randy/draft-rpki-has-no-identity
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

change subsection title yet again :)

Browse source
This commit is contained in:
Randy Bush 2022-04-12 18:16:05 -07:00
parent 9fb9ba9865
commit 547178358d
1 changed files with 6 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

8
draft-ietf-sidrops-rpki-has-no-identity.xml
View file

@ -113,7 +113,7 @@
</section> </section>
<section anchor="bottom" title="The Bottom Line"> <section anchor="bottom" title="The RPKI is for Authorization">
<t>The RPKI was designed and specified to sign certificates for use <t>The RPKI was designed and specified to sign certificates for use
within the RPKI itself and to generate Route Origin Authorizations within the RPKI itself and to generate Route Origin Authorizations
@ -134,7 +134,11 @@
<t>PKI operations MUST NOT be performed with RPKI certificates other <t>PKI operations MUST NOT be performed with RPKI certificates other
than exactly as described, and for the purposes described, in <xref than exactly as described, and for the purposes described, in <xref
target="RFC6480"/>.</t> target="RFC6480"/>. That is, RPKI-based credentials of INRs MUST
NOT be used to authenticate real-world documents or transactions
without some formal external authentication of the INR and the
authority for the actually anonymous INR holder to authenticate the
particular document or transaction.</t>
<t>I.e., RPKI-based credentials of INRs MUST NOT be used to <t>I.e., RPKI-based credentials of INRs MUST NOT be used to
authenticate real-world documents or transactions without some authenticate real-world documents or transactions without some