[arin-ppml] private whois record

Chu, Yi [NTK] Yi.Chu at sprint.com
Tue Aug 7 14:08:13 EDT 2012 

The situation is my customer (a company, not residential) had gone through a security audit.  The audit identified the whois record as a potential security risk.  What they are asking is for their whois  record (inetnum, or network record) to be private.  So the assigning LIR has access to the private record, as well as ARIN.  But not to general public.  This 'private' feature has been incorporated in APNIC for almost 10 years (APNIC-16, 2003 http://www.apnic.net/services/services-apnic-provides/helpdesk/faqs/privacy-of-customer-assignments---faqs) .   I would like to know first if ARIN has a similar feature to accommodate my customer's request.  If not, has the topic been discussed and if there is interest in pursuing.

yi

-----Original Message-----
From: arin-ppml-bounces at arin.net [mailto:arin-ppml-bounces at arin.net] On Behalf Of Kevin Kargel
Sent: Tuesday, August 07, 2012 1:01 PM
To: 'ARIN PPML (ppml at arin.net)'
Subject: Re: [arin-ppml] private whois record

I see no great problem with private registration so long as there are active
authoritative contacts that can actually do something should a network or
abuse issue occur.  Having an abuse or NOC contact point to someone who can
call someone who knows who to call is unacceptable.  We need to be able to
reach a network administrator directly.

Having said that, if you are operating on the public network and wish to
keep your contact information private then something just doesn't jive.  I
do strongly support transparency.  If you don't want to disclose any
information the solution is simple, don't transact on public networks.


Kevin


________________________________________
From: arin-ppml-bounces at arin.net [mailto:arin-ppml-bounces at arin.net] On
Behalf Of Chu, Yi [NTK]
Sent: Tuesday, August 07, 2012 11:26 AM
To: ARIN PPML (ppml at arin.net)
Subject: [arin-ppml] private whois record

APNIC has a 'private' option for LIR to make the non-portable assignments
private.  It fulfills the LIR's registration requirements, and at the same
time gives LIR option to address its customer's privacy concerns.  It does
seem a superb idea.  I wonder if the topic has ever been raised and
discussed in ARIN?

Yi Chu
IP Engineering
Sprint


________________________________________

This e-mail may contain Sprint Nextel proprietary information intended for
the sole use of the recipient(s). Any use by others is prohibited. If you
are not the intended recipient, please contact the sender and delete all
copies of the message.

________________________________

This e-mail may contain Sprint Nextel proprietary information intended for the sole use of the recipient(s). Any use by others is prohibited. If you are not the intended recipient, please contact the sender and delete all copies of the message.

More information about the ARIN-PPML mailing list