Special exception for global critical infrastructure providers - global-crit-infra-exception

General information

English
20/09/2023
Did not reach consensus
0 %.

Robert Story - Version [1]
In discussion
20/09/2023 - 15/11/2023
First consensus
15/11/2023 - 29/11/2023
Did not reach consensus
29/11/2023

Public comments by LACNIC staff for this version

LACNIC Staff's Interpretation of the Proposal

Authors: Robert Story

Applicability:
This proposal introduces changes to the Policy Manual.

Modifications to the current text:
The proposal modifies section 1.2. Principles for Proper Administration and Stewardship

Proposed Text:

1.2. Principles for Proper Administration and Stewardship
[...]
The numbering resources under the stewardship of LACNIC must be distributed among organizations legally incorporated within its service region and a majority of the resources must be used to operate networks and provide services in this region. External clients connected directly to main infrastructure located in the region are allowed. Exceptions may be granted to organizations outside the region which provide global critical internet infrastructure (e.g., DNS root servers).

LACNIC Staff Comments:
- Given that the term “Critical Infrastructure” is defined in section 2.3.3.2 of the Policy Manual, to avoid confusion, we believe that the same term should not be redefined.

Recommendations:
- Do not use the term “global critical infrastructure” and instead explicitly identify the exceptions, for example: “Exceptions may be granted to DNS root server operators.”
- If the intention is for these entities to receive IPv4 resources, then the specific mention should be included in section 2.3.3.2.

Impact of the policy on the registry and/or other systems:
This proposal would have no impact on the systems but would change registry analysts’ operations.


Summary

Critical infrastructure allocations to global critical infrastructure providers increases the diversity and resilience of the internet.

Rationale (Describe the problem you intend to solve)

Increase the diversity and resilience of the internet by allowing resource allocations to global critical infrastructure providers.

Current text

1.2. Principles for Proper Administration and Stewardship
[...]
The numbering resources under the stewardship of LACNIC must be distributed among organizations legally constituted within its service region [COBERTURA] and mainly serving networks and services operating in this region. External clients connected directly to main infrastructure located in the region are allowed.

New text
Analyze diff

Modify the second paragraph at the point "1.2. Principles for Proper Administration and Stewardship" adding the following:

1.2. Principles for Proper Administration and Stewardship
[...]
The numbering resources under the stewardship of LACNIC must be distributed among organizations legally constituted within its service region [COBERTURA] and mainly serving networks and services operating in this region. External clients connected directly to main infrastructure located in the region are allowed. *Exceptions may be granted to organizations outside the region which provide global critical internet infrastructure (eg. DNS Root Servers).*

Additional information

The security of the routing system is enhanced when routing resources are signed with RPKI ROAs. Each ROA is signed by the RIR providing the resources. To ensure the global IP address diversity of the DNS Root Server System, having LACNIC provide resources to one or more RSOs increases the resilience of the internet’s Domain Name System by reducing the effect of RPKI failures from other RIRs.

Timetable

-

References

-

Presented at:

LACNIC 40 (04/10/2023)

--> --> --> --> --> -->