RFC 8211

Adverse Actions by a Certification Authority (CA) or Repository Manager in the Resource Public Key Infrastructure (RPKI), September 2017

Canonical URL:
https://www.rfc-editor.org/rfc/rfc8211.txt
File formats:
Plain TextPDF
Status:
INFORMATIONAL
Authors:
S. Kent
D. Ma
Stream:
IETF
Source:
sidr (rtg)

Cite this RFC: TXT  |  XML

DOI:  10.17487/RFC8211

Discuss this RFC: Send questions or comments to sidr@ietf.org

Other actions: Submit Errata  |  Find IPR Disclosures from the IETF


Abstract

This document analyzes actions by or against a Certification Authority (CA) or an independent repository manager in the RPKI that can adversely affect the Internet Number Resources (INRs) associated with that CA or its subordinate CAs. The analysis is done from the perspective of an affected INR holder. The analysis is based on examination of the data items in the RPKI repository, as controlled by a CA (or an independent repository manager) and fetched by Relying Parties (RPs). The analysis does not purport to be comprehensive; it does represent an orderly way to analyze a number of ways that errors by or attacks against a CA or repository manager can affect the RPKI and routing decisions based on RPKI data.


For the definition of Status, see RFC 2026.

For the definition of Stream, see RFC 4844.


Download PDF Reader