RE: Implementing Decentralized RPKI with Blockchain Technology

[Brandon Price <PriceB () SherwoodOregon gov>]

> William-

> Yes, you're correct on that point.

> Fundamentally though, if an RIR actually did that, it's effectively the end of RPKI, and seismic damage to the 
> internet at large.

Tom,

Bill Woodcock announced a framework around this concept on NANOG back in March of 2022.

https://mailman.nanog.org/pipermail/nanog/2022-March/218056.html

The linked document discusses manipulation of RPKI records specifically:

https://www.pch.net/resources/Papers/Multistakeholder-Imposition-of-Internet-Sanctions.pdf

" A manipulation of RPSL and RPKI records in centralized registries would flow through to all networks employing
these common routing security mechanisms, some of which would then automatically stop routing traffic to and
from the specified networks, without affecting other “adjacent” civilian networks or being subject to trivial 
“workarounds.”"

The opinion of that section of the document, at the time it was published, appears to be that fiddling with RPKI in 
that way constitutes and "unacceptable risk". However simple incrementalism will have that opinion changed as soon as 
it is more politically palatable. The fact that these frameworks are seriously proposed at all is the chilling part 
IMHO.

Brandon





This email may contain confidential information or privileged material and is intended for use solely by the above 
referenced recipient. Any review, copying, printing, disclosure, distribution, or other use by any other person or 
entity is strictly prohibited and may be illegal. If you are not the named recipient, or believe you have received this 
email in error, please immediately notify the City of Sherwood at (503) 625-5522 and delete the copy you received.