[ppml] Proposed Policy: Capturing Originations in Templates

[Owen DeLong]

> 
> One of the key issues is trust. There is a clear view that RIR data can
> be trusted where as RR not so much. This is both because RIR data is 
> typically more up to date and because RIRd have (typically financial) 
> relationships with ip address holders and take steps to verify who they
> are.
> 
That only makes sense when you compare an independent RR to RIR whois.
When you are comparing RIR Whois to RIR RR, the trust issue seems, to
me, at least, to be identical.

> Now as far as relationship part of this equation it is possible to 
> communicate such trust by electronic means (yes pki signatures) and that 
> is one of the issues SIDR will hopefully look at. But PKI and signing can 
> be considered heavy-weight and idea of adding data directly into trusted 
> authority information service is light-weight and easy to do.
> 
RRs already use PKI as one way to control authentication for submissions
of RR data.  I don't know what the ARIN RR uses, but, I do know that
is a valid method used by Merit RADB.

Owen

-- 
If it wasn't crypto-signed, it probably didn't come from me.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 186 bytes
Desc: not available
URL: <https://lists.arin.net/pipermail/arin-ppml/attachments/20060213/fc247b08/attachment.sig>