Re: [sig-policy] prop-037-v001: Deprecation of email updates for APNIC R

To: Terry Manderson <terry at apnic dot net>
Subject: Re: [sig-policy] prop-037-v001: Deprecation of email updates for APNIC Registry and whois
From: Randy Bush <randy at psg dot com>
Date: Tue, 8 Aug 2006 08:42:55 -0700
Cc: sig-policy at apnic dot net, Toshiyuki Hosaka <hosaka at nic dot ad dot jp>
List-archive: <http://www.apnic.net/mailing-lists/sig-policy>
List-help: <mailto:sig-policy-request@lists.apnic.net?subject=help>
List-id: APNIC SIG on resource management policy <sig-policy.lists.apnic.net>
List-post: <mailto:sig-policy@lists.apnic.net>
List-subscribe: <http://mailman.apnic.net/mailman/listinfo/sig-policy>, <mailto:sig-policy-request@lists.apnic.net?subject=subscribe>
List-unsubscribe: <http://mailman.apnic.net/mailman/listinfo/sig-policy>, <mailto:sig-policy-request@lists.apnic.net?subject=unsubscribe>
References: <f6ee8e65fa5c725eaf4ab6fa4b813597@psg.com> <db727d4ab6de40c0f94e47810fbdbdd6@apnic.net>

> match the necessary security levels might actually add layers of
> complexity for the registrant.

for those using web, or only for those whose means of access is
limited by choice or circumstances to email?

> The scenarios I worked through suggested conclusions where APNIC
> could be at risk of adding to the members' work effort and possibly
> increasing APNIC's support costs by implementing such security
> mechanisms in email.

could you explain?  the other registries seem to find pgp email
doable.  is that not sufficient?  is the issue what happens when
you want to go to x.509-based signatures.

i.e. "it will be harder" might gain some sympathy if there was
also a "because ..."

randy