<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=Windows-1252">
</head>
<body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; font-family: Calibri, sans-serif; font-size: 14px; color: rgb(0, 0, 0);">
<div>On 3/31/15, 5:47 PM, "Hannigan, Martin" <<a href="mailto:marty@akamai.com">marty@akamai.com</a>> wrote:</div>
<div><br>
</div>
<blockquote id="MAC_OUTLOOK_ATTRIBUTION_BLOCKQUOTE" style="BORDER-LEFT: #b5c4df 5 solid; PADDING:0 0 0 5; MARGIN:0 0 0 5;">
<div><br>
</div>
<blockquote id="MAC_OUTLOOK_ATTRIBUTION_BLOCKQUOTE" style="BORDER-LEFT: #b5c4df 5 solid; PADDING:0 0 0 5; MARGIN:0 0 0 5;">
<div>On Mar 31, 2015, at 4:52 PM, Gert Doering <<a href="mailto:gert@space.net">gert@space.net</a>> wrote:</div>
<div></div>
<div>Hi,</div>
<div></div>
<div>On Tue, Mar 31, 2015 at 08:28:08PM +0000, Hannigan, Martin wrote:</div>
<blockquote id="MAC_OUTLOOK_ATTRIBUTION_BLOCKQUOTE" style="BORDER-LEFT: #b5c4df 5 solid; PADDING:0 0 0 5; MARGIN:0 0 0 5;">
<div>AS 32787 and AS 20940 will continue to use and expand use of RADB for the foreseeable future.
</div>
</blockquote>
<div></div>
<div>So, what do you suggest how the gaping security problems of RADB can be</div>
<div>solved?</div>
</blockquote>
<div><br>
</div>
<div>The same as we would when they arise in any other IRR? Point fingers of shame, get commitments to fix or go elsewhere?</div>
</blockquote>
<div><br>
</div>
<div>A couple of weeks ago I posted in this thread:</div>
<div><a href="http://lists.arin.net/pipermail/arin-consult/2015-March/000597.html">http://lists.arin.net/pipermail/arin-consult/2015-March/000597.html</a></div>
<div><br>
</div>
<div>to ask which Standards would be used to achieve what was in the original proposal:</div>
<div>https://www.arin.net/participate/acsp/suggestions/2015-3.html</div>
<div>
<ul>
<li>
<pre><i></i><i>2015.3: Tie Route Objects in IRR to Netblocks of RIR Database</i></pre>
</li></ul>
</div>
<div>One way to do this might be RPSL authorization such as described in <a href="https://tools.ietf.org/html/rfc2725">RFC2725</a>.</div>
<div>I believe something like that is what RIPE does, but haven’t had any response to my particular query.</div>
<div>It is something that can happen where the address assignment is aligned with the RR (which ARIN didn’t do with their existing RR). I don’t see a way for RADB or operator-based RRs to do it, but I may lack imagination.</div>
<div><br>
</div>
<div>Tony</div>
<div><br>
</div>
<blockquote id="MAC_OUTLOOK_ATTRIBUTION_BLOCKQUOTE" style="BORDER-LEFT: #b5c4df 5 solid; PADDING:0 0 0 5; MARGIN:0 0 0 5;">
<blockquote id="MAC_OUTLOOK_ATTRIBUTION_BLOCKQUOTE" style="BORDER-LEFT: #b5c4df 5 solid; PADDING:0 0 0 5; MARGIN:0 0 0 5;">
<div></div>
<div>Now, I understand that you can buy a maintainer object, and thus protect</div>
<div>your own address space - but as a user of the RADB, how can I see which</div>
<div>objects are legitimate, and which (paid-for!) maintainers just put in</div>
<div>stuff that does not belong to them?</div>
</blockquote>
<div><br>
</div>
<div>How will that differ in an ARIN IRR? </div>
<div><br>
</div>
<div>Best,</div>
<div><br>
</div>
<div>-M<</div>
</blockquote>
</body>
</html>