Special exception for global critical infrastructure providers - root-server-operator-exception

General information

English
20/03/2024
Last call for comments
43 %. The next step will depend on moderator's decision.

Robert Story - Version [1, 2]
In discussion
03/04/2024 - 29/05/2024
First consensus
29/05/2024 - 12/06/2024
Last call for comments
12/06/2024 - 10/07/2024
Second consensus
10/07/2024 - 17/07/2024

Public comments by LACNIC staff for this version

Interpretación de la propuesta por el staff de LACNIC

Autor:
Robert Story

Aplicación de la propuesta:
Esta propuesta establece cambios en el manual de políticas.

Modificación del texto actual:
La propuesta hace una modificación al punto 1.2. Principios para una buena administración/custodia.

Comentarios del Staff:
Si esta propuesta llega a consenso asumimos que está resuelto el tema de cobertura y el Staff de LACNIC podrá interpretar dentro de la definición de "entre otros" en la sección “2.3.3.2. Microasignaciones a infraestructura crítica”, que en estos casos se puedan asignar recursos del pool de infraestructura crítica.

Recomendaciones del Staff:
No tenemos recomendaciones en esta versión de la propuesta.

Impacto en el sistema de registro y/u otros sistemas:
No tiene impacto en los sistemas pero sí cambiaría la operatividad de los analistas de registro.


Summary

Critical infrastructure allocations to global critical infrastructure providers increases the diversity and resilience of the internet.

Rationale (Describe the problem you intend to solve)

Increase the diversity and resilience of the internet by allowing resource allocations to global critical infrastructure providers.

Current text

1.2. Principles for Proper Administration and Stewardship
[...]
The numbering resources under the stewardship of LACNIC must be distributed among organizations legally constituted within its service region [COBERTURA] and mainly serving networks and services operating in this region. External clients connected directly to main infrastructure located in the region are allowed.

New text
Analyze diff

Modify the second paragraph at the point "1.2. Principles for Proper Administration and Stewardship" adding the following:

1.2. Principles for Proper Administration and Stewardship
[...]
The numbering resources under the stewardship of LACNIC must be distributed among organizations legally constituted within its service region [COBERTURA] and mainly serving networks and services operating in this region. External clients connected directly to main infrastructure located in the region are allowed. *Exceptions may be granted to organizations outside the region which provide global critical internet infrastructure (eg. DNS Root Servers).*

Additional information

The security of the routing system is enhanced when routing resources are signed with RPKI ROAs. Each ROA is signed by the RIR providing the resources. To ensure the global IP address diversity of the DNS Root Server System, having LACNIC provide resources to one or more RSOs increases the resilience of the internet’s Domain Name System by reducing the effect of RPKI failures from other RIRs.

Timetable

-

References

-

Presented at:

LACNIC 40 (04/10/2023)


Summary

Critical infrastructure allocations to root server operators for DNS root service increases the diversity and resilience of the internet.

Rationale (Describe the problem you intend to solve)

Increase the diversity and resilience of the internet by allowing resource allocations to DNS root server operators (RSOs).

Current text

1.2. Principles for Proper Administration and Stewardship
[...]
The numbering resources under the stewardship of LACNIC must be distributed among organizations legally constituted within its service region [COBERTURA] and mainly serving networks and services operating in this region. External clients connected directly to main infrastructure located in the region are allowed.

New text
Analyze diff

Modify the second paragraph at the point "1.2. Principles for Proper Administration and Stewardship" adding the following:

1.2. Principles for Proper Administration and Stewardship
[...]
The numbering resources under the stewardship of LACNIC must be distributed among organizations legally constituted within its service region [COBERTURA] and mainly serving networks and services operating in this region. External clients connected directly to main infrastructure located in the region are allowed. Exceptions may be granted to DNS root server operators (RSOs) from outside the service region for the purpose of operating global anycast DNS root service.

Additional information

The security of the routing system is enhanced when routing resources are signed with RPKI ROAs. Each ROA is signed by the RIR providing the resources. To ensure the global IP address diversity of the DNS Root Server System, having LACNIC provide resources to one or more RSOs increases the resilience of the internet’s Domain Name System by reducing the effect of RPKI failures from other RIRs.

Note: The terms "root service operator" and "root service" are defined in RSSAC026v2.

Timetable

-

References

-

Presented at:

LACNIC 41 (08/05/2024)

--> --> --> --> --> -->