[arin-ppml] ARIN validation of authorized contacts

John Curran jcurran at arin.net
Thu Mar 31 09:06:14 EDT 2011

On Mar 31, 2011, at 8:51 AM, Benson Schliesser wrote:

> And given the single-root nature of RPKI as implemented by the RIRs (which differs from the SSL multi-CA model) are operators confident they can deal with potential systemic trust issues, i.e. around security threats, governance policy, etc?

Benson - 

  At present, there is no single trust anchor for RPKI.  It's been discussed 
  by the RPKI community at length, as well as the RIR community, but it's still 
  quite conceptual at this point.  I know that the NRO recently asked ICANN 
  about holding discussions (including folks such as the IAB) regarding ICANN 
  potentially implementing a global trust anchor for RPKI; that letter is on 
  the NRO web site: http://www.nro.net/news/letter-to-icann-single-trust-anchor



More information about the ARIN-PPML mailing list