[tech-whois] A follow up session in San Francisco?
Jay Daley
jay at nzrs.net.nz
Mon Mar 7 21:02:44 UTC 2011
On 8/03/2011, at 9:13 AM, Dave Piscitello wrote:
>> - authentication, which is the feature where I think we are talking about a
>> very different protocol from WHOIS
>
> Agree.
>
>> - access control, which most WHOIS providers have implemented at the TCP/IP
>> level
>
> Without source address validation, IP level access control is not
> sufficient. Even with IP level access control, the granularity of access
> control is arguably less than one might want in a future incarnation of a
> Whois service. For example, an IP level access control does not accommodate
> a future policy that might block a user of group X from accessing to a
> subset of registration data elements {b} while allowing a user of group Y
> access to those elements. A robust directory service protocol ought to
> accommodate this.
It is probably my poor terminology, but I would include that as an authentication issue. Perhaps I should have said:
- authentication/access control
- rate limiting
Jay
--
Jay Daley
Chief Executive
.nz Registry Services (New Zealand Domain Name Registry Limited)
desk: +64 4 931 6977
mobile: +64 21 678840
More information about the tech-whois
mailing list