[routing-wg] Penetration Test Report for RPKI
- Previous message (by thread): [routing-wg] Penetration Test Report for RPKI
- Next message (by thread): [routing-wg] Penetration Test Report for RPKI
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Randy Bush
randy at psg.com
Tue Dec 21 22:23:01 CET 2021
> We hope you will find these reports useful very much so. thank you. btw, re RIPE-009 - Unencrypted Communication in the up/down protocol, objects are cms wrapped and hence signed and objct authenticated; i.e. i would not panic about transport cia. otoh, i suspect there could be a path to move your delegated CAs to TLS; which might be conservative in the long run. randy --- randy at psg.com `gpg --locate-external-keys --auto-key-locate wkd randy at psg.com` signatures are back, thanks to dmarc header butchery
- Previous message (by thread): [routing-wg] Penetration Test Report for RPKI
- Next message (by thread): [routing-wg] Penetration Test Report for RPKI
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]