Hi, I've focused my comments specifically on the section entitled "The Alternative Narrative, a Call To Action for Leaders”.
While I understand the desire to encourage DNSSEC and RPKI deployment at the leadership level, however if you’’re targeting policy makers and C-levels, I would strongly encourage a balanced, honest approach, one that highlights both the benefits as well as risks. From experience, I believe focusing only on (alleged) benefits and stretching applicability (almost beyond recognition) can be quite counter-productive when the inevitable failures (e.g., https://ianix.com/pub/dnssec-outages.html, https://packetvis.com/blog/rpki-trust-anchor-malfunctions/) occur. FWIW. Regards, -drc Partner/CTO, Layer 9 Technologies (layer9.tech <http://layer9.tech/>) > On Mar 11, 2024, at 2:58 AM, Wout de Natris <denatriscons...@hotmail.nl> > wrote: > > Dear colleagues, > > IGF DC IS3C invites you to participate in the consultation on positively > enhancing the deployment of two Internet standards: DNSSEC and RPKI. You are > invited to answer either of these questions: Do the arguments used to favor a > positive decision, convince you to order deployment within your organisation > or from your service provider? / Do they assist you to convince decision > takers in your organisation to invest in security by design? You are invited > to share your views and arguments with IS3C’s expert team and have been > granted commenting rights in this document to do so. The consultation runs > from 11 March to 12PM UTC, Friday 5 April 2024. Your contribution will be > taken into consideration when finalising the text before publication this > spring. Here is the link to the Google Doc: > > https://docs.google.com/document/d/1YYq3ie9D03L1Z5ssgPbWKV5becUgNw0h7_fmm9xGWKs/edit?usp=sharing > > <https://docs.google.com/document/d/1YYq3ie9D03L1Z5ssgPbWKV5becUgNw0h7_fmm9xGWKs/edit?usp=sharing> > > IS3C WG 8 work document > <https://docs.google.com/document/d/1YYq3ie9D03L1Z5ssgPbWKV5becUgNw0h7_fmm9xGWKs/edit?usp=sharing> > docs.google.com <http://docs.google.com/> > We hope to receive your views so we can present the most convincing arguments > to deploy DNSSEC, RPKI and all other security-related Internet standards and > ICT best practices. (FYI, this project is sponsored by ICANN and RIPE NCC.) > > Kind regards, > > Wout de Natris > > IS3C: Making the Internet more secure and safer
signature.asc
Description: OpenPGP digital signature
-- To unsubscribe from this mailing list, get a password reminder, or change your subscription options, please visit: https://lists.ripe.net/mailman/listinfo/anti-abuse-wg
