Uwho Requirements Gathering Andrew Newton Mark Kosters Leslie Daigle VeriSign Labs APNIC 13, March 2002 Mar-2002

Download Report

Transcript Uwho Requirements Gathering Andrew Newton Mark Kosters Leslie Daigle VeriSign Labs APNIC 13, March 2002 Mar-2002

Uwho Requirements Gathering
Andrew Newton
Mark Kosters
Leslie Daigle
VeriSign Labs
APNIC 13, March 2002
1
Mar-2002
UWhat?
• Universal Whois
• VeriSign has committed undertaking in agreement with
ICANN
• Formal public consultations
– business, intellectual property holders (Aug/01)
– civil liberties, other ngo’s (Nov/01)
– international input (Nov/01)
• Informal public consultations
–
–
–
–
–
–
2
RIPE 40 (Oct/01)
NANOG 23 (Oct/01)
RIPE 41 (Jan/02)
NANOG 24 (Feb/02)
APRICOT 2002 (Mar/02)
APNIC 13 (Mar/02)
Mar-2002
Community at a Glance
• If we tried to include every aspect of every
type of whois service (past or present) in the
world, we would never get any work completed.
The scope would be too large.
• The subset is the community of people that
“administer” the Internet:
–
–
–
–
–
3
Network operators and service providers
Registry operators
Implementers of software (for this community)
Registrars, Certificate Authorities, etc.
IPR Holders, Law Enforcement, other government agencies,
Non-Governmental Organizations (NGO’s), etc…
Mar-2002
So is Harmony Communal?
• Not always
– Laws applying to various network and registry operators vary
from country to country.
– Some policies may conflict with laws elsewhere.
– Registry operators don’t always see eye-to-eye.
– Registrars don’t always see eye-to-eye.
– … the list goes on…
• We must provide the mechanism, not the policy.
– Because it is not our job.
– And we would never finish if we did.
4
Mar-2002
Some of the Potential Requirements
•
•
•
•
•
•
•
•
•
Structured queries and results
Referrals and referral-path authority
NIC Handle references
Standards
Ease of implementation and minimal re-invention
Machine readability
Decentralization and one-stop-shopping.
Privacy and access by IPR holders and law enforcement.
Adaptable to many policies and laws.
• After 30+ years of “Internet Science”, it can be done.
5
Mar-2002
Discussion
When we list out some of the
requirements, they cause us to ask more
questions?
Your input is needed.
6
Mar-2002
Structured Queries & Results
• Only routing has a standard – RPSL.
• What should domain registries use?
• What will they be willing to use?
– PROVREG is moving forward with XML.
• If another schema language (for example XML), what
should happen to RPSL?
– Would it get XML-ized (components broken into XML elements)?
– There is precedence in XML for use of other grammars.
–
–
XML Digital Signatures can use X.509 certs as-is.
W3C even defined parts of Xpath with a non-XML grammar.
• Queries vary from server to server, especially for the
domain registries.
– Solved by common schema language and standard schemas.
• On settling on a set of standard schema data models:
– Which current ones work well?
– What needs to be added?
7
Mar-2002
A Unified Protocol/Service
• The registry operators are starting to drift
apart.
–
–
–
–
At least two TLD operators flirting with LDAP.
There is nothing like RPSL for domains.
What about Rwhois?
ICANN registrars being told to use XML for escrow.
• Is it time to address this problem?
• Or should the naming registries and address and
routing registries be allowed to drift apart in
how they deliver their “whois” service?
8
Mar-2002
Needs of Network Operators
• The most consistent “end-users” of all 3 registry types in
terms of frequency and depth of need.
• If their needs aren’t met, then the Internet doesn’t run.
If their needs aren’t met, the needs of the other endusers won’t matter.
– Disagreement?
• Requirements of the whois service:
–
–
–
–
9
Machine consumable?
Easy to find tools to work with these services?
Easier referencing of objects from one service to another?
“One-stop-shopping” - a centralized view of a decentralized
system?
Mar-2002
Burdens on Network Operators
• What changes or new features to whois can be
done to help with requests from IPR holders
and law enforcement?
• Is there anything the whois services of the
registries can do to ease other burdens?
• How will privacy restrictions impact work?
• How should “handles” be handled?
10
Mar-2002
Implementation
• What types of client tools are needed by
network operators?
• Is there a desire for a set of client tools that
are open source reference implementations?
• What is the comfort level in the community
with taking open source tools and adapting them
to meet specific needs?
11
Mar-2002
Conclusion
• Your comments, opinions, and ideas are welcome.
– http://uwho.verisignlabs.com/
• Further reading:
– Requirements:
–
draft-newton-ir-dir-requirements-00.txt
–
–
draft-newton-ldap-whois-00.txt
draft-hall-ldap-whois-00.txt
–
–
–
draft-newton-xdap-01.txt
draft-newton-xdap-domdir-01.txt
draft-newton-xdap-ipdir-01.txt
–
–
draft-campbell-whois-00.txt
draft-brunner-rfc954-historic-00.txt
– LDAP proposals:
– XML proposal:
– The State of Whois:
• Tentative Action
– Cross-Registry Information Service Protocol (CRISP) BoF proposed
for IETF 53
12
Mar-2002