[certtest] Certification Software Questionnaire

  • From: "Erik Rozendaal" erozendaal@localhost
  • Date: Tue, 2 Dec 2008 16:48:32 +0100
  • Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:sender :to:subject:mime-version:content-type:content-transfer-encoding :content-disposition:x-google-sender-auth; bh=x5AwuqvlpH5bTTawXv2yV95+63RbVxhSbSb4C8Pj1yI=; b=u8+0udCCvXyXKYaVkNr1Gt/5VqPt7mRBzim5rOpXz/vb+AbWwFBAxQ3tZMm1Ke47TL n/XwEVLzNXjZtDTGTsVd9GtyPu6anq9BNC6qIR1CMPAtvmiHGwT9mm4FEnJe3paD+2y1 Z8zeU6djp6PMCpYwLxXErIMVu19VdpXUMYQIs=
  • Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:sender:to:subject:mime-version:content-type :content-transfer-encoding:content-disposition:x-google-sender-auth; b=cph0kidnq+tCAneGzMbaAVbdl/6d8wO9iedouJAOzxke/nTACmpAHu6yUBZefX4ua3 uT7mNXS7v6sgsqe0G8nvFFbGB47LqU0+s81T1UleN4SlpxprbYu2DLe1Q6Be+keDn20v ghSDf0yV83SUCVxu/rrGIiF1B5RaMzBTZIn0w=

All,

To help us prioritise and develop the certification software we would
like to have your feedback. Simply reply to me with your answers in
lined. If anything is unclear, feel free to ask for clarification.

Please answer each question with a number using the following scale:
1. I like it that way.
2. I expect it to be that way.
3. I am neutral.
4. I can live with it that way.
5. I dislike it that way.

Every question is asked twice, in both functional and dysfunctional
form. This helps us understand your priorities better. Feel free to
give additional comments.


Question 1a: If you can use a tool or library to download, validate,
and list ROAs available in the public certificate repositories, how do
you feel?

Answer 1a:

Question 1b: If you cannot use a tool or library to download,
validate, and list ROAs available in the public certificate
repositories, how do you feel?

Answer 1b:

Explanation: A tool like this could be used to check your router
filter tables against the ROAs published in the public certificate
repositories. RIPE NCC or a third party could provide such a tool or
library. The output of this tool would be some form of CSV or maybe
RPSL.



Question 2a: If you can schedule periodic key rollovers, how do you feel?

Answer 2a:

Question 2b: If you cannot schedule periodic key rollovers, how do you feel?

Answer 2b:

Explanation: Its generally advised to rollover your keys at least once
per year, to limit the possibility of key compromise. Currently this
has to be done manually.



Question 3a: If you can audit all actions performed with your
certificate authority (CA), how do you feel?

Answer 3a:

Question 3b: If you cannot audit all actions performed with your
certificate authority (CA), how do you feel?

Answer 3b:

Explanation: The certification system could provide a log of all
actions performed with your CA, allowing you to audit your CA. Example
actions could include configuring a ROA and creating a new key pair.



Question 4a: If you can login using a RIPE NCC provided X.509
certificate, how do you feel?

Answer 4a:

Question 4b: If you cannot login using a RIPE NCC provided X.509
certificate, how do you feel?

Answer 4b:

Explanation: Currently the system only requires a username and
password to login. To improve security RIPE NCC can provide you with a
X.509 certificate that only you can use to login.



Question 5a: If you can run your own certification engine, how do you feel?

Answer 5a:

Question 5b: If you cannot run your own certification engine, how do you feel?

Answer 5b:

Explanation: By running your own certification engine you keep full
control over your certification keys and engine implementation. Your
certification engine would communicate with the RIPE NCC hosted
certification engine using standardised protocols.



Question 6a: If you can give your customers access to the RIPE NCC
hosted certification system to manage their resource certificates, how
do you feel?

Answer 6a:

Question 6b: If you cannot give your customers access to the RIPE NCC
hosted certification system to manage their resource certificates, how
do you feel?

Answer 6b:

Explanation: By giving your customers access to the hosted
certification system they can manage their own certificates and ROAs.
Giving your customers access would require you to configure your
customer's resources in the hosted certification system and to provide
login credentials for your customers. Without this capability you
would have to run your own certification engine or issue ROAs on
behalf of your customers.



Question 7a: If you can programmatically access and configure the RIPE
NCC hosted certification system to manage your certificates and ROAs,
how do you feel?

Answer 7a:

Question 7b: If you cannot programmatically access and configure the
RIPE NCC hosted certification system to manage your certificates and
ROAs, how do you feel?

Answer 7b:

Explanation: Using programmatic access (through a web services or
other API) you can integrate the hosted certification system into your
own resource administration systems. This would eliminate the need to
manually configure ROAs or customer resources in the hosted
certification system.



Question 8a: If you can get a copy of the RIPE NCC certification
implementation, how do you feel?

Answer 8a:

Question 8b: If you cannot get a copy of the RIPE NCC certification
implementation, how do you feel?

Answer 8b:

Explanation: The RIPE NCC certification implementation could be
released (source code or some packaged version). This would allow you
and others to use this software to run your own certification engine.



Question 9a: If you can upload your issued certificates and ROAs to
the RIPE NCC public certificate repository when running your own
certification engine, how do you feel?

Answer 9a:

Question 9b: If you cannot upload your issued certificates and ROAs to
the RIPE NCC public certificate repository when running your own
certification engine, how do you feel?

Answer 9b:

Explanation: When running your own certification engine, you also need
a mechanism to publish your generated certificates and ROAs. You can
run your own publicly accessible certificate repository or upload to
the RIPE NCC certificate repository. The latter option limits the
number of repositories relying parties need to access.



Final question: Is there anything we missed that you think we should know about?

Answer:




Thanks for your feedback!

Regards,
Erik