[arin-ppml] ARIN-2024-5 Rewrite of NRPM Section 4.4 Micro-Allocation - Community Questions

[David Conrad]

Tyler,

I’ve been reluctant to comment on this thread, but I’m increasingly confused...

On Feb 26, 2025, at 2:47 PM, Tyler O'Meara via ARIN-PPML <arin-ppml at arin.net> wrote:
> We should clarify that only the actual authoritative DNS servers qualify as CII;

So, the load balancers, routers, switches, etc., that connect those servers don’t count? The remote database backends the authoritative servers depend on? The other backend and administrative systems, etc.?

> as such I propose we use the following language:
> CII includes Internet Exchanges, IANA authorized authoritative Root DNS servers,
> TLD authoritative DNS servers, and critical services operated by ARIN and IANA.

> Presumably we don't consider whatever vendor Verisign uses for their corporate
> email to be CII, for example.

But you do consider the corporate email of ARIN and PTI/ICANN (which provides IANA services) CII?

The definition of “CII” used here appears to be arbitrary. Perhaps it might help if you define what you think is CII and why ARIN and ICANN/PTI would fall under that definition whereas Verisign wouldn’t?

Regards,
-drc

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 249 bytes
Desc: OpenPGP digital signature
URL: <https://lists.arin.net/pipermail/arin-ppml/attachments/20250226/0a2653c3/attachment.sig>