Steve Crocker (author of #RFC 1) presents the Jake project. It's about access to registration data (protocols like #RDAP). This access raises a lot of issues (invalid data, privacy, spam, etc).
The idea seems to attach metadata to requests, data and responses. For instance, requestors have to state their credentials ("gold" access to important orgs like police and IP lawyers) and the purpose.
With the metadata attached to both requestors (who, why, what) and data, #RDAP servers could apply a matrix of authorization. (US police may access personal data for US registrants, I presume.)
The picture seems quite complicated, I have doubt that such thing could ever be deployed.
There is even the possibility of labelling collected data with things like "verified".
I discover there was a proposal for a general "Undo" command in #EPP… https://datatracker.ietf.org/doc/html/draft-brown-epp-reverse
Ulrich Wisser on regitry lock (locking a domain against changes, by forcing a manual action, activate it if your domain is critical to your activity)
The idea is to allow automatic *locking* (obviously not - yet - unlocking) through #EPP. May be also locking with automatic unlocking after some time.
(Remember: there is no end-to-end security, registrant to registry)
Oh, and if you don't know how a domain name registry works, you can start with this simple article https://www.afnic.fr/en/observatory-and-resources/expert-papers/what-happens-when-you-register-a-domain-name/
First question is of course about the transition. Everyone dislikes jCard/vCard but it is already implemented. Should we do it again?
Carlos Ganan on #RDAP performance (measuring the response time). The actual measurement lasted one month, from ten vantage points , to every RDAP server known.
Average RTT 1 second, with some outliers taking MINUTES to respond.
The RIR were the fastest, the registrars the slowest.
Highly dependant on the vantage point: probably no anycast on the server?
Now, the demo. "An error occurred'" Reloading the page and it worked but then query timeouted.
Jaromir Talir about #RegeID, an identity solution.
Based on eIADS (european framework for mutual recognition of digital identities). France's #FranceConnect will join soon.
For domain name registry, it could mean mandatory checking of identity to get a domain name (like in Estonia and Denmark).
Mamot.fr est une serveur Mastodon francophone, géré par La Quadrature du Net.