IETF Logo Mail Archive

Re: [regext] Security Lock anyone? (Was: Preliminary agenda for Prague, and call for agenda items)

"Marc Blanchet" <marc.blanchet@viagenie.ca> Wed, 13 March 2019 14:17 UTC

Return-Path: <marc.blanchet@viagenie.ca>
X-Original-To: regext@ietfa.amsl.com
Delivered-To: regext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3DA4B124B0C for <regext@ietfa.amsl.com>; Wed, 13 Mar 2019 07:17:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.001
X-Spam-Level:
X-Spam-Status: No, score=-0.001 tagged_above=-999 required=5 tests=[DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=viagenie-ca.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kenC93KrnbpZ for <regext@ietfa.amsl.com>; Wed, 13 Mar 2019 07:17:55 -0700 (PDT)
Received: from mail-qt1-x829.google.com (mail-qt1-x829.google.com [IPv6:2607:f8b0:4864:20::829]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 47256130F03 for <regext@ietf.org>; Wed, 13 Mar 2019 07:17:55 -0700 (PDT)
Received: by mail-qt1-x829.google.com with SMTP id f11so2032567qti.7 for <regext@ietf.org>; Wed, 13 Mar 2019 07:17:55 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=viagenie-ca.20150623.gappssmtp.com; s=20150623; h=from:to:cc:subject:date:message-id:in-reply-to:references :mime-version:content-transfer-encoding; bh=9u+5CLVMb1iGTSKOesle7KXUWG9mfLhKh+/yrwcMIVg=; b=fQbfeU2Q5OhoqrniUu63Rqbj7etESV2yGRSf8rGqKWCZqvn73F2bnaE9P0xqaLv6LW d4tpmzGdTyMX2uHohPB/0oz65DrEpOeU3fn+YSK8VBZ1BGAq8NFraBc/+Kvd0zzyVar2 MGWbr7d8lWqE3ijBn4wWlw3K/AtYjiFUGoJ7cfGWtlPqlfbCF8BSyspFxGLwi1jQnIlb Mh1Txi0QRNqdhZMPTeTBYHokWTBUO+Y6g3hMwMRCLsuTrZWn30uyW54z1p191GaE0uf6 j9CDLrvVVnWy2DWaSOktay8gOdClI+cWE5FFdzXa75EY1TBKmv8bRDin5JW8fOp1u4pe oRPQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:cc:subject:date:message-id:in-reply-to :references:mime-version:content-transfer-encoding; bh=9u+5CLVMb1iGTSKOesle7KXUWG9mfLhKh+/yrwcMIVg=; b=Vb7cNZrFDa2brfng/1l+DeNEfMTlic6PSL2vmLetbKfkbkWqwjDiZGbOMEOmBGkBQ+ K5R9vowrs0Q32FZcl4lUfUsTl6zHk8gDLq2zo7gaZ6D4PaSLc3stdy6dePGbFywJ4nE0 nq0CgMSOTh1TutwPlwkqY6gyJJCBL1MdyVjBhsLEgAeea3Lvuy6iaaz3iYq4jaaOkHX9 AD/OWum0WYKjmF4cAvex52NGo0aOchJ16mE2iEGxIYJR9GmziMbheMiIKE/KsIgp9fwR aPMKH0mtEHt47sOApL+JZfyPeWhW1rrG6JCimpp79O2SBLjDD8ukNVgvhuVMMc/iD4Gg eUCw==
X-Gm-Message-State: APjAAAVdQ+ygOXb8kwJSQNqTV7hclLOA/UYpOfCAKRq5ImGAU01Ao6vw 6JneYtIhzZhq3wQjA6DfMJFhOQ==
X-Google-Smtp-Source: APXvYqybeRc1Q7Tnjo+uC5rjEy2i0z0Zu3gk87kSpvoejI/AV7E6TLrMvBUaPTpV5UCzMh7YubQZ3Q==
X-Received: by 2002:ac8:1a64:: with SMTP id q33mr35047858qtk.274.1552486674213; Wed, 13 Mar 2019 07:17:54 -0700 (PDT)
Received: from [10.0.1.2] (modemcable040.161-162-184.mc.videotron.ca. [184.162.161.40]) by smtp.gmail.com with ESMTPSA id c7sm3525996qth.46.2019.03.13.07.17.53 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Wed, 13 Mar 2019 07:17:53 -0700 (PDT)
From: Marc Blanchet <marc.blanchet@viagenie.ca>
To: Tongfeng Zhang <tongfeng.zhang@cira.ca>
Cc: regext@ietf.org
Date: Wed, 13 Mar 2019 10:17:51 -0400
X-Mailer: MailMate (1.12.4r5594)
Message-ID: <56E2037A-C44E-476A-B5B0-B41EBA7BC40F@viagenie.ca>
In-Reply-To: <34c35e4c575a4e338215b919c102cdfc@cira.ca>
References: <19F54F2956911544A32543B8A9BDE0759FBF8765@NICS-EXCH2.sbg.nic.at> <8175501f-3365-c8d1-7a76-a4584e76734e@centralnic.com> <C4A68CA3-1ADE-4959-A51E-A73F4A4914DC@sidn.nl> <395DD26B-B2D1-4144-87BD-8DBCD772A8A5@lansing.dk> <34c35e4c575a4e338215b919c102cdfc@cira.ca>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/regext/FkG-pL34XbWSev-svh7S-daj3kA>
Subject: Re: [regext] Security Lock anyone? (Was: Preliminary agenda for Prague, and call for agenda items)
X-BeenThere: regext@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Registration Protocols Extensions <regext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/regext>, <mailto:regext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/regext/>
List-Post: <mailto:regext@ietf.org>
List-Help: <mailto:regext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/regext>, <mailto:regext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 13 Mar 2019 14:18:03 -0000

On 25 Feb 2019, at 12:46, Tongfeng Zhang wrote:

> At .ca and all the TLDs CIRA operates,  we have a similar feature of 
> registry lock.
> We are interested in standardization for sure.
>
> There is a regiOps workshop coming up in May in Bangkok. I see a fit 
> there

Good idea. We have issued a call for proposals for the next ROW (see: 
http://regiops.net). Maybe we can have a panel of implementors with some 
Q&A. So if people are interested in describing their current solution at 
the ROW, please contact us (row@viagenie.ca).

Marc.

> if regext is not the right place.
>
> Cheers,
> Tongfeng
>
>
> -----Original Message-----
> From: regext <regext-bounces@ietf.org> On Behalf Of Erwin Lansing
> Sent: Monday, February 25, 2019 11:25 AM
> To: regext@ietf.org
> Subject: Re: [regext] Security Lock anyone? (Was: Preliminary agenda 
> for Prague, and call for agenda items)
>
> Folks,
>
> At .dk we also offer a form form of registry lock, called VID, which 
> I’d like to redesign at some point.  Having a standardised, or at 
> least similar “enough” product offering across different 
> registries and TLDs would make it much more attractive for 
> registrants.  Even though I won’t be in Prague, I’m certainly 
> interested in following any standardisation effort.
>
> Best,
> Erwin
>
>
>
>> On 25 Feb 2019, at 17.11, Marc Groeneweg <Marc.Groeneweg@sidn.nl> 
>> wrote:
>>
>> All,
>>
>> At SIDN (for .nl) we have our own form of registry lock called .nl 
>> control (https://www.sidn.nl/en/nl-control?language_id=2). Perhaps 
>> this can be used as input for a joined effort in increasing security 
>> around registry/registrar operations.
>>
>> Regards,
>> Marc Groeneweg
>>
>> On 25/02/2019, 14:57, "regext on behalf of Gavin Brown" 
>> <regext-bounces@ietf.org on behalf of gavin.brown@centralnic.com> 
>> wrote:
>>
>>    If a BoF happens in Prague I will certainly attend.
>>
>>    On 25/02/2019 07:26, Alexander Mayrhofer wrote:
>>> Antoin, all,
>>>
>>>
>>>
>>> for now this is more a question / request to the group, rather than 
>>> a
>>> specific agenda slot request – but:
>>>
>>>
>>>
>>> In the light of the recent attacks on registration interfaces, do we
>>> want to take a fresh look at standardization of “Registry Lock” 
>>> /
>>> “Security Lock”. There’s some previous work on this topic (see
>>> https://tools.ietf.org/html/draft-wallstrom-epp-registrant-problem-statement-00).
>>> As Patrick pointed out, there’s also some IPR considerations in 
>>> this
>>> area (See his blog post at
>>> http://www.circleid.com/posts/20150603_registry_lock_or_epp_with_two_factor_authentication/).
>>>
>>>
>>>
>>> I constantly hear from registrars that “Security Lock” (our 
>>> product
>>> name) would be much more attractive if there wasn’t a myriad of
>>> different processes at each registry – so my take is that 
>>> there’s
>>> room for standardization (which probably goes beyond the pure EPP 
>>> extension).
>>> I’m also hearing some fellow ccTLD colleages are interesting in a
>>> common “profile”.
>>>
>>> Would regext be the right spot for such a discussion? If yes, would
>>> it be interesting to hold a 20 minutes slot in Prague? Or even a
>>> Bar-BoF before we “report back” to the working group?
>>>
>>>
>>>
>>> Best,
>>>
>>> Alex
>>>
>>>
>>>
>>>
>>>
>>> *Von:*regext <regext-bounces@ietf.org> *Im Auftrag von *Antoin
>>> Verschuren
>>> *Gesendet:* Sonntag, 24. Februar 2019 14:43
>>> *An:* Registration Protocols Extensions <regext@ietf.org>
>>> *Betreff:* [regext] Preliminary agenda for Prague, and call for
>>> agenda items
>>>
>>>
>>>
>>> Hi all,
>>>
>>> Please find the preliminary agenda for Prague attached.
>>> I hope I captured everyone that has requested time to speak. If not,
>>> let the chairs know.
>>> We still have a little bit of time left on the agenda, so if you 
>>> have
>>> urgent agenda items, let us know as well.
>>> If you are on the agenda, start preparing ;-)
>>>
>>>
>>>
>>>
>>> Regards, Jim and Antoin
>>>
>>> - --
>>> Antoin Verschuren
>>>
>>> Tweevoren 6, 5672 SB Nuenen, NL
>>> M: +31 6 37682392
>>>
>>>
>>>
>>>
>>>
>>> _______________________________________________
>>> regext mailing list
>>> regext@ietf.org <mailto:regext@ietf.org>
>>> https://www.ietf.org/mailman/listinfo/regext
>>>
>>>
>>> _______________________________________________
>>> regext mailing list
>>> regext@ietf.org
>>> https://www.ietf.org/mailman/listinfo/regext
>>>
>>
>>    --
>>    Gavin Brown
>>    Chief Technology Officer
>>    CentralNic Group plc (LSE:CNIC)
>>    Innovative, Reliable and Flexible Registry Services
>>    for ccTLD, gTLD and private domain name registries
>>    https://www.centralnic.com/
>>    +44.7548243029
>>
>>    CentralNic Group plc is a company registered in England and Wales 
>> with
>>    company number 8576358. Registered Offices: 35-39 Moorgate, 
>> London,
>>    EC2R 6AR.
>>
>>
>> _______________________________________________
>> regext mailing list
>> regext@ietf.org
>> https://www.ietf.org/mailman/listinfo/regext

v2.23.0 | Report a Bug | By Email