On Oct 23, 2014, at 4:18 PM, Danny McPherson <danny@tcb.net> wrote:
On 2014-10-23 12:33, Christopher Morrow wrote:
Sounds like you want to see the rirs make sure they get rpki work dine and widely available with the least encumbrances on the network operator community as possible.
Or focus on more short/intermediate term returns like fortifying all the existing systems and automating processes that are already deployed and focus on ROI of members and operational buffers required by the community _today. E.g., IRR training and investment rather than RPKI, which this thread began with.
I'd continue and say in-addr.arpa or the like for resource certification because RPKI is so ugly, silly without a single root aligned with number resource allocations, etc.., but that'd require response cycles I'm not going to spend there.
Just for avoidance of any doubt - The ARIN Board of Trustees has consistently directed that ARIN work on technical capabilities that the community clearly expresses some level of interest in, i.e. there is no standing directive that particular technology solutions must be (or must not be) deployed. We have had very specific requests for supporting RPKI, so we've done the necessary work for hosted and delegated certificate authority (CA) services. We can continue to enhance RPKI, or deploy other technical solutions, or some combination (as the community directs) With respect to IRR support, the same answer applies. If the community is clear on direction, ARIN can strengthen the current IRR offerings, phase them out and redirect folks to existing solutions, or any other direction as desired. The hardest part is getting a common view in the community on the desired approach; this leads to the strong adoption that is necessary for these types of systems to have meaningful benefit. FYI, /John John Curran President and CEO ARIN