Presentation is loading. Please wait.

Presentation is loading. Please wait.

TLS Channel for RIPE Whois

Published bySusanna Parks Modified over 6 years ago

Similar presentations

Presentation on theme: "TLS Channel for RIPE Whois"— Presentation transcript:

1 TLS Channel for RIPE Whois
A Proposal by Martin Millnert Presented by Shane Kerr at RIPE 62 in Amsterdam, May 2011

2 Proposal: TLS for Whois Data
TLS is Transport Layer Security (similar to SSL) A TLS channel would provide: Confidentiality of queries Data integrity of the transported data Source data integrity (with server certificate) No additional changes to the RIPE database.

3 Why not a RESTful API? Several RIR's have new database API's:
ARIN-RWS is a RESTful API RIPE NCC has the RIPE Database API TLS is simple TSL offers compatibility with the existing Whois protocol NOC's / ISPs scripts, for example

4 Details Port 43 (WHOIS) over TLS on port T.B.D.
Port 21 (FTP) over SSL on port 443

5 Example Implementation: Non-TLS
import socket import sys query = bytes(' '.join(sys.argv[1:]) + "\r\n", 'ascii') sock = socket.socket(socket.AF_INET6, socket.SOCK_STREAM) sock.connect(('whois.ripe.net', 43)) sock.send(query) answer = sock.recv(4096) while answer != b'': sys.stdout.write(answer.decode('ascii')) answer = sock.recv(4096)

6 Example Implementation: TLS
import socket import sys import ssl query = bytes(' '.join(sys.argv[1:]) + "\r\n", 'ascii') sock = ssl.wrap_socket(socket.socket(socket.AF_INET6, socket.SOCK_STREAM)) sock.connect(('whois.ripe.net', 43434)) sock.send(query) answer = sock.recv(4096) while answer != b'': sys.stdout.write(answer.decode('ascii')) answer = sock.recv(4096)

Download ppt "TLS Channel for RIPE Whois"

Similar presentations

21th APNIC Open Policy Meeting SIG: DB Friday, 3 March 2006 Perth, Australia Chair: Xing Li.

21th APNIC Open Policy Meeting SIG: DB Friday, 3 March 2006 Perth, Australia Chair: Xing Li.
ARIN Update NANOG 55 – 6 June 2012 Mark Kosters Chief Technology Officer, ARIN.

ARIN Update NANOG 55 – 6 June 2012 Mark Kosters Chief Technology Officer, ARIN.
December 2013 Internet Number Resource Report. December 2013 Internet Number Resource Report INTERNET NUMBER RESOURCE STATUS REPORT As of 31 December.

December 2013 Internet Number Resource Report. December 2013 Internet Number Resource Report INTERNET NUMBER RESOURCE STATUS REPORT As of 31 December.
March 2014 Internet Number Resource Report. March 2014 Internet Number Resource Report INTERNET NUMBER RESOURCE STATUS REPORT As of 31 March 2014 Prepared.

March 2014 Internet Number Resource Report. March 2014 Internet Number Resource Report INTERNET NUMBER RESOURCE STATUS REPORT As of 31 March 2014 Prepared.
Internet Security Protocols

Internet Security Protocols
INTEGRATING NETWORK CRYPTOGRAPHY INTO THE OPERATING SYSTEM BY ANTHONY GABRIELSON HAIM LEVKOWITZ Mohammed Alali | CS 69995 – Dr. RothsteinSummer 2013.

INTEGRATING NETWORK CRYPTOGRAPHY INTO THE OPERATING SYSTEM BY ANTHONY GABRIELSON HAIM LEVKOWITZ Mohammed Alali | CS – Dr. RothsteinSummer 2013.
Design Review Fall 2009. Team Overview Team formed Fall 2009. Derived from JDS Broader Scope Currently consists of one project.

Design Review Fall Team Overview Team formed Fall Derived from JDS Broader Scope Currently consists of one project.
TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 30 Internet Security.

TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 30 Internet Security.
Announcement Final exam: Wed, June 9, 9:30-11:18 Scope: materials after RSA (but you need to know RSA) Open books, open notes. Calculators allowed. 1.

Announcement Final exam: Wed, June 9, 9:30-11:18 Scope: materials after RSA (but you need to know RSA) Open books, open notes. Calculators allowed. 1.
OPeNDAP Hyrax Back-End Server (BES) Authentication and Authorization Patrick West

OPeNDAP Hyrax Back-End Server (BES) Authentication and Authorization Patrick West
Human-Computer Interface Course 5. ISPs and Internet connection.

Human-Computer Interface Course 5. ISPs and Internet connection.
Internet-Based Client Access

Internet-Based Client Access
Prepared by The Regional Internet Registries [APNIC, ARIN, LACNIC and RIPE NCC]

Prepared by The Regional Internet Registries [APNIC, ARIN, LACNIC and RIPE NCC]
Database Update Kaveh Ranjbar Database Department Manager, RIPE NCC.

Database Update Kaveh Ranjbar Database Department Manager, RIPE NCC.
1 APNIC Open Address Policy Meeting Special Interest Group Session March 2nd, Korea, Seoul.

1 APNIC Open Address Policy Meeting Special Interest Group Session March 2nd, Korea, Seoul.
REST & Relax: The future of Whois and Templates at ARIN Andy Newton, Chief Engineer.

REST & Relax: The future of Whois and Templates at ARIN Andy Newton, Chief Engineer.
Hands-On Microsoft Windows Server 20081 Implementing Microsoft Internet Information Services Microsoft Internet Information Services (IIS) –Software included.

Hands-On Microsoft Windows Server Implementing Microsoft Internet Information Services Microsoft Internet Information Services (IIS) –Software included.
4061 Session 25 (4/17). Today Briefly: Select and Poll Layered Protocols and the Internets Intro to Network Programming.

4061 Session 25 (4/17). Today Briefly: Select and Poll Layered Protocols and the Internets Intro to Network Programming.
Pertemuan #10 Secure HTTP (HTTPS) Kuliah Pengaman Jaringan.

Pertemuan #10 Secure HTTP (HTTPS) Kuliah Pengaman Jaringan.
WEB SERVER SOFTWARE FEATURE SETS

WEB SERVER SOFTWARE FEATURE SETS

Similar presentations

Ads by Google