two questions: o of the /24s in the arin region, what percentage are owned by arin members? o of the address holders in the arin region, what percentage are arin members? i understand that the latter will be slightly jittered because of the database mess with multiple org ids for one entity. but i suspect you can get close enough for government work. randy
On Mar 23, 2014, at 6:53 PM, Randy Bush <randy@psg.com> wrote:
two questions:
o of the /24s in the arin region, what percentage are owned by arin members?
Randy - Happy to generate these - two questions for clarity. 1) Should we expand /16's and /8's into the corresponding number of /24's ? (or do you only want those blocks issued originally as /24's to be counted) 2) In terms of categories, we could go strictly with /24's held by ARIN members versus /24's held by non-members (and resulting percentages); note that would be predominantly ISPs since end-users assignments from ARIN are unlikely to be members unless they specifically opted to join. Alternatively, we could provide counts /24's under RSA, /24's under LRSA, and /24's legacy-no-agreement as the three categories of counts desired (and each percentage of the total) So, based on above, would you prefer the /24 space statistics as asked (member/non-member) or rsa/lrsa/legacy-no-agreement?
o of the address holders in the arin region, what percentage are arin members?
Will do. Thanks! /John John Curran President and CEO ARIN
Exactly right John. I think the term "owned" is a problem here. It seems to me that the terms would correctly be "holder" or who the address space was issued to or "user" being the end user using that space. Wouldn't all of the holders be ARIN members unless grandfathered in? Steven Naslund Chicago IL -----Original Message----- From: John Curran [mailto:jcurran@arin.net] Sent: Sunday, March 23, 2014 10:36 PM To: Randy Bush Cc: North American Network Operators' Group Subject: Re: arin representation On Mar 23, 2014, at 6:53 PM, Randy Bush <randy@psg.com> wrote:
two questions:
o of the /24s in the arin region, what percentage are owned by arin members?
Randy - Happy to generate these - two questions for clarity. 1) Should we expand /16's and /8's into the corresponding number of /24's ? (or do you only want those blocks issued originally as /24's to be counted) 2) In terms of categories, we could go strictly with /24's held by ARIN members versus /24's held by non-members (and resulting percentages); note that would be predominantly ISPs since end-users assignments from ARIN are unlikely to be members unless they specifically opted to join. Alternatively, we could provide counts /24's under RSA, /24's under LRSA, and /24's legacy-no-agreement as the three categories of counts desired (and each percentage of the total) So, based on above, would you prefer the /24 space statistics as asked (member/non-member) or rsa/lrsa/legacy-no-agreement?
o of the address holders in the arin region, what percentage are arin members?
Will do. Thanks! /John John Curran President and CEO ARIN
Sorry Randy, I was not trying to criticize your terminology. I was just wondering about the question trying to be answered here. The holder of an address space and the end user of the address space are two really different things. The holder is often an ARIN member or grandfathered in and an end user (including most ISP customers) are not going to be ARIN members. I know that you and most of the other on here know that they are not "owners" of the space. I was just trying to figure out if your term "owner" refers to the holder of the space or the user of the space. Not trying to make a political statement. I apologize if I gave you the impression that I disapproved of your question. Steve -----Original Message----- From: Randy Bush [mailto:randy@psg.com] Sent: Sunday, March 23, 2014 10:52 PM To: Naslund, Steve Cc: John Curran; North American Network Operators' Group Subject: Re: arin representation
I think the term "owned" is a problem here.
sorry not to get your religious icons correctly. full refund below. jeezus! get a life. randy
sorry steve. was not chasing down the tree. not clear what a useful measurement would be. randy
No problem. One of the risks in text communication. I guess the usefulness of the measurement would be in what the original question is? If we knew more about what the membership / non-membership question was about it would be easier. I guess if we were really trying to figure out how much address space is within ARIN member "control", just the holder would be enough to know. For example, you could say the X% of space is being used by ARIN members and X% is in use by legacy users. Since the holder could change or revoke access to the space by an end user I guess we could say they control it. For other questions it might be more important to know who is "using" an address space. Like how much space is issued to end users directly by ARIN vs provided to them by service providers. The two types would have very different rules regarding reallocation and such. Steve -----Original Message----- From: Randy Bush [mailto:randy@psg.com] Sent: Sunday, March 23, 2014 11:10 PM To: Naslund, Steve Cc: North American Network Operators' Group Subject: Re: arin representation sorry steve. was not chasing down the tree. not clear what a useful measurement would be. randy
Steve - Thanks for the reminder; terminology aside, I think we have a good understanding of Randy's request for statistics. We'll put these together asap. /John
On Mar 24, 2014, at 11:58 AM, "Naslund, Steve" <SNaslund@medline.com> wrote:
Sorry Randy,
I was not trying to criticize your terminology. I was just wondering about the question trying to be answered here. The holder of an address space and the end user of the address space are two really different things. The holder is often an ARIN member or grandfathered in and an end user (including most ISP customers) are not going to be ARIN members. I know that you and most of the other on here know that they are not "owners" of the space. I was just trying to figure out if your term "owner" refers to the holder of the space or the user of the space. Not trying to make a political statement.
I apologize if I gave you the impression that I disapproved of your question.
Steve
-----Original Message----- From: Randy Bush [mailto:randy@psg.com] Sent: Sunday, March 23, 2014 10:52 PM To: Naslund, Steve Cc: John Curran; North American Network Operators' Group Subject: Re: arin representation
I think the term "owned" is a problem here.
sorry not to get your religious icons correctly. full refund below.
jeezus! get a life.
randy
He is definitely in the authoritative hands :) Steve -----Original Message----- From: John Curran [mailto:jcurran@arin.net] Sent: Sunday, March 23, 2014 11:16 PM To: Naslund, Steve Cc: Randy Bush; North American Network Operators' Group Subject: Re: arin representation Steve - Thanks for the reminder; terminology aside, I think we have a good understanding of Randy's request for statistics. We'll put these together asap. /John
On Mar 24, 2014, at 11:58 AM, "Naslund, Steve" <SNaslund@medline.com> wrote:
Sorry Randy,
I was not trying to criticize your terminology. I was just wondering about the question trying to be answered here. The holder of an address space and the end user of the address space are two really different things. The holder is often an ARIN member or grandfathered in and an end user (including most ISP customers) are not going to be ARIN members. I know that you and most of the other on here know that they are not "owners" of the space. I was just trying to figure out if your term "owner" refers to the holder of the space or the user of the space. Not trying to make a political statement.
I apologize if I gave you the impression that I disapproved of your question.
Steve
-----Original Message----- From: Randy Bush [mailto:randy@psg.com] Sent: Sunday, March 23, 2014 10:52 PM To: Naslund, Steve Cc: John Curran; North American Network Operators' Group Subject: Re: arin representation
I think the term "owned" is a problem here.
sorry not to get your religious icons correctly. full refund below.
jeezus! get a life.
randy
On Mar 24, 2014, at 12:20 PM, "Naslund, Steve" <SNaslund@medline.com> wrote:
Exactly right John. I think the term "owned" is a problem here.
It seems to me that the terms would correctly be "holder" or who the address space was issued to or "user" being the end user using that space.
We use address holder to recognize the party with the rights to the address block.
Wouldn't all of the holders be ARIN members unless grandfathered in?
If you are an ISP who has an ARIN-issued allocation, you are a member. If you have an end-user assignment or legacy block, you can be a member, but it is not automatic. FYI, /John John Curran President and CEO ARIN
Unless I misremember, everyone who receives a direct allocation from ARIN and signs an RSA is automatically a member. It's not clear to me what "owner of a /24 network" means in that context. (I don't recall if signing an LRSA in and of itself also makes one a member, since by the time we had signed an LRSA, we had long since received our direct IPv6 allocation under an RSA.) But perhaps Randy is looking for the number of /24 equivalents allocated to legacy resource holders who haven't also received an IPv6 direct allocation or other IPv4 direct allocation under an RSA? Scott On Sun, Mar 23, 2014 at 10:46 PM, Naslund, Steve <SNaslund@medline.com>wrote:
Exactly right John. I think the term "owned" is a problem here.
It seems to me that the terms would correctly be "holder" or who the address space was issued to or "user" being the end user using that space.
Wouldn't all of the holders be ARIN members unless grandfathered in?
Steven Naslund Chicago IL
-----Original Message----- From: John Curran [mailto:jcurran@arin.net] Sent: Sunday, March 23, 2014 10:36 PM To: Randy Bush Cc: North American Network Operators' Group Subject: Re: arin representation
On Mar 23, 2014, at 6:53 PM, Randy Bush <randy@psg.com> wrote:
two questions:
o of the /24s in the arin region, what percentage are owned by arin members?
Randy -
Happy to generate these - two questions for clarity.
1) Should we expand /16's and /8's into the corresponding number of /24's ? (or do you only want those blocks issued originally as /24's to be counted)
2) In terms of categories, we could go strictly with /24's held by ARIN members versus /24's held by non-members (and resulting percentages); note that would be predominantly ISPs since end-users assignments from ARIN are unlikely to be members unless they specifically opted to join. Alternatively, we could provide counts /24's under RSA, /24's under LRSA, and /24's legacy-no-agreement as the three categories of counts desired (and each percentage of the total)
So, based on above, would you prefer the /24 space statistics as asked (member/non-member) or rsa/lrsa/legacy-no-agreement?
o of the address holders in the arin region, what percentage are arin members?
Will do.
Thanks! /John
John Curran President and CEO ARIN
But perhaps Randy is looking for the number of /24 equivalents allocated to legacy resource holders who haven't also received an IPv6 direct allocation or other IPv4 direct allocation under an RSA?
what percentage of address space is held by members and what percentage by non-members (lrsa-only is part of the latter)? what percentage of holding organizations are members and what percentage not members (lrsa-only being part of the latter)? i thought this was simple. randy
On Mar 24, 2014, at 12:59 PM, Randy Bush <randy@psg.com> wrote:
But perhaps Randy is looking for the number of /24 equivalents allocated to legacy resource holders who haven't also received an IPv6 direct allocation or other IPv4 direct allocation under an RSA?
what percentage of address space is held by members and what percentage by non-members (lrsa-only is part of the latter)?
what percentage of holding organizations are members and what percentage not members (lrsa-only being part of the latter)?
i thought this was simple.
Randy - It is... we'll put these together. Folks who wish to discuss ARIN address holders and members, please find an ARIN mailing list (such as ppml) Thanks! /John John Curran President and CEO ARIN
Randy - Total number of /24s of space directly registered in ARIN's database = 6,644,175 (101.38 /8 equivalents) Of those: 2,808,621 /24s of space (42.3%) are registered to ARIN members (42.86 /8 equivalents) Total number of Org IDs with directly registered IPv4 addresses = 26,148 Of those: 4,520 (17%) are ARIN members FYI, /John John Curran President and CEO ARIN
john: i appreciate the numbers. thanks! and, btw, it has always been a pleasure to work with arin staff.
Total number of /24s of space directly registered in ARIN's database = 6,644,175 (101.38 /8 equivalents)
Of those: 2,808,621 /24s of space (42.3%) are registered to ARIN members (42.86 /8 equivalents)
Total number of Org IDs with directly registered IPv4 addresses = 26,148
Of those: 4,520 (17%) are ARIN members
the arin membership consists of 17% of the address holding organizations in the region (plus a few folk who buy membership), and they hold 42% of the address space. so the 17% (give or take) elect the board [0], and the board, through a complex inside-controlled process [1], sets policy for the other unrepresented 83%. and the board and policy wonks set policy and contracts, among other things the lrsa and rsa, which place serious barriers to becoming a member, such as clauses with arin being able to unilaterally change ts&cs arbitrarily. [2] [3] and i know the "anyone can partiipate" theory. but in fact extremely few participate, and arin pays many of the policy wonks to fly around the world business class and spread the arin regulatory religion. no other rir does this. and this is a representative bottom up organization claiming legitimacy in the global arena? i would be interested in similar numbers for other rirs, and whether their service agreements are similarly onerous. (and i believe that ripe is actively tearing down barriers to participation). randy -- [0] as you know, there has been at least one occasion where the board election has been rigged. at your encouragement, i once submitted the whole nomination rig-a-marole to the nomcom. my name did not appear on the ballot, which i found out only when the ballot came out, and was never even viven a reason. [1] an outsider can not make a proposal that is not modifiably by an 'advisory' committee. and most are revised. [smell same problem as nomcom?] [2] who would sign such an agreement except under threat of not having the resources necessary to run their business? see http://en.wikipedia.org/wiki/Extortion [3] http://en.wikipedia.org/wiki/Barrier_to_entry
On Mar 25, 2014, at 9:25 AM, Randy Bush <randy@psg.com> wrote:
john:
i appreciate the numbers. thanks! and, btw, it has always been a pleasure to work with arin staff.
Thanks (we do work for you, member or not, if you hold resources in the region.)
... the arin membership consists of 17% of the address holding organizations in the region (plus a few folk who buy membership), and they hold 42% of the address space.
Correct.
so the 17% (give or take) elect the board [0], and the board, through a complex inside-controlled process [1], sets policy for the other unrepresented 83%.
To be perfectly clear, it is even lower in practice... 17% _could_ elect the ARIN Board and the ARIN Advisory Council (ARIN AC), but that would be presuming 100% participation. Actual election participation is actually fairly high for an association; we had approx 15% participation (~ 600 organizations) in 2013 elections - <https://www.arin.net/announcements/2013/20131023.html>
...and the board and policy wonks set policy and contracts, among other things the lrsa and rsa, which place serious barriers to becoming a member, such as clauses with arin being able to unilaterally change ts&cs arbitrarily. [2] [3]
You might want to tease those two statements apart - The ARIN Board provides organization oversight, and this includes fees, services, contracts and related terms and conditions. The ARIN AC administers the policy process, and this includes incorporating edits to draft policies based on the community discussion.
and i know the "anyone can partiipate" theory. but in fact extremely few participate, and arin pays many of the policy wonks to fly around the world business class and spread the arin regulatory religion. no other rir does this.
I do not know if the other RIRs send their equivalent community "policy working group" folks to other RIR meetings; we do - the purpose is not evangelism but to bring back information on ongoing policy developments in other regions.
and this is a representative bottom up organization claiming legitimacy in the global arena? i would be interested in similar numbers for other rirs, and whether their service agreements are similarly onerous. (and i believe that ripe is actively tearing down barriers to participation).
It is true that we have an abundance of resource holders who received resources prior to ARIN, and that is going to skew the numbers for this region significantly. I know that you don't believe that we've been tearing down barriers to participation, but one of the reasons that the legacy service agreement was updated (again) recently was specifically to be more explicit about rights for the address holder. We specifically lay these out now, note that revocation will not occur based on utilization, and provide a fee schedule that is favorable compared to those issued resources after ARIN's formation. There does remain one very significant difference between some in the community and ARIN - that is on the applicability of community-developed policy to legacy holders, and this is a fairly fundamental issue that has definitely reduced interest in folks signing an LRSA and participating as members. FYI - I'm going to comment on your footnotes, since you use terminology below which is factually incorrect.
[0] as you know, there has been at least one occasion where the board election has been rigged. at your encouragement, i once submitted the whole nomination rig-a-marole to the nomcom. my name did not appear on the ballot, which i found out only when the ballot came out, and was never even viven a reason.
ARIN has a nomination committee (like many other Internet organizations such as IETF, ISOC, ICANN) and its deliberations are private. I do not sit on it, so there is not much I can add, but I would definitely welcome suggestions for improvements to the nomination and election process. A NomCom (composed of a selection of Board, AC, and at large members) which deliberates privately does not equate to "rigged" by any means, although I will agree it does raise reasonable questions of transparency. Note that anyone can make it onto the ballot via petition, and that is a mechanism that has been used successfully in the past.
[1] an outsider can not make a proposal that is not modifiably by an 'advisory' committee. and most are revised. [smell same problem as nomcom?]
While the ARIN AC does hold the editors pen (and from what I am told does a good job of reflecting discussions), there has always been (and remains today) a simple petition process available at each stage if you think that they have somehow failed and want your original text to go to the ARIN Public policy meeting and the ARIN Board.
[2] who would sign such an agreement except under threat of not having the resources necessary to run their business? see http://en.wikipedia.org/wiki/Extortion
Membership organizations set terms and conditions for their services, and ARIN is no different. The answer is, of course, to participate in the election process; as you have already noted, if even a fraction of a percent of the community (30 to 50 folks) felt strongly there was a major issue, they could put candidates in each election which were assured of being elected, and could in short order significantly alter practices to better match their expectations. That would be a case of improved community representation, and therefore the most appropriate outcome. I appreciate your note, Randy - far better to express these concerns and get folks thinking about them than to have them go unstated... Thanks! /John John Curran President and CEO ARIN p.s. Discussion of improvements to ARIN election process would probably be best send over to ARIN-discuss or PPML (for sake of those here who lack interest) but I'll leave that to this list to decide. I would also recommend (for folks who have suggestions they'd like to send privately) to send them to me, and I'll get them to the ARIN Board.
Randy, I am not sure I understand the argument here. If you think that ARIN is not representing the address space holders in proper fashion, how would we suggest correcting that? If an address holder does not become a member (which is fairly easy to do if you care enough) how would we even know what their concerns or feelings are? It is like any electoral process, if you choose not to represent yourself it is hard to complain about the outcomes. ARIN does work under a contract so I would assume if there were serious concerns about their structure or conduct, there is some oversight being conducted. My earlier comments regarding legacy space holders and the number of address space holders goes to the heart of using those stats to make your assertion. First of all, the number of /24s is not proportional to the total number of members Whether I hold 50 or 1000 /24s, I am still one member. I would assumes that holders of large amounts of space (like service providers) are more likely to be members than the entity that holds one smaller allocation for their business purposes. Given that the US Gov't holds a vast amount of the legacy space skews the results a lot. They might or might not be a "member" but they certainly hold a lot of influence in ARINs operation as the one who controls the contract. If ARIN was to cross them the wrong way, they might not be holding that contract very long. The reality of the Internet is that much of the policy and standard making comes from a small very technical minority of its users like us. Most users of the Internet could care less about numbering policy and RFCs because they don't feel the impact of it, they just use and enjoy the technology. They just don't care about the wizards behind the curtain. Issues that look important inside our fishbowl do not mean much to the outside world. Just ask every person that uses an IP address where they came from an see how many know or care. If the general public was to feel much pain in the process they might ask more questions but it seems that in general they are sufficiently happy not to worry about the details. As a service provider I was more concerned with ARIN policy than I am now as a commercial entity holding a couple of blocks. When I was a provider I cared about allocation and process more because I had a continuous need for more space for growth. Back then ARIN was new and the process changes were very fluid and hard to keep up with. As a commercial entity with enough space for the future and no major expansion plans I am less concerned about ARIN policy short of them trying to pull back my space (which they seem to be doing everything possible to avoid). John may be too polite to say so but I think asking him for information publicly on NANOG (which he very promptly responded to) and then publicly slamming ARINs process does not seem very fair to me. ARIN has a process for having views like this to be heard and a process for taking the helm (or at least some of it) if you think enough people agree. If John cares enough to monitor and respond to the community here on NANOG, I find it hard to believe that they don't care about our concerns. Steven Naslund Chicago IL
I am not sure I understand the argument here. If you think that ARIN is not representing the address space holders in proper fashion, how would we suggest correcting that?
i have made off the cuff suggestions. but seriously, i would seek real external governance counsel.
If an address holder does not become a member (which is fairly easy to do if you care enough) how would we even know what their concerns or feelings are?
read my lips
the number of /24s is not proportional to the total number of members
which is why i asked both questions
Given that the US Gov't holds a vast amount of the legacy space skews the results a lot. They might or might not be a "member" but they certainly hold a lot of influence in ARINs operation as the one who controls the contract. If ARIN was to cross them the wrong way, they might not be holding that contract very long.
there is no such contract. arin is not the icann or iana. randy
On Mar 24, 2014, at 6:25 PM, Randy Bush <randy@psg.com> wrote:
john:
i appreciate the numbers. thanks! and, btw, it has always been a pleasure to work with arin staff.
Total number of /24s of space directly registered in ARIN's database = 6,644,175 (101.38 /8 equivalents)
Of those: 2,808,621 /24s of space (42.3%) are registered to ARIN members (42.86 /8 equivalents)
Total number of Org IDs with directly registered IPv4 addresses = 26,148
Of those: 4,520 (17%) are ARIN members
the arin membership consists of 17% of the address holding organizations in the region (plus a few folk who buy membership), and they hold 42% of the address space.
so the 17% (give or take) elect the board [0], and the board, through a complex inside-controlled process [1], sets policy for the other unrepresented 83%. and the board and policy wonks set policy and contracts, among other things the lrsa and rsa, which place serious barriers to becoming a member, such as clauses with arin being able to unilaterally change ts&cs arbitrarily. [2] [3]
Many facts not in evidence in that paragraph some of which are outright wrong. [0] As a member of the nominating committee in question, I will disagree with your claim that our declining to nominate you constitutes rigging the election. While I can’t disclose the details due to NDA restrictions on the NomCom, I will say that in my experience having served on the NomCom several times, they consider each potential nominee and do not take their duties lightly. [1] Anyone can make a proposal. If the outsider’s proposal is modified by the AC, and the proposer does not like the modifications, the proposer has an available petition process by which they can, if successful, get the original proposal directly to the community for consideration. IIRC, this petition process requires 10 or fewer people to support the proposer’s position in order to succeed. As to the LRSA/RSA, in fact, the policies cannot be changed unilaterally, they must be changed by a community driven consensus process except in the case of emergency policy action by the board. To the best of my knowledge, the board has only used that emergency authority twice. Any emergency action is subject to review by the AC within 1 month and by the community within 6 months.
and i know the "anyone can partiipate" theory. but in fact extremely few participate, and arin pays many of the policy wonks to fly around the world business class and spread the arin regulatory religion. no other rir does this.
Anyone with an email address who chooses to make the effort can easily participate. The barrier to participation is close to zero. If you have constructive suggestions on ways to increase participation, they are welcome. The other RIRs do, in fact, send representatives to all of the RIR meetings, so I’m not sure how you can make the above claim, unless your real concern is the fact issue of the business class travel. Owen
On 3/24/2014 9:03 PM, Owen DeLong wrote:
[0] As a member of the nominating committee in question, I will disagree with your claim that our declining to nominate you constitutes rigging the election. While I can’t disclose the details due to NDA restrictions on the NomCom, I will say that in my experience having served on the NomCom several times, they consider each potential nominee and do not take their duties lightly.
There is a simple way to solve this problem and indemnify the nomcom against all further such claims. Let anyone volunteer for a spot on the ballot. Let the membership decide who should be elected. Doug
ok, let me also try to be constructive. how the heck do we get ourselves out of a hole where we are ruled by self-perptuating monopolies which lack oversight and accountability. and it ain't just arin. look at the big [cc]tlds, the horror of icann, ... i believe the only real solution is to open the game as wide as possible. for arin, remove the onerous ts&cs and the rights issues from the lrsa so that we can all go out and get everyone to join and participate. change the governance. term limits for board members and AC are critical. i see little value in the AC except to create further blockage and diversion. require that 25% of the board have enable and get some social blood in there, e.g. a librarian, susan crawford (a real internet policy person, not a damned wannabe weenie), or whatever. and stop flying baby policy weenies around the world in business class to stand up in meetings and say they are from arin. if you want arin represented, send staff. if arin wants input from foonog or barnic, send staff. arin has some good staff. the policy wannabes not so much. create artifical competition by allowing rir venue shopping. these geographic monopolies were a mistake. randy, who really needs to go back to work
omg! a friend just sent this great example of how far down we have gone https://www.arin.net/about_us/committeecharters.html#governance there is a governance committee. guess the composition. "The Committee shall consist of three elected members from the Board of Trustees." how wonderfully corrupt. and this is the self same board which could not agree to limit their own terms, <https://www.arin.net/about_us/bot/bot2012_1025.html>. "The Board discussed term limits for its members and members of the ARIN AC. No consensus was reached." my youngest granddaughter's kindergarten has better governance. and they're not even embarrassed. sheesh! randy
Randy, Thanks for giving me a lead in! ARIN has been gradually evolving and tweaking the governance over the past fifteen years. Given it’s a small board it’s been generally done at the full Board historically. We’ve recently started to take a long look at a variety of issues to see if there is a better way to structure ourselves to deliver the mission and stay accountable to the community. We do have a small sub-set working given there is a lot of things to go through and I am leading the charge on that issue for the ARIN Board. Over the coming months we'll be more formally looking for community input on a variety of governance and accountability issues. In the interim we're happy to take any informal input directly. The specific point you mention in regards to term limits has been taken out of context in that the thought was that as part of a larger process we should likely go ask our various communities their thoughts on this and other issues which seems to be in line with what your asking. And no - not embarrassed… However the always colourful feedback is appreciated and will be taken into account. Cheers, -p On Mar 25, 2014, at 1:23 PM, Randy Bush <randy@psg.com> wrote:
omg! a friend just sent this great example of how far down we have gone
https://www.arin.net/about_us/committeecharters.html#governance
there is a governance committee. guess the composition. "The Committee shall consist of three elected members from the Board of Trustees." how wonderfully corrupt.
and this is the self same board which could not agree to limit their own terms, <
. "The Board discussed term limits for its members and members of the ARIN AC. No consensus was reached."
my youngest granddaughter's kindergarten has better governance.
and they're not even embarrassed. sheesh!
randy
Randy, Thanks for giving me a lead in! ARIN has been gradually evolving and tweaking the governance over the past fifteen years. Given it’s a small board it’s been generally done at the full Board historically. We’ve recently started to take a long look at a variety of issues to see if there is a better way to structure ourselves to deliver the mission and stay accountable to the community. We do have a small sub-set working given there is a lot of things to go through and I am leading the charge on that issue for the ARIN Board. Over the coming months we'll be more formally looking for community input on a variety of governance and accountability issues. In the interim we're happy to take any informal input directly. The specific point you mention in regards to term limits has been taken out of context in that the thought was that as part of a larger process we should likely go ask our various communities their thoughts on this and other issues which seems to be in line with what your asking. And no - not embarrassed… However the always colourful feedback is appreciated and will be taken into account. Cheers, -p — Paul Andersen EGATE Networks Inc. e: paul@egate.net On Mar 25, 2014, at 1:23 PM, Randy Bush <randy@psg.com> wrote:
omg! a friend just sent this great example of how far down we have gone
https://www.arin.net/about_us/committeecharters.html#governance
there is a governance committee. guess the composition. "The Committee shall consist of three elected members from the Board of Trustees." how wonderfully corrupt.
and this is the self same board which could not agree to limit their own terms, <https://www.arin.net/about_us/bot/bot2012_1025.html>. "The Board discussed term limits for its members and members of the ARIN AC. No consensus was reached."
my youngest granddaughter's kindergarten has better governance.
and they're not even embarrassed. sheesh!
paul,
ARIN has been gradually evolving and tweaking the governance over the past fifteen years.
and there has been microscopic change
Given it’s a small board it’s been generally done at the full Board historically.
i think there is some idiom about the fox guarding the hen house. it should be done by a group of grownups from the outside. a subcommittee of the current governance discussing change in governance would be a great joke if you did not seem to take it seriously.
We’ve recently started to take a long look at a variety of issues to see if there is a better way to structure ourselves to deliver the mission and stay accountable to the community.
s/stay/become/ 83% of the community is not even in the room! and that is only considering address holders as the community. we are actually responsible to a much larger society. when we were forming arin, then then chair of the fcc explained to me why the fcc had commissioners who were from the general consumer public. i tried to get a librarian and a 15 year old with a modem on the original icann board, but no one took me seriously.
We do have a small sub-set working given there is a lot of things to go through and I am leading the charge on that issue for the ARIN Board.
once upon a time early in the icann debacle, i was dragged on to some high-falootin' committee. at a meeting (in sjc, i think), an outspoken audience member asked what the hell i was doing on the committee. i got out of my chair and asked him to please take it and replace me. it had the added feature of getting me out of that committee. :) now, i have zero desire to be on the arin board again. but you and the self appointed internal governance committee need to get out of your chairs. we need real governance folk to form a group to figure out how the heck to get out of the mud. i did not mention susan crawford idly. outsiders! and, btw, it's not just arin. in general, our internet administrative groups have classic but quite astonishing governance processes. while icann is quite competitive, arin does kinda take the cake. randy
Randy (et al): Included below is the response by Joe Sims (Jones Day) to Professor Froomkin's similar arguments in 1999. I include it because it's not that long but the link is: http://archive.icann.org/en/comments-mail/comment-bylaws/msg00025.html I found it interesting and very readable. Not necessarily authoritative, but interesting. If nothing else it covers much of the ground being re-hashed here and seems thoughtful even if one doesn't agree. -Barry Shein --- Professor Froomkin's literary skills are fine, but his analysis leaves a lot to be desired. Since his views might be taken by a reader who is unfamiliar with the subject as having some particular validity, given his academic credentials, it is probably necessary to provide at least some context, something that Froomkin ignores. Froomkin says that "one of the things that ICANN needs to enhance its rather tenuous legitimacy is members." This single statement reveals the "complete disconnect," to use another Froomkin phrase, between his view of what ICANN is and should be, and the real world. In the real world -- the world of the technical people who created the Internet, the infrastructure providers who make it work, the businesses (large and small) who increasingly depend on it for commercial activity, the more than one hundred million individual users who benefit from the incredible increase in access to communication and information that the Internet provides, and the national governments around the world that view this global resource as an important global asset -- in that real world, ICANN's mission is extremely limited: to maintain the stability of the DNS. Or, to put it more simply, to not screw it up. This is the prime objective, the overriding core task, the critical job. Everything else is secondary, or even lower than that, in importance and priority, and that includes anything that can remotely be described as governance. Given this real world fact, ICANN has been constructed to maximize its potential to maintain stability, and to minimize the possibility that it could do something that would increase the risk of instability. Now, of course, global and national politics, and the honest search for the broadest possible consensus of all interested stakeholders, have combined to produce an ICANN drafted by committee. As could be expected, the result is not a perfect instrument for anything, including its prime objective. But the fact that there has always been a prime objective -- and that no responsible participant in this effort has ever disagreed that this was and should be the prime objective guiding the creation of ICANN -- has allowed there to be a common definition of progress that has led to where we are. And, I might add, that has led to broad -- essentially unanimous -- support for where we are from those real world entities I listed above. None of them think we got it exactly right, but almost all of them think we got it acceptably right. The principal exception to this rule is a class of critics, of whom Froomkin is one, that believe that ICANN has been constructed with insufficient attention to the needs, desires and inputs of the little guy -- the individual user, the individual domain name holder, the small entrepreneur. They believe that, since ICANN will (they assert) have control over an important global resource, it must itself be controlled, or at least significantly influenced, by some form of global democracy -- if not one person, one vote, then as close as they can get to that. This is not a frivolous position, but it is a fundamentally wrong-headed one, because it is clearly not consistent with the principal objective of ICANN: create a vehicle for consensus development of policies that will promote the continued stable operation of the DNS. This objective requires slower, not faster, decision-making and incremental change; consideration of technical issues that are generally not accessible to the population as a whole, or even the user community as a whole; and the continued support of the business community, the infrastructure providers and other important political forces in this space. The more direct influence that the general population -- even the general user population -- is given over the actual decision-making processes of ICANN, the more risk to the prime objective of continued stability, and the more pressure there will be for the only realistic alternative: control of ICANN by some form of multi-national body, where we would likely get stability all right, but combined with more control. less freedom and less innovation. The fact that the global community of national governments has so far allowed and even encouraged this private sector approach is quite remarkable, and owes great credit to the United States government for its leadership in this regard, but this forebearance is neither pre-ordained nor guaranteed. Froomkin says that the proposed At Large Membership structure "disenfranchise[s] the public." Pardon me, but exactly when was "the public," whoever that is, in charge of the Internet? The Internet was in the beginning a US government research project, which has long since become a global resource managed and made to function in large part by volunteers, and now that it has become an increasingly important asset for commercial transactions, is financed largely by private businesses, either through the creation of infrastructure or of applications designed to make use of that infrastructure. Where exactly in this process was "the public" enfranchised? What has "the public" been voting on? And is Froomkin's "public" just the United States "public," or does it extend to a global "public." Finally, to the extent that there is or should be a "public" role in this effort, why is that not already accomplished by the extensive involvement and control by the United States and many other national governments throughout this process -- and continuing, I might add, for the foreseeable future? Where is it written that for ICANN, unlike the ITU or United Nations, for example, there needs to be direct involvement by individuals in making policy decisions, rather than have those made by representative bodies? Finally, let's deal with his specific point, such as there is one: that the proposed At Large bylaws "remove direct end-user input into the management of ICANN." If by "direct end-user" he means to exclude all those involved in the other three Supporting Organizations, and thus limit the term to individuals that have no other connection to the DNS than as an individual user of the Internet, he is correct -- and not only correct, but that is the objective of the policy that the ICANN Board adopted in Santiago that these bylaw amendments are designed to implement. Keeping in mind the prime objective of continued stability, the notion that half the ICANN Board could theoretically be elected, especially in this first election cycle when all nine will be up for election, by a determined minority -- whether commercial, religious, ethnic, regional or otherwise -- is anathema. In addition, since this particular portion of the Board is supposed to be representative -- not simply the product of who can marshall the most votes for a seat on a Board of an entity that the vast majority of the "public" that Froomkin is so worried about has never even heard about -- we have to be worried about how this clearly subsidiary goal of having a membership can be met without interfering with our basic objective. And finally, while the indirect approach that is set forth in the Board's policy that these bylaws implement does have the added benefit of eliminating the concept of derivative actions -- another potential source of instability -- that is certainly not the only reason it was adopted. Froomkin's legal work on this point is interesting, but I suspect even he would not want to guarantee that the arguments he presents will be consistently successful, or that even if they are, an organization with billions of potential members will not be constantly fighting some very small subset of them -- which could quite easily amount to many hundreds or thousands of individual matters. In the end, I guess it is easy -- and maybe desirable -- for academics to constantly seek a better world; after all, they have less real-world responsibilities and thus fewer constraints on imaginative thinking. Over time, good ideas will gain support and bad ones will not. And I would certainly not want to discourage Professor Froomkin or anyone else from continuing to advocate a change in focus or objectives for ICANN; after all, if they don't speak out for what they see as the underrepresented, who will? Maybe at some time in the future there will be a consensus for a globally-democratic ICANN, or some similar body; maybe at some point down the road the Internet will be so stable that no one will worry about that anymore. But today, at least my perspective is that almost everyone involved in this process is worried about stability, and that almost everyone wants to avoid doing things in the creation of ICANN that would risk continued stability of the DNS. Indeed, one could make a reasonable argument that, if stability is our objective, we should postpone any movement to an At Large membership or Directors until ICANN is up and running successfully; after all, we have had enough trouble getting consensus out of those who make up the Supporting Organizations -- a much more homogenous group than the population of the world. But the ICANN bylaws call for an At Large membership, and the Initial Board feels bound by that call, and so it has sought to carry out that responsibility in the best way it could -- consistent with what it (and virtually all, if not all, of the other participants) see as its principal goal of creating an organization and a structure that would enhance, not risk, the continued stability of the DNS. I think its efforts so far have the support of -- dare I say it? -- a consensus, even a strong consensus, of the Internet community, Professor Froomkin's views to the contrary notwithstanding.
Randy, Thanks for giving me a lead in! ARIN has been gradually evolving and tweaking the governance over the past fifteen years. Given it’s a small board it’s been generally done at the full Board historically. We’ve recently started to take a long look at a variety of issues to see if there is a better way to structure ourselves to deliver the mission and stay accountable to the community. We do have a small sub-set working given there is a lot of things to go through and I am leading the charge on that issue for the ARIN Board. Over the coming months we'll be more formally looking for community input on a variety of governance and accountability issues. In the interim we're happy to take any informal input directly. The specific point you mention in regards to term limits has been taken out of context in that the thought was that as part of a larger process we should likely go ask our various communities their thoughts on this and other issues which seems to be in line with what your asking. And no - not embarrassed… However the always colourful feedback is appreciated and will be taken into account. Cheers, -p — Paul Andersen EGATE Networks Inc. e: paul@egate.net On Mar 25, 2014, at 1:23 PM, Randy Bush <randy@psg.com> wrote:
omg! a friend just sent this great example of how far down we have gone
https://www.arin.net/about_us/committeecharters.html#governance
there is a governance committee. guess the composition. "The Committee shall consist of three elected members from the Board of Trustees." how wonderfully corrupt.
and this is the self same board which could not agree to limit their own terms, <https://www.arin.net/about_us/bot/bot2012_1025.html>. "The Board discussed term limits for its members and members of the ARIN AC. No consensus was reached."
my youngest granddaughter's kindergarten has better governance.
and they're not even embarrassed. sheesh!
On Mar 25, 2014, at 1:07 PM, Randy Bush <randy@psg.com> wrote:
ok, let me also try to be constructive. how the heck do we get ourselves out of a hole where we are ruled by self-perptuating monopolies which lack oversight and accountability. and it ain't just arin. look at the big [cc]tlds, the horror of icann, ...
Randy - The ARIN Board has a governance committee, and so I'll leave responding to your ARIN specific governance points to the Chair of that committee (Paul Andersen)... With respect to entire Internet name and number ecosystem, I do not agree with the characterization that "... we are ruled by self-perptuating monopolies which lack oversight and accountability", but also in the spirit of being constructive, let me agree that: 1) It is a very strange family of organizations with rather uneven governance practices. 2) There is a real risk that one or more of these organizations could evolve into "self-perptuating monopolies which lack oversight and accountability", and this risk is definitely worthy of folks attention considering NTIA's IANA announcement. In particular, it would be wise idea to folks to think about the what should be the underlying principles for the governance of all of these organizations... The IANA transition announcement that I forwarded earlier is about building a plan which meets the NTIA's requirements for transiting its oversight role - <http://www.ntia.doc.gov/press-release/2014/ntia-announces-intent-transition-key-internet-domain-name-functions> "... NTIA has communicated to ICANN that the transition proposal must have broad community support and address the following four principles: • Support and enhance the multistakeholder model; • Maintain the security, stability, and resiliency of the Internet DNS; • Meet the needs and expectation of the global customers and partners of the IANA services; and, • Maintain the openness of the Internet." That third requirement (meet the needs and expectations of the global customers) is going to be hard to satisfy without really good governance practices - it would be good if folks who feel like you do take a moment to remind NTIA what exactly you think good governance practices are; paraphrasing your points, that might be elements such as: - Simple terms and conditions for contracts with registries - Membership organizations for registries with term limits for Board and advisory bodies - Board diversity (meaning real world users) - Competitive registries - ... There will shortly be a process to share such input into the transition plan; I will make sure its well known on this list and the ARIN lists. Folks should begin thinking so that they can provide insight into what they expect from the Internet name and number registry system as conditions necessary for USG/NTIA to effect a transition of its stewardship role to these organizations collectively. Thanks! /John John Curran President and CEO ARIN
I do not agree with the characterization that "... we are ruled by self-perptuating monopolies which lack oversight and accountability",
when you have a governance committee which is composed of the governing, not outsiders and governance experts, with no term limits, it would seem hard to support that argument.
- Simple terms and conditions for contracts with registries - Membership organizations for registries with term limits for Board and advisory bodies - Board diversity (meaning real world users) - Competitive registries - ...
i pretty much agree that arin should do these. except ... iff we could get reasonable governance, i am not sure we need multiple rirs. after all, the registries were just supposed to be bookkeepers. but i agree that competition is a good method of injecting some reality into the physics in the absense of other means. but i eagerly await the simplification of arin's ts&cs. and get rid of being able to change them unilateraly and arbitrarily, and get rid the silly game about legacy rights, and a whole bunch of us might join. randy
On Mar 25, 2014, at 5:04 PM, Randy Bush <randy@psg.com> wrote:
I do not agree with the characterization that "... we are ruled by self-perptuating monopolies which lack oversight and accountability",
when you have a governance committee which is composed of the governing, not outsiders and governance experts, with no term limits, it would seem hard to support that argument.
Acknowledged, and I will provide that feedback to the Board. I have nothing against term limits (but I also did not champion them back when I was an elected member of the Board of Trustees.) Many cite risk of losing well-qualified and experienced Board members right when they are most productive as the counter-argument. This is probably a fairly prolonged discussion, and the ARIN membership also needs to weigh in...
- Simple terms and conditions for contracts with registries - Membership organizations for registries with term limits for Board and advisory bodies - Board diversity (meaning real world users) - Competitive registries - ...
i pretty much agree that arin should do these. except ...
iff we could get reasonable governance, i am not sure we need multiple rirs. after all, the registries were just supposed to be bookkeepers. but i agree that competition is a good method of injecting some reality into the physics in the absense of other means.
but i eagerly await the simplification of arin's ts&cs. and get rid of being able to change them unilateraly and arbitrarily, and get rid the silly game about legacy rights, and a whole bunch of us might join.
I will note that this discussion is presently on nanog, and I am not certain that all of the ARIN Board members subscribe... I will forward your message to the Board, but would you prefer to take this to one of the ARIN lists, or have a us setup a distinct list for this purpose, or something else? Thanks! /John John Curran President and CEO ARIN
[ you're cheating, you're in an asian time zone! ]
I have nothing against term limits (but I also did not champion them back when I was an elected member of the Board of Trustees.) Many cite risk of losing well-qualified and experienced Board members right when they are most productive as the counter-argument.
that is always the argument. the benefits of openness and new blood far outweigh the 'benefit' of rule by old dogs who appoint committees of themselves.
I will note that this discussion is presently on nanog, and I am not certain that all of the ARIN Board members subscribe.
an interesting point in itself, as north american operators are the smallest description of the arin constituency. a new ietf ops area director once asked me to monitor the nanog list for them and tell them if anything passed that was important. i told them that they should resign immediately.
I will forward your message to the Board
thanks
but would you prefer to take this to one of the ARIN lists
my experience is that ppml, the only one i remember, is far too toxic for me to last more than a day. and this is about the whole bleeping internet community. arin is far too closed and inward facing, breathing its own smoke.
or have a us setup a distinct list for this purpose, or something else?
how about forming an *outside* arin governance brainstorming committee? not binding. but a fresh, outside, wide-ranging, expert view. as i just said to someone privately, scan the entire array of internet administrative/infrastructural organizations. show me one that has a good, responsive, representative, open, ... governance structure. the ietf is interesting except it's a technocratic meritocracy. and i certainly would not call its governance open. i would make it clear that things such as policy, personalities, ... are out of scope. and i would beg to get some heavy hitters to help, which is why i keep plugging susan crawford as an example. there are others. i'd also suggest one non-board insider such as cja, so that questions about internals can be answered. yes, opening up the game is scary. it darned well should be. it could change the status quo. but that might be good for arin, good for the community, and good for the internet. randy
On Mar 23, 2014, at 9:59 PM, Randy Bush <randy@psg.com> wrote:
But perhaps Randy is looking for the number of /24 equivalents allocated to legacy resource holders who haven't also received an IPv6 direct allocation or other IPv4 direct allocation under an RSA?
what percentage of address space is held by members and what percentage by non-members (lrsa-only is part of the latter)?
what percentage of holding organizations are members and what percentage not members (lrsa-only being part of the latter)?
If you intend for RSA assignment holders to also be semi-randomly split between the two categories, then, yes. If not, then, your exact words do not say exactly what you intend. Owen
Yes and no… Everyone who receives a direct allocation is a member. Those who receive direct assignments from ARIN, OTOH, are not members unless they choose to also pay an additional $500/year for that membership. Owen On Mar 23, 2014, at 9:53 PM, Timothy Morizot <tmorizot@gmail.com> wrote:
Unless I misremember, everyone who receives a direct allocation from ARIN and signs an RSA is automatically a member. It's not clear to me what "owner of a /24 network" means in that context. (I don't recall if signing an LRSA in and of itself also makes one a member, since by the time we had signed an LRSA, we had long since received our direct IPv6 allocation under an RSA.)
But perhaps Randy is looking for the number of /24 equivalents allocated to legacy resource holders who haven't also received an IPv6 direct allocation or other IPv4 direct allocation under an RSA?
Scott
On Sun, Mar 23, 2014 at 10:46 PM, Naslund, Steve <SNaslund@medline.com>wrote:
Exactly right John. I think the term "owned" is a problem here.
It seems to me that the terms would correctly be "holder" or who the address space was issued to or "user" being the end user using that space.
Wouldn't all of the holders be ARIN members unless grandfathered in?
Steven Naslund Chicago IL
-----Original Message----- From: John Curran [mailto:jcurran@arin.net] Sent: Sunday, March 23, 2014 10:36 PM To: Randy Bush Cc: North American Network Operators' Group Subject: Re: arin representation
On Mar 23, 2014, at 6:53 PM, Randy Bush <randy@psg.com> wrote:
two questions:
o of the /24s in the arin region, what percentage are owned by arin members?
Randy -
Happy to generate these - two questions for clarity.
1) Should we expand /16's and /8's into the corresponding number of /24's ? (or do you only want those blocks issued originally as /24's to be counted)
2) In terms of categories, we could go strictly with /24's held by ARIN members versus /24's held by non-members (and resulting percentages); note that would be predominantly ISPs since end-users assignments from ARIN are unlikely to be members unless they specifically opted to join. Alternatively, we could provide counts /24's under RSA, /24's under LRSA, and /24's legacy-no-agreement as the three categories of counts desired (and each percentage of the total)
So, based on above, would you prefer the /24 space statistics as asked (member/non-member) or rsa/lrsa/legacy-no-agreement?
o of the address holders in the arin region, what percentage are arin members?
Will do.
Thanks! /John
John Curran President and CEO ARIN
That is correct as long as that direct allocation came from ARIN. A really large chunk of address space was allocated (especially to the government entities) way before ARIN was controlling the space. I think the large percentage of space held by non-ARIN members come from those really large allocations going back to ARPANET and DDN days. AFAIK A lot of those entities are not necessarily members although they could be if they want to be. Steven Naslund
Yes and no... Everyone who receives a direct allocation is a member.
Those who receive direct assignments from ARIN, OTOH, are not members unless they choose to also pay an additional $500/year for that membership.
Owen
>> o of the /24s in the arin region, what percentage are owned by arin >> members? > 1) Should we expand /16's and /8's into the corresponding number of > /24's ? sorry. i mean the number of /24 equivalents. so yes, expand /7-/23 > 2) In terms of categories, we could go strictly with /24's held by ARIN members > versus /24's held by non-members (and resulting percentages) yep > Alternatively, we could provide counts /24's under RSA, /24's under > LRSA, and /24's legacy-no-agreement as the three categories of counts > desired (and each percentage of the total) that would work, presuming those three categories cover all space, e.g. us military etc. randy
On Mar 23, 2014, at 3:53 AM, Randy Bush <randy@psg.com> wrote:
two questions:
o of the /24s in the arin region, what percentage are owned by arin members?
o of the address holders in the arin region, what percentage are arin members?
i understand that the latter will be slightly jittered because of the database mess with multiple org ids for one entity. but i suspect you can get close enough for government work.
randy
It’s also impacted by the fact that most end-user resource holders with direct assignments do not choose to pay an extra fee for membership. So, the number that are ARIN members will be very different from the number that are direct assignments/allocations. Owen
On Mar 23, 2014, at 3:53 AM, Randy Bush <randy@psg.com> wrote:
two questions:
o of the /24s in the arin region, what percentage are owned by arin members?
o of the address holders in the arin region, what percentage are arin members?
i understand that the latter will be slightly jittered because of the database mess with multiple org ids for one entity. but i suspect you can get close enough for government work.
randy
It’s also impacted by the fact that most end-user resource holders with direct assignments do not choose to pay an extra fee for membership. So, the number that are ARIN members will be very different from the number that are direct assignments/allocations. Owen
participants (9)
-
Barry Shein
-
Doug Barton
-
John Curran
-
Naslund, Steve
-
Owen DeLong
-
Paul Andersen
-
Paul Andersen
-
Randy Bush
-
Timothy Morizot