Re: [regext] Security Lock anyone? (Was: Preliminary agenda for Prague, and call for agenda items)
Erwin Lansing <erwin@lansing.dk> Mon, 25 February 2019 16:25 UTC
Return-Path: <erwin@lansing.dk>
X-Original-To: regext@ietfa.amsl.com
Delivered-To: regext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9D94F130F1F for <regext@ietfa.amsl.com>; Mon, 25 Feb 2019 08:25:27 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=lansing.dk
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kNObDU5BnNW1 for <regext@ietfa.amsl.com>; Mon, 25 Feb 2019 08:25:24 -0800 (PST)
Received: from mail.droso.net (sloth.droso.dk [46.226.111.238]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4AAE4130F1A for <regext@ietf.org>; Mon, 25 Feb 2019 08:25:24 -0800 (PST)
Received: from 2a02-0980-2510-ba10-5c6f-e737-3d16-7a63.v6.fullrate.ninja (2a02-0980-2510-ba10-5c6f-e737-3d16-7a63.v6.fullrate.ninja [IPv6:2a02:980:2510:ba10:5c6f:e737:3d16:7a63]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mail.droso.net (Postfix) with ESMTPSA id 27CCF4032E for <regext@ietf.org>; Mon, 25 Feb 2019 16:25:22 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lansing.dk; s=lansing.dk-20160916; t=1551111922; bh=48QWMNNJ2Ms3L6swHs2dKPllfe48/Z9K58f0pFXYVvE=; h=From:Subject:Date:References:To:In-Reply-To; b=RBBTkXEQ+d0Zf9zRDQiwZrlvNcXXXlRh5vas3q7Z3/hVs/5rYLIWledbeq4j5aAu5 HkBOcy7ielcz8ldN5EoaTFxKTwKsb1hS/d8W70dOy4LagLLgdbfMkgBZcnDJBJT1u8 pZJkipRaXkBZZ9JOW5+KgFoHRvaENVZtrLEwmB4kgG4gCcy+KSFoWYsEePcgCQYGI8 alLa61WZhi14o99q+sLeIb3zEXCmCvmTf6FG+31zCozwEkN7RRd0/XQJbAsW7metK3 PP1c7twgixldFzDbsH40Jj1jJ0DtsQEr70wRTBqcD1iPYM0M3GkDF/tqhILjGOzI9B 9URV/IgLJUu8g==
From: Erwin Lansing <erwin@lansing.dk>
Content-Type: multipart/signed; boundary="Apple-Mail=_97A681FA-2E81-4A7F-A273-3EAF354A609C"; protocol="application/pgp-signature"; micalg="pgp-sha1"
Mime-Version: 1.0 (Mac OS X Mail 12.2 \(3445.102.3\))
Date: Mon, 25 Feb 2019 17:25:19 +0100
References: <19F54F2956911544A32543B8A9BDE0759FBF8765@NICS-EXCH2.sbg.nic.at> <8175501f-3365-c8d1-7a76-a4584e76734e@centralnic.com> <C4A68CA3-1ADE-4959-A51E-A73F4A4914DC@sidn.nl>
To: regext@ietf.org
In-Reply-To: <C4A68CA3-1ADE-4959-A51E-A73F4A4914DC@sidn.nl>
Message-Id: <395DD26B-B2D1-4144-87BD-8DBCD772A8A5@lansing.dk>
X-Mailer: Apple Mail (2.3445.102.3)
Archived-At: <https://mailarchive.ietf.org/arch/msg/regext/_ra-kuhpOmYr0NRSQpuqfAZRyw4>
Subject: Re: [regext] Security Lock anyone? (Was: Preliminary agenda for Prague, and call for agenda items)
X-BeenThere: regext@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Registration Protocols Extensions <regext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/regext>, <mailto:regext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/regext/>
List-Post: <mailto:regext@ietf.org>
List-Help: <mailto:regext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/regext>, <mailto:regext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 25 Feb 2019 16:25:28 -0000
Folks, At .dk we also offer a form form of registry lock, called VID, which I’d like to redesign at some point. Having a standardised, or at least similar “enough” product offering across different registries and TLDs would make it much more attractive for registrants. Even though I won’t be in Prague, I’m certainly interested in following any standardisation effort. Best, Erwin > On 25 Feb 2019, at 17.11, Marc Groeneweg <Marc.Groeneweg@sidn.nl> wrote: > > All, > > At SIDN (for .nl) we have our own form of registry lock called .nl control (https://www.sidn.nl/en/nl-control?language_id=2). Perhaps this can be used as input for a joined effort in increasing security around registry/registrar operations. > > Regards, > Marc Groeneweg > > On 25/02/2019, 14:57, "regext on behalf of Gavin Brown" <regext-bounces@ietf.org on behalf of gavin.brown@centralnic.com> wrote: > > If a BoF happens in Prague I will certainly attend. > > On 25/02/2019 07:26, Alexander Mayrhofer wrote: >> Antoin, all, >> >> >> >> for now this is more a question / request to the group, rather than a >> specific agenda slot request – but: >> >> >> >> In the light of the recent attacks on registration interfaces, do we >> want to take a fresh look at standardization of “Registry Lock” / >> “Security Lock”. There’s some previous work on this topic (see >> https://tools.ietf.org/html/draft-wallstrom-epp-registrant-problem-statement-00). >> As Patrick pointed out, there’s also some IPR considerations in this >> area (See his blog post at >> http://www.circleid.com/posts/20150603_registry_lock_or_epp_with_two_factor_authentication/). >> >> >> >> I constantly hear from registrars that “Security Lock” (our product >> name) would be much more attractive if there wasn’t a myriad of >> different processes at each registry – so my take is that there’s room >> for standardization (which probably goes beyond the pure EPP extension). >> I’m also hearing some fellow ccTLD colleages are interesting in a >> common “profile”. >> >> Would regext be the right spot for such a discussion? If yes, would it >> be interesting to hold a 20 minutes slot in Prague? Or even a Bar-BoF >> before we “report back” to the working group? >> >> >> >> Best, >> >> Alex >> >> >> >> >> >> *Von:*regext <regext-bounces@ietf.org> *Im Auftrag von *Antoin Verschuren >> *Gesendet:* Sonntag, 24. Februar 2019 14:43 >> *An:* Registration Protocols Extensions <regext@ietf.org> >> *Betreff:* [regext] Preliminary agenda for Prague, and call for agenda items >> >> >> >> Hi all, >> >> Please find the preliminary agenda for Prague attached. >> I hope I captured everyone that has requested time to speak. If not, let >> the chairs know. >> We still have a little bit of time left on the agenda, so if you have >> urgent agenda items, let us know as well. >> If you are on the agenda, start preparing ;-) >> >> >> >> >> Regards, Jim and Antoin >> >> - -- >> Antoin Verschuren >> >> Tweevoren 6, 5672 SB Nuenen, NL >> M: +31 6 37682392 >> >> >> >> >> >> _______________________________________________ >> regext mailing list >> regext@ietf.org <mailto:regext@ietf.org> >> https://www.ietf.org/mailman/listinfo/regext >> >> >> _______________________________________________ >> regext mailing list >> regext@ietf.org >> https://www.ietf.org/mailman/listinfo/regext >> > > -- > Gavin Brown > Chief Technology Officer > CentralNic Group plc (LSE:CNIC) > Innovative, Reliable and Flexible Registry Services > for ccTLD, gTLD and private domain name registries > https://www.centralnic.com/ > +44.7548243029 > > CentralNic Group plc is a company registered in England and Wales with > company number 8576358. Registered Offices: 35-39 Moorgate, London, > EC2R 6AR. > > > _______________________________________________ > regext mailing list > regext@ietf.org > https://www.ietf.org/mailman/listinfo/regext
- [regext] Security Lock anyone? (Was: Preliminary … Alexander Mayrhofer
- Re: [regext] Security Lock anyone? (Was: Prelimin… Kal Feher
- Re: [regext] Security Lock anyone? (Was: Prelimin… Bill Woodcock
- Re: [regext] Security Lock anyone? (Was: Prelimin… Martin Casanova
- Re: [regext] Security Lock anyone? (Was: Prelimin… Tony Finch
- Re: [regext] Security Lock anyone? (Was: Prelimin… Gavin Brown
- Re: [regext] Security Lock anyone? (Was: Prelimin… Marc Groeneweg
- Re: [regext] Security Lock anyone? (Was: Prelimin… Erwin Lansing
- Re: [regext] Security Lock anyone? (Was: Prelimin… Tongfeng Zhang
- Re: [regext] Security Lock anyone? (Was: Prelimin… Wilhelm, Richard
- Re: [regext] Security Lock anyone? (Was: Prelimin… Rubens Kuhl
- Re: [regext] Security Lock anyone? (Was: Prelimin… Tony Finch
- Re: [regext] Security Lock anyone? (Was: Prelimin… Alexander Mayrhofer
- Re: [regext] Security Lock anyone? (Was: Prelimin… Tim Wicinski
- Re: [regext] Security Lock anyone? (Was: Prelimin… Kal Feher
- Re: [regext] Security Lock anyone? (Was: Prelimin… Rubens Kuhl
- Re: [regext] Security Lock anyone? (Was: Prelimin… Tim Wicinski
- Re: [regext] Security Lock anyone? (Was: Prelimin… Alexander Mayrhofer
- Re: [regext] Security Lock anyone? (Was: Prelimin… Kal Feher
- Re: [regext] Security Lock anyone? (Was: Prelimin… Marc Blanchet