I am sorry to inform you that the regulatory requirements around authenticating to use the IETF Network at IETF 125 Shenzhen have again changed and again become more restrictive. The IETF Network itself remains an open, unfiltered network that allows VPNs and other security technologies to be used, with these changes only affecting authentication to the network.
The changes are: 1. Previously we have stated that the only information to be shared is the mapping between RADIUS account names and registrant names. Now, we are required to share RADIUS accounting logs including account name, IP address, last 24 bits of the MAC address, RADIUS accounting message types (start session, stop session, interim-update) and timestamp. This data will be provided after the meeting. 2. Previously we have stated that a registrant can have as many sets of RADIUS credentials as they wish. Now, there is a limit of two sets of credentials per registrant. Replacements are allowed if one set is lost, but only if the lost set is deactivated. We are also required to investigate whenever a single set of credentials is used on more than five MAC addresses to check that the credentials have not been lost, shared or compromised. Please note that Chinese participants are expected to follow local laws that require real identity registration before using the network, but this does not apply to non-Chinese participants. The IETF Administration LLC apologises for these unanticipated late changes and reiterates that any onsite registration can be converted to a remote registration with no handling fee. We welcome the work recently proposed to clarify community expectations around anonymity and privacy on the IETF Network. -- Jay Daley IETF Executive Director [email protected] _______________________________________________ IETF-Announce mailing list -- [email protected] To unsubscribe send an email to [email protected]
