This archive is retained to ensure existing URLs remain functional. It will not contain any emails sent to this mailing list after July 1, 2024. For all messages, including those sent before and after this date, please visit the new location of the archive at https://mailman.ripe.net/archives/list/[email protected]/

[routing-wg] Penetration Test Report for RPKI

• Previous message (by thread): [routing-wg] Penetration Test Report for RPKI
• Next message (by thread): [routing-wg] Penetration Test Report for RPKI

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Randy Bush randy at psg.com
Tue Dec 21 22:23:01 CET 2021

> We hope you will find these reports useful

very much so.  thank you.

btw, re RIPE-009 - Unencrypted Communication

in the up/down protocol, objects are cms wrapped and hence signed and
objct authenticated; i.e. i would not panic about transport cia.  otoh,
i suspect there could be a path to move your delegated CAs to TLS; which
might be conservative in the long run.

randy

---
randy at psg.com
`gpg --locate-external-keys --auto-key-locate wkd randy at psg.com`
signatures are back, thanks to dmarc header butchery

• Previous message (by thread): [routing-wg] Penetration Test Report for RPKI
• Next message (by thread): [routing-wg] Penetration Test Report for RPKI

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

[ routing-wg Archives ]