[86923] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: BGP Security and PKI Hierarchies (was: Re: Wifi Security)

daemon@ATHENA.MIT.EDU (Sandy Murphy)
Tue Nov 22 15:35:53 2005

Date: Tue, 22 Nov 2005 15:31:11 -0500 (EST)
From: Sandy Murphy <sandy@tislabs.com>
To: nanog@nanog.org
Cc: sandy@tislabs.com
Errors-To: owner-nanog@merit.edu

>Otherwise, you have to be storing a plethora of
>> different signers' certificates to be able to validate all the
>> institution's certificates that come in.
>
>you need those certs to verify the live data anyway

Yes, the reason why you want to validate the institution's certificates
is so you can verify the data signed with that cert (signed with the private
key associated with the public key in the cert, to be explicit).

--Sandy


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[86923] in North American Network Operators' Group

Re: BGP Security and PKI Hierarchies (was: Re: Wifi Security)

daemon@ATHENA.MIT.EDU (Sandy Murphy)Tue Nov 22 15:35:53 2005

daemon@ATHENA.MIT.EDU (Sandy Murphy)
Tue Nov 22 15:35:53 2005