David, On Mar 9, 2025, at 11:21 PM, David Farmer <[email protected]> wrote: >> On Mar 9, 2025, at 9:50 AM, David Farmer via SIG-policy >> <[email protected] <mailto:[email protected]>> wrote: >> > The idea of requiring authentication for access to the global Whois >> > information has some merit. However, this change should not be made >> > independently by each RIR but should be coordinated across the entire >> > Internet Registry ecosystem. >> >> Are there any efforts underway to coordinate/develop a federated system? > > Between the RIRs, there is nothing that I know about.
To be clear, you are suggesting any actions related to requiring authentication therefore be deferred until there is agreement among the 5 RIRs (at least) on how it should be done? Perhaps I am overly pessimistic, but this sounds to me like the equivalent to saying there can be no authentication for the foreseeable future. > However, there are several examples of federated authentication systems in > the wild. InCommon and eduGAIN are examples from higher education. They > utilize SAML. Given there are the examples you have cited (among others), perhaps another approach in the vein of “permission-less innovation” would be for APNIC to identify and utilize one of those systems independently? While I’d agree it’d be nice for everyone (RIRs, IANA, and DNS registries and registrars and perhaps others) to use the same authentication and/or federation system, I’m a bit skeptical this is realistic. Regards, -drc
signature.asc
Description: OpenPGP digital signature
_______________________________________________ SIG-policy - https://mailman.apnic.net/[email protected]/ To unsubscribe send an email to [email protected]
