[AusNOG] Trusted Community Representatives

Terry Manderson terry at terrym.net
Fri Apr 16 16:11:36 EST 2010


Sean,

Kim might be able to clarify, but from my reading of the process the TCR roles of Crypto officer and Recovery Key share holder is to hold either the physical key or smart card (respectively) in such a secure way that no others have access to it.

Handing off theses pieces of security to anyone would be, well, insecure. Furthermore, while APNIC appears to be a nice choice by virtue of their globetrotting nature they form part of the addressing hierarchy with ICANN and while not specifically listed in the "may not be" section, I think it would generate cynicism if they were somehow part of the TCR set - even as carrier pigeons.

Cheers
Terry


On 16/04/2010, at 1:49 PM, Sean K. Finn wrote:

> I posted earlier to list but it appears to not have come through, so apologies for double-post if it ever surfaces:
> 
> 
> Kim and Steve are dead right, this is something we need to get on top of.
> 
> The big thing here is that the keys must be exchanged Physically IN-Person and not electronically over the Internet.
> 
> AUSNOG would serve as a very awesome hub for physical Interaction and Dissemination of Keys.
> 
> Perhaps someone from APNIC who comes to all the AusNOG events and globetrots would be willing to act as the carrier pidgeon for Australia?
> 
> -Sean
> 
> -----Original Message-----
> From: ausnog-bounces at lists.ausnog.net [mailto:ausnog-bounces at lists.ausnog.net] On Behalf Of Kim Davies
> Sent: Friday, 16 April 2010 3:09 AM
> To: Steve Lisson
> Cc: Tom Wright; ausnog at ausnog.net
> Subject: Re: [AusNOG] Trusted Community Representatives
> 
> Quoting Steve Lisson on Friday April 16, 2010:
> | 
> | I was hopeful it would see at least some discussion, but key management
> | of DNSSEC obviously takes a second to discussions about journalists
> | using Ausnog for leads (sorry but I thought that was pretty much a
> | given, maybe someone setup a partyline on INOC DBA for communication
> | between nocs <g>), are we actually an operational list?
> | 
> | While I was volunteering myself there is one person in the country that
> | I would be surprised not to see as a TCR (hint, we get great automated
> | emails from their domain every week on the list), I really am not the
> | right person for this.
> 
> Wearing my ICANN hat for a second, we are extremely keen to have
> diversity in the trusted community representatives, and particularly
> from this community. I'd strongly encourage people to put themselves
> forward for this.
> 
> If you have any questions about the process I am happy to try and
> assist. As a reminder the deadline is a week away.
> 
> Kim Davies
> Manager, Root Zone Services
> ICANN
> _______________________________________________
> AusNOG mailing list
> AusNOG at lists.ausnog.net
> http://lists.ausnog.net/mailman/listinfo/ausnog
> _______________________________________________
> AusNOG mailing list
> AusNOG at lists.ausnog.net
> http://lists.ausnog.net/mailman/listinfo/ausnog




More information about the AusNOG mailing list