Re: [regext] Implementations of draft-wisser-registrylock?

"Hollenbeck, Scott" <shollenbeck@verisign.com> Tue, 07 April 2020 16:57 UTC

Return-Path: <shollenbeck@verisign.com>
X-Original-To: regext@ietfa.amsl.com
Delivered-To: regext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 226953A046A for <regext@ietfa.amsl.com>; Tue, 7 Apr 2020 09:57:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=verisign.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pwomrBnwe_r0 for <regext@ietfa.amsl.com>; Tue, 7 Apr 2020 09:57:48 -0700 (PDT)
Received: from mail2.verisign.com (mail2.verisign.com [72.13.63.31]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6BAE43A044F for <regext@ietf.org>; Tue, 7 Apr 2020 09:57:48 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=verisign.com; l=7614; q=dns/txt; s=VRSN; t=1586278669; h=from:to:cc:date:message-id:references:in-reply-to: mime-version:subject; bh=Fq/3ZpA1xW0arZF0G9ww6bflnN7Pe7BCB64JHk+Oi+I=; b=qxSkdnk98N8rHNlxdFNyaL7pE2s8jx4O22NX2aKvHzyRtAZlNymXKQc5 w5av36UvnwZh8vd0DpyOGkTeGlzMmMOPxL12guYdpVn/vHuCEI8slHqJ5 gL6yyaxOeFY3FeQR0rWepUUmgxmQvkQEEhzwOMf3hPhWCfRPGBf/JeplQ 44smQyoo2RH83fEE9tVj+pWu7v8qOagaN2Sl6yVyosNino5tulSqhDaqn XERpcvZtj49nHdHoj57gGlyKSMOTVNOv0Bd3jZUvGjCC7i9hdQyA+7ZIV FdXkIrPqtC9bw6+wIJn7SZNbZo7eFcVQWHlaTlqXmGP18W44BCdMfYPG4 g==;
IronPort-SDR: W+t31cwS/14sTnTV/7w0QvH1HYTMC2FaSCU4xZj+FytICsMXPy+8iiAWfU70rhk+Jnb9GlWh/9 t6q9F2gP3Q7T3T6xoC/Ik8kHHI/O4TpEaUdL6i/BkUyWAyEnrg/5Z/cJ7RLsQcq4d7wfiaJHco IvbTW4D//n0NaSSeO5ip1JCbSHen5o85uc9z4IHC0c+gpfDpoMK8Nw9fG4q5hxV1FHXBKtw8zt 9aoUVYG2vvmPFAq/HZmePdnLT8d8401ogEYgxSOwCqrfM32MiL1w2bXdTRndofszhZkJq2YRjU /es=
X-IronPort-AV: E=Sophos;i="5.72,355,1580774400"; d="scan'208,217";a="558884"
IronPort-PHdr: =?us-ascii?q?9a23=3ADF4TnxOK6wN9/wce5bgl6mtUPXoX/o7sNwtQ0K?= =?us-ascii?q?IMzox0K/7yp8bcNUDSrc9gkEXOFd2Cra4d1qyP7uu5ATdIoc7Y9ixbLNoUD1?= =?us-ascii?q?5NoP5VtjJjKfbNMVf8Iv/uYn5yN+V5f3ghwUuGN1NIEt31fVzYry76xzcTHh?= =?us-ascii?q?LiKVg9fbytScbdgMutyu+95YDYbRlWizqhe7NyKwi9oRnMusUMjoZuN6Y8xg?= =?us-ascii?q?HUrnZIdOha2H9kKFyOlBr4+su84YRv/itNt/8u7cJMTbn2c6ElRrFEEToqNH?= =?us-ascii?q?w468LsuRTfVwWE+2ESUn8RkhpGAgjF6A/1U5LsuSbkteRzxTeXM9TuQb87RT?= =?us-ascii?q?qt4aFrSAT1iCgcLD427HvXis1rg61Fph+qugFyzJTVYIGRM/p+Y7/dcNYHTm?= =?us-ascii?q?dPQspdSypMCZ66YoASDeQOIPxYopH9qVUQsBW+GQeiCuDhyjBKh3/5waI13v?= =?us-ascii?q?87Hg3a3gwtBc4CvGjWodjzKawcUfq1zK7NzTjbYf9Y2zD96IzMch8/p/GDRq?= =?us-ascii?q?x/ftbSyUU3CgjLk0mfqYv5PzOJ2OgGrm+W7/FgVeKoj24nrx9+oj60ycgylo?= =?us-ascii?q?bJhZkYyk7a+iVjwYY1Pty4SEF9YdK+DJRQsCSaOpJwT8g/TW9ovyM6xacHuZ?= =?us-ascii?q?69ZCUKyYooxwLRa/CddIiI+B3jWeCMKjl7nHJoYK+ziwqo/US9yODxWNO43E?= =?us-ascii?q?tKoydLiNXBuXMA2wTO5sSbUPdx40Ws1SqV2wzO5exJIlo4mbfYJpI5zL4/iJ?= =?us-ascii?q?kevVjGEyLzmkj5kLOaeV8h9+S19+vofrDrq5+BOIBqhAHzN6AjldGiDusmNA?= =?us-ascii?q?UFQnKV9v6m1LL5+E30WLBKjvornabHqJ3aPsEbprKhAw9Sz4Yj9w6zDze439?= =?us-ascii?q?QcmnkKNE9Idg6fgYT0O17AOP/2Avajj1ixijtr2ezJPrr7ApXVNHTMiqruca?= =?us-ascii?q?xj605G0wozy8pT6I5TCrEEOP7zW0nxu8LEDhIhLgC43/zrBMh/244QQ26DH6?= =?us-ascii?q?+UPa3IvVKH5e8jO+yMa5UUuDb5Jfgl/fnujXohlF8Gfamp2p8XaHSmEfRgOE?= =?us-ascii?q?qWf2bjgtQaHGcUoAU+Vu3qiEaDUT5cYXa+Rb4z5jY+CI6+F4fMWpitgKCd3C?= =?us-ascii?q?e8BpBWe2RGCkqNEXj0d4WJQ/gBZD6cI89giTwETqauS5U72RG1qgD30KdoLu?= =?us-ascii?q?/O9S0CqZ3vztl16PPPlRE87zB0CN6d026VRWFugmwIXyM23Lx4oUFl0FeMz6?= =?us-ascii?q?d4jOJXFNxP/P5JUxk1NYLSz+BgDNDyQA3BdM+TSFm6WtWmHS0xTtUpztAUZ0?= =?us-ascii?q?ZyBdqjgQrF3yW3HbAVjaaHBJku/aPcxXjxJ8F9y3jY26k7lFQmRMpPOnG8iq?= =?us-ascii?q?Fl6wjZH5TJnFmBl6a2aaQc2zbA9H2dwmqWpk1XTQlwUbnfUXAZYUvWtc/05k?= =?us-ascii?q?zHT7C0CLQnNhFNxtKFKqtPctfpl0lJRO//ONTCZGK8g2C+BReUybOMdoXlZW?= =?us-ascii?q?Ed0D/ABUcejgAT+WyJNQ4jCSq6oGLeCj1uFUr3Y0/27OZxtiDzckhhhRyOdU?= =?us-ascii?q?xq1+/pogEUnueRUbUI05oIvS47oHN1EUqzmdXMBJDI8xdlZqRXYYZhuEhGzn?= =?us-ascii?q?nUrUpmM7SsKql4jRgffhh5+UT02EMzQs9anMcnvG8CzQduJ+SfylwLP2eC0J?= =?us-ascii?q?/9KqH/K2Tu8laocaGAiX/E19PDsIcI7PA1rV/utwLtXnEp9Gl7mZEByHub4p?= =?us-ascii?q?HHCgAfWpHZTEst9gN7qLecaS44sdCHnUZwOLW552eRk+kiA/Eon06t?=
X-IPAS-Result: =?us-ascii?q?A2EsAAD7r4xe/zCZrQpmHAEBAQEBBwEBEQEEBAEBgWcHA?= =?us-ascii?q?QELAYEkgXCBMQqEEoghiG2JcI9fgXsKAQEBAQEBAQEBBwEjDAQBAQKEQgIXg?= =?us-ascii?q?hM0CQ4CAwEBCwEBAQUBAQEBAQUDAQEBAoY/DII7InZ+AQEBAQEBAQEBAQEBA?= =?us-ascii?q?QEBAQEBARYCQ1USAQEdAQEBAQMjCkwQAgEIEQQBASsCAgIfER0IAgQBDQUIg?= =?us-ascii?q?x+Bfk0DPa9sdYEyhElBgz8NghsGgTgBil6BboFCPoQhPoIeSQIDAYRzgl4Ej?= =?us-ascii?q?WqDHYYFijuPHUgDB4I9h3KLAYQ1JYJOiDmRAI87iSaCPJBGAgQCBAUCFYFSZ?= =?us-ascii?q?IEtcIM5UBgNmimFQXQCjkIxXwEB?=
Received: from BRN1WNEX02.vcorp.ad.vrsn.com (10.173.153.49) by BRN1WNEX01.vcorp.ad.vrsn.com (10.173.153.48) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.1913.5; Tue, 7 Apr 2020 12:57:31 -0400
Received: from BRN1WNEX02.vcorp.ad.vrsn.com ([fe80::7c0a:1cc:5def:9dde]) by BRN1WNEX02.vcorp.ad.vrsn.com ([fe80::7c0a:1cc:5def:9dde%4]) with mapi id 15.01.1913.005; Tue, 7 Apr 2020 12:57:31 -0400
From: "Hollenbeck, Scott" <shollenbeck@verisign.com>
To: "ulrich=40wisser.se@dmarc.ietf.org" <ulrich=40wisser.se@dmarc.ietf.org>, "regext@ietf.org" <regext@ietf.org>
CC: "alexander.mayrhofer@nic.at" <alexander.mayrhofer@nic.at>, "rep.dot.nop@gmail.com" <rep.dot.nop@gmail.com>, "Michael.Bauland@knipp.de" <Michael.Bauland@knipp.de>
Thread-Topic: [EXTERNAL] Re: [regext] Implementations of draft-wisser-registrylock?
Thread-Index: AQHWDPEa9m+8mBpX/Em++U6m2t7xMqht36+g
Date: Tue, 7 Apr 2020 16:57:31 +0000
Message-ID: <0b5331a907a34efbbfe1cc1873404a7d@verisign.com>
References: <19F54F2956911544A32543B8A9BDE075B24192F8@NICS-EXCH2.sbg.nic.at> <20200327094413.73386d66@nbbrfq.loc> <CAJ9-zoWU3JMdvGMRKzOy4HWnZ0wDqO-Z83sNm2qADPNKiX0pBg@mail.gmail.com>
In-Reply-To: <CAJ9-zoWU3JMdvGMRKzOy4HWnZ0wDqO-Z83sNm2qADPNKiX0pBg@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.170.148.18]
Content-Type: multipart/alternative; boundary="_000_0b5331a907a34efbbfe1cc1873404a7dverisigncom_"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/regext/rTvdl9MkeYo75-x5Z2y3Zjyt_9A>
Subject: Re: [regext] Implementations of draft-wisser-registrylock?
X-BeenThere: regext@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Registration Protocols Extensions <regext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/regext>, <mailto:regext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/regext/>
List-Post: <mailto:regext@ietf.org>
List-Help: <mailto:regext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/regext>, <mailto:regext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 07 Apr 2020 16:57:50 -0000

From: regext <regext-bounces@ietf.org> On Behalf Of Ulrich Wisser
Sent: Tuesday, April 7, 2020 11:28 AM
To: regext@ietf.org
Cc: Alexander Mayrhofer <alexander.mayrhofer@nic.at>at>; Bernhard Reutner-Fischer <rep.dot.nop@gmail.com>om>; Michael.Bauland@knipp.de
Subject: [EXTERNAL] Re: [regext] Implementations of draft-wisser-registrylock?



Hi,



I have made significant changes to the draft.

Many thanks to contributions by Michael Bauland and Bernhard Reutner-Fischer.



Please find the draft at https://datatracker.ietf.org/doc/draft-wisser-registrylock/



And please give it a review.



If your registry currently offers or will offer registry lock in the future I would be interested to hear how this draft fits or doesn't fit your business model.



I hope you’re doing well, Ulrich! The mechanism described in the draft isn’t one that Verisign plans to implement. We do offer a registry lock service, but it doesn’t use EPP to avoid situations in which a compromised registrar/sponsoring client could unlock a domain and make unauthorized changes. We support registrar-initiated management of the client* status values for registrar locking.



Scott