[arin-ppml] RPKI Relying Agreement
michael+ppml at burnttofu.net
Thu Dec 4 12:25:48 EST 2014
On 12/04/2014 07:59, John Curran wrote:
> On Dec 4, 2014, at 10:51 AM, David Huberman <David.Huberman at microsoft.com> wrote:
>> Numerous members of the security and network engineering community and I have discussed this over the last 12 months, and the RPA is a show stopper for some of us. Paragraphs 3 and 4 are the key. It's one way warranties (you -> ARIN), just like the RSA.
>> It's thorny because if you put yourself in ARIN's shoes for a moment, you have to balance the risk of bankrupting the company with the responsibility of being a trust anchor. Unfortunately, like many ARIN legal postures, the unwillingness to take on any risk at all is problematic.
> Actually, the terms regarding indemnification and warrant disclaimer are nearly
> identical to that contained in the other RIR's RPKI agreements; are those also
> problematic, or is the difficultly that principally that ARIN agreeing to the
> terms explicit rather than implicit?
I disagree. The only terms I was able to find were APNIC's and they
only referred to "Certificates issued by APNIC," not a TAL. So I really
don't think there is another TAL RPA out there that's anything like ARIN's.
More information about the ARIN-PPML