<div dir="ltr">Owen,<div><br></div><div>You're right and I 100% agree with your sentiment. Being totally open isn't always realistic and can be counterproductive.</div><div><br></div><div>With that said, operators should be educated that their competitors know alot about them from closed-source sources (Dyn Corp as mentioned previously). If their big fear is public disclosure, they should first confirm what's available privately. Sometimes, making data public undermines the private sources and can be good corporate policy (i.e. good for valuation, good for self-discovery in large organizations that are balkanized, good for recruiting).</div><div><br></div><div>Also, we should keep in mind that other RIRs are doing research - they're just not using information that's under NDA. RIPE has a ton of probes in Africa sucking up data. Here's mine for instance:</div><div><br></div><div><a href="https://atlas.ripe.net/probes/16410/#!tab-network">https://atlas.ripe.net/probes/16410/#!tab-network</a></div><div><br></div><div>Cheers,</div><div>Adam</div></div><div class="gmail_extra"><br clear="all"><div><div class="gmail_signature"><div dir="ltr"><div><div style="font-family:arial;font-size:small">--</div><div style="font-family:arial;font-size:small">Kili - Cloud for Africa: <a href="http://kili.io/" style="color:rgb(17,85,204)" target="_blank">kili.io</a><br></div><div style="font-family:arial;font-size:small">Musings:<a href="https://twitter.com/varud" style="color:rgb(17,85,204)" target="_blank"> twitter.com/varud</a></div><div style="font-family:arial;font-size:small">More Musings: <a href="http://varud.com" target="_blank">varud.com</a></div><div style="font-family:arial;font-size:small">About Adam: <a href="https://www.linkedin.com/in/adamcnelson" style="color:rgb(17,85,204)" target="_blank">www.linkedin.com/in/adamcnelson</a></div></div></div></div></div>
<br><div class="gmail_quote">On Thu, Nov 6, 2014 at 8:54 PM, Owen DeLong <span dir="ltr"><<a href="mailto:owen@delong.com" target="_blank">owen@delong.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div style="word-wrap:break-word">It feels weird to be on the side of this debate that I am about to represent, however…<div><br></div><div>I think this discussion has strayed far from the mission of this mailing list. I think we should ask ourselves the following questions before continuing this thread along its current lines:</div><div><br></div><div>1.<span style="white-space:pre-wrap"> </span>What data should the RIR be able to collect in order to do its job?</div><div>2.<span style="white-space:pre-wrap"> </span>Is collecting that data more likely to encourage policy compliance or more likely to encourage fraud?</div><div>3.<span style="white-space:pre-wrap"> </span>Of the data we (as an RIR) collect, how much of it should the RIR be required to disclose to the public?</div><div><span style="white-space:pre-wrap"> </span>Greater transparency is generally good on the surface, but the more of the data you ask for that people don’t want disclosed,</div><div><span style="white-space:pre-wrap"> </span>the greater your risks in question 2. This goes up even more if you don’t build confidence that the data will be kept confidential.</div><div><br></div><div>I think we should choose which data is collected strictly in terms of data that enables the RIR to issue resources in compliance with policy with a reasonable ability to detect fraud. We should only disclose that information which is vital to other operators and users of the internet for contact purposes to address problems (abuse, failures, etc.). We should not require disclosure of confidential information that must be collected in order for the RIR to be able to reasonably audit or analyze requests for policy compliance as this will reduce the probability of getting accurate data and/or voluntary compliance with policies.</div><div><br></div><div>I generally favor sunshine as the best disinfectant and greater transparency, especially in organizations of public trust. However, it seems to me that in this case, forced disclosure is more likely to increase fraud than prevent it.</div><div><br></div><div>If we want to fund wider research on a voluntary basis, I’m all for that, but in terms of required information for the RIR to process requests and mandatory disclosures, I think we must be very careful not to do harm to the core mission.</div><div><br></div><div>Further, unless it is the basis for number resource policy development, I think this list may not be the correct forum for developing said research.</div><div><br></div><div>These are just my opinions and you are certainly welcome to tell me that I am wrong. I have no standing to tell anyone what they should be doing and that is not my intent here. I merely ask that you consider these issues in the context of allowing the RIR to fulfill its core mission of managing address space.</div><span class="HOEnZb"><font color="#888888"><div><br></div><div>Owen</div></font></span><div><div class="h5"><div><br></div><div><div><blockquote type="cite"><div>On Nov 6, 2014, at 4:04 AM, Adam Nelson <<a href="mailto:adam@varud.com" target="_blank">adam@varud.com</a>> wrote:</div><br><div><div dir="ltr">I've never been to Nigeria but SA is a highly developed country with nuclear power plants, dozens of world class airports, dual carriageways, etc...<div><br></div><div><a href="https://en.wikipedia.org/wiki/List_of_African_countries_by_Human_Development_Index" target="_blank">https://en.wikipedia.org/wiki/List_of_African_countries_by_Human_Development_Index</a><br></div><div><br></div><div>I would say, presuming those numbers are even correct, that it's simply Internet maturity reflecting human development generally. Maybe the better comparison would be Kenya and Nigeria or Angola and Nigeria. </div></div><div class="gmail_extra"><br clear="all"><div><div><div dir="ltr"><div><div style="font-family:arial;font-size:small">--</div><div style="font-family:arial;font-size:small">Kili - Cloud for Africa: <a href="http://kili.io/" style="color:rgb(17,85,204)" target="_blank">kili.io</a><br></div><div style="font-family:arial;font-size:small">Musings:<a href="https://twitter.com/varud" style="color:rgb(17,85,204)" target="_blank"> twitter.com/varud</a></div><div style="font-family:arial;font-size:small">More Musings: <a href="http://varud.com/" target="_blank">varud.com</a></div><div style="font-family:arial;font-size:small">About Adam: <a href="https://www.linkedin.com/in/adamcnelson" style="color:rgb(17,85,204)" target="_blank">www.linkedin.com/in/adamcnelson</a></div></div></div></div></div>
<br><div class="gmail_quote">On Thu, Nov 6, 2014 at 2:27 PM, Walubengo J <span dir="ltr"><<a href="mailto:jwalu@yahoo.com" target="_blank">jwalu@yahoo.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">@Adam,<br>
<br>
And perhaps Dyncorp (or similar research institution) would be able to tell us why Nigeria (largest economy in Africa) is enjoying, without complaining only 3% total share of the IPv4 resources in Africa while SA, the second largest economy is doing 38%.<br>
<br>
Perhaps they are doing too much NATting or worse still "re-using" IP nos? Maybe Sunday would know the reasons :-).<br>
<br>
walu.<br>
<br>
--------------------------------------------<br>
On Thu, 11/6/14, Adam Nelson <<a href="mailto:adam@varud.com" target="_blank">adam@varud.com</a>> wrote:<br>
<br>
Subject: [rpd] Re: [afnog] IPv4 Allocations by Length Statistics for 2014<br>
To: "Mark Tinka" <<a href="mailto:mark.tinka@seacom.mu" target="_blank">mark.tinka@seacom.mu</a>><br>
Cc: "rpd List" <<a href="mailto:rpd@afrinic.net" target="_blank">rpd@afrinic.net</a>>, "afnog" <<a href="mailto:afnog@afnog.org" target="_blank">afnog@afnog.org</a>><br>
Date: Thursday, November 6, 2014, 11:39 AM<br>
<span><br>
Even if<br>
operators were inclined to give the data, I doubt you'd<br>
get much participation since it's all hassle and no<br>
gain.<br>
The only way to get<br>
the data is good old fashioned research - which Afrinic is<br>
probably not in a position to do internally (for various<br>
reasons including the NDA). I bet Dyncorp (the link I sent<br>
before) has quite a bit of the information you're<br>
looking for - but it won't be cheap.<br>
-Adam<br>
</span> --Kili - Cloud for<br>
Africa: <a href="http://kili.io/" target="_blank">kili.io</a><br>
Musings: <a href="http://twitter.com/varudMore" target="_blank">twitter.com/varudMore</a> Musings: varud.comAbout Adam: <a href="http://www.linkedin.com/in/adamcnelson" target="_blank">www.linkedin.com/in/adamcnelson</a><br>
<span><br>
On Thu, Nov 6, 2014 at<br>
11:34 AM, Mark Tinka <<a href="mailto:mark.tinka@seacom.mu" target="_blank">mark.tinka@seacom.mu</a>><br>
wrote:<br>
On<br>
Thursday, November 06, 2014 10:07:09 AM Kofi ANSA AKUFO<br>
<br>
wrote:<br>
<br>
<br>
<br>
> Could we get more information from the data as to<br>
what<br>
<br>
> technology and applications are consuming the<br>
resources?<br>
<br>
<br>
<br>
I'm not sure operators would be willing to openly<br>
share that<br>
<br>
data, Kofi.<br>
<br>
<br>
<br>
In fact, any such discussions between operators and<br>
AFRINIC<br>
<br>
are under NDA.<br>
<br>
<br>
<br>
Mark.<br>
<br>
<br>
<br>
</span> -----Inline Attachment Follows-----<br>
<br>
_______________________________________________<br>
rpd mailing list<br>
<a href="mailto:rpd@afrinic.net" target="_blank">rpd@afrinic.net</a><br>
<a href="https://lists.afrinic.net/mailman/listinfo.cgi/rpd" target="_blank">https://lists.afrinic.net/mailman/listinfo.cgi/rpd</a><br>
<br>
</blockquote></div><br></div>
_______________________________________________<br>rpd mailing list<br><a href="mailto:rpd@afrinic.net" target="_blank">rpd@afrinic.net</a><br><a href="https://lists.afrinic.net/mailman/listinfo.cgi/rpd" target="_blank">https://lists.afrinic.net/mailman/listinfo.cgi/rpd</a><br></div></blockquote></div><br></div></div></div></div></blockquote></div><br></div>