IETF Logo Mail Archive

Re: [regext] Security Lock anyone? (Was: Preliminary agenda for Prague, and call for agenda items)

Erwin Lansing <erwin@lansing.dk> Mon, 25 February 2019 16:25 UTC

Return-Path: <erwin@lansing.dk>
X-Original-To: regext@ietfa.amsl.com
Delivered-To: regext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9D94F130F1F for <regext@ietfa.amsl.com>; Mon, 25 Feb 2019 08:25:27 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=lansing.dk
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kNObDU5BnNW1 for <regext@ietfa.amsl.com>; Mon, 25 Feb 2019 08:25:24 -0800 (PST)
Received: from mail.droso.net (sloth.droso.dk [46.226.111.238]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4AAE4130F1A for <regext@ietf.org>; Mon, 25 Feb 2019 08:25:24 -0800 (PST)
Received: from 2a02-0980-2510-ba10-5c6f-e737-3d16-7a63.v6.fullrate.ninja (2a02-0980-2510-ba10-5c6f-e737-3d16-7a63.v6.fullrate.ninja [IPv6:2a02:980:2510:ba10:5c6f:e737:3d16:7a63]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mail.droso.net (Postfix) with ESMTPSA id 27CCF4032E for <regext@ietf.org>; Mon, 25 Feb 2019 16:25:22 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lansing.dk; s=lansing.dk-20160916; t=1551111922; bh=48QWMNNJ2Ms3L6swHs2dKPllfe48/Z9K58f0pFXYVvE=; h=From:Subject:Date:References:To:In-Reply-To; b=RBBTkXEQ+d0Zf9zRDQiwZrlvNcXXXlRh5vas3q7Z3/hVs/5rYLIWledbeq4j5aAu5 HkBOcy7ielcz8ldN5EoaTFxKTwKsb1hS/d8W70dOy4LagLLgdbfMkgBZcnDJBJT1u8 pZJkipRaXkBZZ9JOW5+KgFoHRvaENVZtrLEwmB4kgG4gCcy+KSFoWYsEePcgCQYGI8 alLa61WZhi14o99q+sLeIb3zEXCmCvmTf6FG+31zCozwEkN7RRd0/XQJbAsW7metK3 PP1c7twgixldFzDbsH40Jj1jJ0DtsQEr70wRTBqcD1iPYM0M3GkDF/tqhILjGOzI9B 9URV/IgLJUu8g==
From: Erwin Lansing <erwin@lansing.dk>
Content-Type: multipart/signed; boundary="Apple-Mail=_97A681FA-2E81-4A7F-A273-3EAF354A609C"; protocol="application/pgp-signature"; micalg="pgp-sha1"
Mime-Version: 1.0 (Mac OS X Mail 12.2 \(3445.102.3\))
Date: Mon, 25 Feb 2019 17:25:19 +0100
References: <19F54F2956911544A32543B8A9BDE0759FBF8765@NICS-EXCH2.sbg.nic.at> <8175501f-3365-c8d1-7a76-a4584e76734e@centralnic.com> <C4A68CA3-1ADE-4959-A51E-A73F4A4914DC@sidn.nl>
To: regext@ietf.org
In-Reply-To: <C4A68CA3-1ADE-4959-A51E-A73F4A4914DC@sidn.nl>
Message-Id: <395DD26B-B2D1-4144-87BD-8DBCD772A8A5@lansing.dk>
X-Mailer: Apple Mail (2.3445.102.3)
Archived-At: <https://mailarchive.ietf.org/arch/msg/regext/_ra-kuhpOmYr0NRSQpuqfAZRyw4>
Subject: Re: [regext] Security Lock anyone? (Was: Preliminary agenda for Prague, and call for agenda items)
X-BeenThere: regext@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Registration Protocols Extensions <regext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/regext>, <mailto:regext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/regext/>
List-Post: <mailto:regext@ietf.org>
List-Help: <mailto:regext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/regext>, <mailto:regext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 25 Feb 2019 16:25:28 -0000

Folks,

At .dk we also offer a form form of registry lock, called VID, which I’d like to redesign at some point.  Having a standardised, or at least similar “enough” product offering across different registries and TLDs would make it much more attractive for registrants.  Even though I won’t be in Prague, I’m certainly interested in following any standardisation effort.

Best,
Erwin



> On 25 Feb 2019, at 17.11, Marc Groeneweg <Marc.Groeneweg@sidn.nl> wrote:
> 
> All,
> 
> At SIDN (for .nl) we have our own form of registry lock called .nl control (https://www.sidn.nl/en/nl-control?language_id=2). Perhaps this can be used as input for a joined effort in increasing security around registry/registrar operations.
> 
> Regards,
> Marc Groeneweg
> 
> On 25/02/2019, 14:57, "regext on behalf of Gavin Brown" <regext-bounces@ietf.org on behalf of gavin.brown@centralnic.com> wrote:
> 
>    If a BoF happens in Prague I will certainly attend.
> 
>    On 25/02/2019 07:26, Alexander Mayrhofer wrote:
>> Antoin, all,
>> 
>> 
>> 
>> for now this is more a question / request to the group, rather than a
>> specific agenda slot request – but:
>> 
>> 
>> 
>> In the light of the recent attacks on registration interfaces, do we
>> want to take a fresh look at standardization of “Registry Lock” /
>> “Security Lock”. There’s some previous work on this topic (see
>> https://tools.ietf.org/html/draft-wallstrom-epp-registrant-problem-statement-00).
>> As Patrick pointed out, there’s also some IPR considerations in this
>> area (See his blog post at
>> http://www.circleid.com/posts/20150603_registry_lock_or_epp_with_two_factor_authentication/).
>> 
>> 
>> 
>> I constantly hear from registrars that “Security Lock” (our product
>> name) would be much more attractive if there wasn’t a myriad of
>> different processes at each registry – so my take is that there’s room
>> for standardization (which probably goes beyond the pure EPP extension).
>> I’m also hearing some fellow ccTLD colleages are interesting in a
>> common “profile”.
>> 
>> Would regext be the right spot for such a discussion? If yes, would it
>> be interesting to hold a 20 minutes slot in Prague? Or even a Bar-BoF
>> before we “report back” to the working group?
>> 
>> 
>> 
>> Best,
>> 
>> Alex
>> 
>> 
>> 
>> 
>> 
>> *Von:*regext <regext-bounces@ietf.org> *Im Auftrag von *Antoin Verschuren
>> *Gesendet:* Sonntag, 24. Februar 2019 14:43
>> *An:* Registration Protocols Extensions <regext@ietf.org>
>> *Betreff:* [regext] Preliminary agenda for Prague, and call for agenda items
>> 
>> 
>> 
>> Hi all,
>> 
>> Please find the preliminary agenda for Prague attached.
>> I hope I captured everyone that has requested time to speak. If not, let
>> the chairs know.
>> We still have a little bit of time left on the agenda, so if you have
>> urgent agenda items, let us know as well.
>> If you are on the agenda, start preparing ;-)
>> 
>> 
>> 
>> 
>> Regards, Jim and Antoin
>> 
>> - --
>> Antoin Verschuren
>> 
>> Tweevoren 6, 5672 SB Nuenen, NL
>> M: +31 6 37682392
>> 
>> 
>> 
>> 
>> 
>> _______________________________________________
>> regext mailing list
>> regext@ietf.org <mailto:regext@ietf.org>
>> https://www.ietf.org/mailman/listinfo/regext
>> 
>> 
>> _______________________________________________
>> regext mailing list
>> regext@ietf.org
>> https://www.ietf.org/mailman/listinfo/regext
>> 
> 
>    --
>    Gavin Brown
>    Chief Technology Officer
>    CentralNic Group plc (LSE:CNIC)
>    Innovative, Reliable and Flexible Registry Services
>    for ccTLD, gTLD and private domain name registries
>    https://www.centralnic.com/
>    +44.7548243029
> 
>    CentralNic Group plc is a company registered in England and Wales with
>    company number 8576358. Registered Offices: 35-39 Moorgate, London,
>    EC2R 6AR.
> 
> 
> _______________________________________________
> regext mailing list
> regext@ietf.org
> https://www.ietf.org/mailman/listinfo/regext

v2.23.0 | Report a Bug | By Email