[dbwg] X.509 Extensions for IP Addresses and AS Identifiers
Sanjaya
sanjaya at apnic.net
Wed Apr 16 21:27:20 EDT 2003
Hi all,
As a background information, attached is the mail sent on
June 2002 from APNIC secretariat to the authors of the
document outlining the issues we have with the original
draft.
In general APNIC is supportive to the idea of issuing
certificates with IP address/ASN delegation authority
extensions to support secure routing announcements.
Hope this helps.
Cheers,
Sanjaya
CA Project Manager, APNIC
> -----Original Message-----
> From: dbwg-request at arin.net [mailto:dbwg-request at arin.net] On
> Behalf Of Edward Lewis
> Sent: Thursday, 17 April 2003 6:52 AM
> To: Larry J. Blunk
> Cc: dbwg at arin.net
> Subject: Re: [dbwg] X.509 Extensions for IP Addresses and AS
> Identifiers
>
>
> As far as whether "any consideration [is] being given to supporting
> these extensions in ARIN's implementation of X.509?"
>
> Stopping well short of saying that whether ARIN will commit to
> implementing (or deploying) these extensions or not, we are looking
> at them - and other options. As Paul Wilson stated, in APNIC's
> experience, they have noticed "a fundamental problem with this draft"
> as described in his reply. Although we are continuing our research
> into this, it appears unlikely that we will implement to the
> (now-expired) internet draft based (at least) on APNIC's input.
>
> Also, note that document is expired and it is 'just' an internet
> draft. If/when a new version is distributed, it we will consider it.
> It is always risky committing to implementing anything based on an
> IETF internet draft, as such a document hasn't completed a full
> review by the IETF community.
>
> And, of course, if we are asked for input on that document and we
> happen to have something to contribute, we will.
>
> At 11:24 -0400 4/11/03, Larry J. Blunk wrote:
> > There's an Internet Draft available from BBN Technologies
> >which describes extensions to X.509 certificicates to
> >incorporate IP and AS allocation information. See --
> >
> >http://www.net-tech.bbn.com/sbgp/draft-ietf-pkix-x509-ipaddr-
as-extn-00.txt
>
> This draft was produced as part of the Secure BGP project.
>Is there any consideration being given to supporting these
>extensions in ARIN's implementation of X.509?
--
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Edward Lewis +1-703-227-9854
ARIN Research Engineer
"I'm sorry, sir, your flight is delayed for maintenance. We are
pounding out the dents from the last landing."
-------------- next part --------------
An embedded message was scrubbed...
From: "Sanjaya" <sanjaya at apnic.net>
Subject: draft-ietf-pkix-x509-ipaddr-as-extn (proposed changes)
Date: Mon, 3 Jun 2002 15:49:05 +1000
Size: 271378
URL: <https://lists.arin.net/pipermail/dbwg/attachments/20030417/fbad7dd4/attachment.mht>
More information about the Dbwg
mailing list