nanog mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Implementing Decentralized RPKI with Blockchain Technology

From: William Herrin <bill () herrin us>
Date: Wed, 13 Nov 2024 09:16:25 -0800
On Wed, Nov 13, 2024 at 6:39 AM Brandon Z. <Brandon () huize asia> wrote:

Another concept is to use blockchain technology. While cryptocurrencies
use computational power to verify ownership, BGP could use peer count.
If an IP resource is marked as valid by a majority of high-influence
networks (with many peers), it could be trusted by the entire internet.


Hi Brandon,

That's not how blockchain works. Validation is time-bound and
irrevocable. Only the current key-holder can transfer the validated
material to another entity. Effecting such transfers requires minimal
computation, on the order of a few HTTPS transfers.

Under block chain, an RIR would not be able to revoke number
resources, not even for non-payment or fraud. And if the keys
associated with an address block were lost or stolen, the address
block would effectively be lost with them. The whole point of the
block chain is that it is mathematically irrevocable. Period and full
stop.

Bear in mind that the five RIRs are self-organized. There's not a
whole lot to stop a sixth RIR from organizing if enough address
holders (and their money) get together and agree they want one. Which
would surely happen if a government attempted to cut off an entire
country from address registration.

Also, please don't cross-post discussions to two lists. It's against
the rules for NANOG and I presume it's against the rules for MANRS as
well.

Regards,
Bill Herrin


-- 
William Herrin
bill () herrin us
https://bill.herrin.us/
Previous By Date Next
Previous By Thread Next

Current thread: