Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support automatic TA key rollover #114

Open
ydahhrk opened this issue Apr 21, 2024 · 0 comments
Open

Support automatic TA key rollover #114

ydahhrk opened this issue Apr 21, 2024 · 0 comments
Labels
Urgency: Very High
Milestone
2.0.1

Comments

@ydahhrk
Copy link
Member

ydahhrk commented Apr 21, 2024

At present, TALs are largely static, and because Relying Parties rely on them to find out the public key of a particular Trust Anchor's signature, it's difficult for RIRs to replace their Trust Anchor keys. This is a security liability of the RPKI at large.

There are ongoing efforts to standardize a secure and automatic TAL update mechanism, and FORT should implement it as soon as possible.

The draft is draft-ietf-sidrops-signed-tal.
@ydahhrk ydahhrk added this to the 1.6.4 milestone May 22, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Urgency: Very High
Projects
None yet
Milestone
2.0.1
Development

No branches or pull requests
1 participant
@ydahhrk