Skip to main content

Same-Origin Policy for the RPKI Repository Delta Protocol (RRDP)
draft-ietf-sidrops-rrdp-same-origin-04

Approval announcement
Draft of message to be sent after approval:

Announcement

From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
Cc: The IESG <iesg@ietf.org>, draft-ietf-sidrops-rrdp-same-origin@ietf.org, keyur@arrcus.com, rfc-editor@rfc-editor.org, sidrops-chairs@ietf.org, sidrops@ietf.org, warren@kumari.net
Subject: Protocol Action: 'Same-Origin Policy for the RPKI Repository Delta Protocol (RRDP)' to Proposed Standard (draft-ietf-sidrops-rrdp-same-origin-04.txt)

The IESG has approved the following document:
- 'Same-Origin Policy for the RPKI Repository Delta Protocol (RRDP)'
  (draft-ietf-sidrops-rrdp-same-origin-04.txt) as Proposed Standard

This document is the product of the SIDR Operations Working Group.

The IESG contact persons are Warren Kumari and Mahesh Jethanandani.

A URL of this Internet-Draft is:
https://datatracker.ietf.org/doc/draft-ietf-sidrops-rrdp-same-origin/


Ballot Text

Technical Summary

   This document describes a Same-Origin Policy (SOP) requirement for
   RPKI Repository Delta Protocol (RRDP) servers and clients.
   Application of SOP in RRDP client/server communication isolates
   resources such as Delta and Snapshot files from different Repository
   Servers, reducing possible attack vectors.  This document updates RFC
   8182.

Working Group Summary

   There was no controversy or drama on this document.

Document Quality

   This is widely implemented, and the change does not 
   negatively affect any deployments (no-one is using the
   prohibited functionality). This is one of those
   "let's remove a sharp edge before someone cuts themselves"
   type documents. 

Personnel

   Keyur Patel is DS. 
   Warren "Ace" Kumari is RAD!!!!!!!!!!!!!!!!!!!!!!!!!!!!1!!!!!

RFC Editor Note