|
|
 |
RE: [db-wg] Re: [ncc-services-wg] X.509 authentication in the RIPE Database
- Date: Fri, 11 Jul 2003 17:27:24 +1000
> -----Original Message-----
> From: db-wg-admin@localhost [ ] On
> Behalf Of Kurt Erik Lindqvist
> Sent: Friday, 4 July 2003 4:56 PM
> To: ripe-dbm@localhost
>; db-wg@localhost
> Subject: [db-wg] Re: [ncc-services-wg] X.509 authentication
> in the RIPE Database
>
> Tiago,
>
> >
> >
> > It is also important to note that, the general trend among
> the other
> > Regional Internet Registries (RIRs) is the use of X.509 as a main
> > authentication method.
>
> when you say that the trend among the other RIRs is to go for X.509
> certificates, could you please elaborate on what they are
> doing and how
> far they are?
>
> Best regards,
>
> - - kurtis -
>
Hi all,
In APNIC we use X.509 certificate to secure MyAPNIC (similar to LIR
Portal). Having X.509 auth in the whois db would make a better
integration with this facility.
We have also been closely monitoring IETF's PKIX working group
where there's an effort to certify ASN and internet addresses to
protect routing announcements. This might eventually affect how
the public will use the internet routing registry, which is also
part or our whois database.
We expect X.509 will be used to make certified statements about
resource allocation as part of S-BGP or SO-BGP and/or wider
requirements for authoritative statements on resources
Hope this helps.
Cheers,
Sanjaya
______________________________________________________________________
Senior Project Manager sanjaya@localhost
Asia Pacific Network Information Centre (APNIC) Tel: +61-7-3858-3100
PO Box 2131 Milton, QLD 4064 Australia Fax: +61-7-3858-3199
----------------------------------------------------------------------
See you at APNIC 16
Seoul, Korea, 19-22 August 2003 http://www.apnic.net/meetings
----------------------------------------------------------------------
|
|
|
|
