about transport cia. otoh, i suspect there could be a path to move your delegated CAs to TLS; which might be conservative in the long run. randy --- randy at psg.com `gpg --locate-external-keys --auto-key-locate wkd randy at psg.com` signatures are back, thanks to dmarc header butchery
- Previous message (by thread): [routing-wg] Penetration Test Report for RPKI
- Next message (by thread): [routing-wg] Penetration Test Report for RPKI
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]