Cryptographic Authentication at ARIN

ARIN has implemented cryptographic signing of template transactions to enable more secure communication between ARIN and its customers. ARIN offers PGP (Pretty Good Privacy) and X.509 certificates for cryptographic authentication.

Digital signing permits the sender to add a secure cryptographic signature that ARIN uses to more positively identify and confirm the sender's identity, improving the authenticity of the template transaction. In addition, the digital signature is used to establish that the content of the e-mail has not been altered in transit.

ARIN's original authentication method uses the source e-mail address to verify that a template has been sent from an authorized POC. This method (Mail-From) remains the default authentication method at ARIN. However, it is trivial to forge a sender address, and ARIN encourages its customers to use PGP or X.509 to improve transaction security. Mail-From is not recommended to anyone who has the means to implement either of these more secure cryptograpic authentication methods.

Once you're identified by ARIN as using PGP or X.509 certificates, you may no longer submit unsigned template e-mails to ARIN. This is for your protection so that a third party cannot spoof your e-mail address.

Relevant Navigation

Cryptographic Authentication Home

PGP

• Using PGP with ARIN

---

x.509

• What is x.509
• Request a Certificate
• x.509 FAQ
• Certification Practices Statement

---

• Registration Services Home

---

Search ARIN.net
Advanced Search
Search Tips

© 1997 - 2008
American Registry for Internet Numbers,
All Rights Reserved.