[ppml] 2007-1, was Re: mail auth proposals
woody at pch.net
Tue Apr 10 21:13:02 EDT 2007
On Tue, 10 Apr 2007, william(at)elan.net wrote:
> I think ARIN should accept maximum 2-step PGP chain...
I think I can guess that the authors would all be fine with that. I
certainly would be. I don't think anyone's attached to the number five,
and I think most of us aren't positive we need to specify a number in the
> ...but have special system where ARIN will
> sign key for any contact it previously authenticated...
Well, the idea was that ARIN hostmasters would do key-signings at ARIN
meetings, and participate in key-signings at other meetings, but we felt
that it was too prescriptive to get into that level of detail in the
We don't feel that ARIN should apply something other than the
normally-accepted PGP authentication process (check government-issued
photo ID in the physical presence of the other person, and hear their key
fingerprint from them directly). There's a right way to do it, and ARIN
shouldn't break an established practice.
> Last part is completely unnecessary, staff members should feel free to
> use PGP no matter if policy states it or not.
That would be nice, but unfortunately we didn't agree that it was
unnecessary to say it. :-/
More information about the ARIN-PPML