nanog mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Implementing Decentralized RPKI with Blockchain Technology

From: Tom Beecher <beecher () beecher cc>
Date: Fri, 15 Nov 2024 12:11:44 -0500

We're talking about what an RIR can do if ordered by a court with
jurisdiction. Remember: a court ordered AFRINIC to do some pretty
remarkable things in the not too distant past.



Sure, but my point is still the same. If at any point, we cannot trust that
an RIR is the authoritative record holder of IP allocations , be it
malfeasance/negligence, or a legal/government entity forcing them to take
an action outside of established policy, then RPKI is severely crippled, if
not useless.

However, I think it's an overblown concern. If a government entity has the
courts in their pocket to force an RIR to do a thing, they have the power
to do abou 10 other much easier things that would actually prevent full
access to the thing they don't like. ( I'm taking your servers, I'm forcing
you to unplug routers, etc)

Doesn't really make sense for them to force the RIR to do a think that
would only disrupt access, not prevent it entirely.




On Thu, Nov 14, 2024 at 8:24 PM William Herrin <bill () herrin us> wrote:


On Thu, Nov 14, 2024 at 2:44 PM Tom Beecher <beecher () beecher cc> wrote:

Yes, you're correct on that point.

Fundamentally though, if an RIR actually did that, it's effectively the

end of RPKI, and seismic damage to the internet at large.

We're talking about what an RIR can do if ordered by a court with
jurisdiction. Remember: a court ordered AFRINIC to do some pretty
remarkable things in the not too distant past.

Regards,
Bill Herrin


--
William Herrin
bill () herrin us
https://bill.herrin.us/
Previous By Date Next
Previous By Thread Next

Current thread: