A Profile for RPKI Signed Checklists (RSCs)
draft-ietf-sidrops-rpki-rsc-11

• Status
• IESG evaluation record
• IESG writeups
• Email expansions
• History

Approval announcement
Draft of message to be sent after approval:

Announcement

From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
Cc: The IESG <iesg@ietf.org>, draft-ietf-sidrops-rpki-rsc@ietf.org, keyur@arrcus.com, rfc-editor@rfc-editor.org, sidrops-chairs@ietf.org, sidrops@ietf.org, warren@kumari.net
Subject: Protocol Action: 'A profile for Resource Public Key Infrastructure (RPKI) Signed Checklists (RSC)' to Proposed Standard (draft-ietf-sidrops-rpki-rsc-11.txt)

The IESG has approved the following document:
- 'A profile for Resource Public Key Infrastructure (RPKI) Signed
   Checklists (RSC)'
  (draft-ietf-sidrops-rpki-rsc-11.txt) as Proposed Standard

This document is the product of the SIDR Operations Working Group.

The IESG contact persons are Warren Kumari and Robert Wilton.

A URL of this Internet Draft is:
https://datatracker.ietf.org/doc/draft-ietf-sidrops-rpki-rsc/

Ballot Text

Technical Summary

   This document defines a Cryptographic Message Syntax (CMS) profile
   for a general purpose listing of checksums (a 'checklist'), for use
   with the Resource Public Key Infrastructure (RPKI).  The objective is
   to allow an attestation, in the form of a listing of one or more
   checksums of arbitrary digital objects (files), to be signed "with
   resources", and for validation to provide a means to confirm a
   specific Internet Resource Holder produced the Signed Checklist.  The
   profile is intended to provide for the signing of an arbitrary
   checksum listing with a specific set of Internet Number Resources.

Working Group Summary

   There is good consensus to progress the document.


Document Quality

  The document is clear and well written. 
  In addition, the document contains an implementation status section which lists a number of implementations, including:

   *  A signer and validator implementation [rpki-rsc-demo] written in
      Perl based on OpenSSL was provided by Tom Harrison from APNIC.

   *  A signer implementation [rpkimancer] written in Python was
      developed by Ben Maddison.

   *  Example .sig files were created by Job Snijders with the use of
      OpenSSL.

   *  A validator implementation based on OpenBSD rpki-client and
      LibreSSL was developed by Job Snijders.

   *  A validator implementation [FORT] based on the FORT validator was
      developed by Alberto Leiva for a previous version of this
      specification.

Personnel

   Keyur Patel is DS
   Warren Kumari is RAD!!!!

RFC Editor Note