John,
Betreff: Re: [gtld-tech] gtld-tech URS technical requeriments
ICANN should not be mandating that any of this be done in an automated fashion, nor should it mandate things like "all e-mails sent by Registry Operator to the URD Provider MUST be cryptographically signed using a S/MIME certificate....."
What are you going to do when sleazy domainers start phishing you with fake messages from URS providers saying to turn their domains back on?
While I agree that it's silly to try and define all of the low level details, I don't think it's silly to give some thought to security issues like how the URS providers and registries recognize each other.
almost a serious question. What about a PKI/Web-Of-Trust, managed by the URS provider instead of S/MIME? But at least I think it is too complex to manage and may delay the URS implementation/process. Matthias Pfeifer - dotVersicherung