North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: BGP Security and PKI Hierarchies

  • From: Florian Weimer
  • Date: Sat Nov 26 18:22:47 2005

* Valdis Kletnieks:

> On Thu, 24 Nov 2005 20:26:56 +0100, Florian Weimer said:
>> Wouldn't this provide significant economic incentive towards gaining a
>> high value on this metric?  I'm not sure if this a good idea because
>> even if you call it a "trust metric", it does not have to correspond
>> to ethical behavior.
> Wrong concept of "trust".  There exist vendors that I *expect* will
> treat me in an unethical way, while being totally open as to their
> identity.

But ensuring identity is a good measure of trust, either.  Identity
only matters if you want to do something to the perpetrator in the
real world.  This seems to be the rare exception, not the norm.  I
expect people just to tweak their filters and move on.

(It would be more interesting if each real-world entity could only
have one digital entity, but this is impossible to achieve, especially
in context of IP routing.)