-----Original Message----- From: db-wg-admin@ripe.net [mailto:db-wg-admin@ripe.net] On Behalf Of Kurt Erik Lindqvist Sent: Friday, 4 July 2003 4:56 PM To: ripe-dbm@ripe.net Cc: ncc-services-wg@ripe.net; db-wg@ripe.net Subject: [db-wg] Re: [ncc-services-wg] X.509 authentication in the RIPE Database
Tiago,
It is also important to note that, the general trend among
the other
Regional Internet Registries (RIRs) is the use of X.509 as a main authentication method.
when you say that the trend among the other RIRs is to go for X.509 certificates, could you please elaborate on what they are doing and how far they are?
Best regards,
- - kurtis -
Hi all, In APNIC we use X.509 certificate to secure MyAPNIC (similar to LIR Portal). Having X.509 auth in the whois db would make a better integration with this facility. We have also been closely monitoring IETF's PKIX working group where there's an effort to certify ASN and internet addresses to protect routing announcements. This might eventually affect how the public will use the internet routing registry, which is also part or our whois database. We expect X.509 will be used to make certified statements about resource allocation as part of S-BGP or SO-BGP and/or wider requirements for authoritative statements on resources Hope this helps. Cheers, Sanjaya ______________________________________________________________________ Senior Project Manager <sanjaya@apnic.net> Asia Pacific Network Information Centre (APNIC) Tel: +61-7-3858-3100 PO Box 2131 Milton, QLD 4064 Australia Fax: +61-7-3858-3199 ---------------------------------------------------------------------- See you at APNIC 16 Seoul, Korea, 19-22 August 2003 http://www.apnic.net/meetings ----------------------------------------------------------------------