Policy Proposal 2007-3: Documentation of the X.509 Authentication Method

Status: Board Rejected

Tracking Information

Discussion Tracking

Mailing List:

Formal introduction on PPML on 16 February 2007

Staff assessment - 13 April 2007
Last call - 25 April through 9 May 2007 Public Policy Mailing List

ARIN Public Policy Meeting:

ARIN XIX

ARIN Advisory Council:

2 November 2006
16 November 2006
18 January 2007
15 February 2007
24 April 2007
17 May 2007

ARIN Board of Trustees:

Cryptographic Authentication

Revisions:

Implementation:

Author(s):

Paul Vixie,
Mark Kosters,
Chris Morrow,
Jared Mauch,
Bill Woodcock

Proposal type: New

Policy term: Permanent

Policy statement:

DELETION FROM THE NRPM

12.3 X.509
This section intentionally left blank.

ADDITION TO THE NRPM

12.3 X.509
ARIN accepts X.509-signed transactions as authentic communication from authorized Points of Contact. POCs may denote their records "crypt-auth," subsequent to which unsigned communications shall not be deemed authentic with regard to those records.

Rationale:

This policy complements the previously-proposed "Reinstatement of PGP Authentication Method" which introduces section 12 to the NRPM. Section 12 relates the existence of three authentication methods. Two of those, mail-from and X.509, were preexisting but not documented within the NRPM.

This policy proposal simply seeks to provide brief documentation of the existence of the X.509 authentication method. Because the specific wording of the documentation may be subject to debate, and is in no way interdependent upon the documentation of the other two methods, it is being proposed in a separate policy, so that consensus may be more easily reached.

Timetable for implementation: Immediate