Search RPD Archives
[rpd] Summary of Proposal Policy Compliance Dashboard AFPUB-2021-GEN-003-DRAFT02
mathanyawork at gmail.com
Wed Jan 5 21:03:24 UTC 2022
The proposal lacks details that are no good to be left up to
interpretation. These are my concerns and what I think should be added or
worked on to not make the policy a redundancy (which is now the case)
A- 3.Notifications : Enforcing the policy still has no guarantee on how you
would make sure that the members check the dashboard. A large majority of
AFRINIC resource members don’t even stay up to date with the latest policy
developments. And what if they just choose to ignore the dashboard and then
claim that they haven’t checked it since nothing obliges them to..?
B- 4.Lack of compliance : Why does AFRINIC even need this policy to exist
to conduct exhaustive investigations and further actions when a member is
not complying ? This section is one of the most important points of the
policy that needs to justify the need of it, and it is lacking explanatory
details that are crucial to understand what value exactly is added by the
dashboard. Especially if AFRINIC is already doing the same job..
On Wed, 5 Jan 2022 at 20:48, Sylvain Baya <abscoco at gmail.com> wrote:
> Dear PDWG,
> Hope this email finds you in good health,
> Blessed new year 2022!
> ...one year less under the ongoing era of The Lord's
> Please see my comments below, inline...
> Le lun. 20 déc. 2021 14:21, Serah Eazy <seraheazy at gmail.com> a écrit :
>> Good day,
>> My reservation against this proposal is that
> Hi Serah,
> Thanks for sharing your concern, brother!
> the dashboard may pose some problems because the technical side of things
>> may be mishandled and may cause data breach.
> This is not any new at all!
> Data breach is an event no organization
> wants to experience.
> ...sure, but you may know it, everyday a
> number of organizations are disclosing
> data breaches and other cyber-attacks...
> and they are not specifically managing
> such kind of dashboards.
> What level of assurance can be given to members that their Information
>> will not be compromised.
> Do you know, that what you are describing
> above is also relevant to MyAFRINIC ?
> : <https://my.afrinic.net>
> Human error, insider misuse of information, physical theft of data
>> carrying devices are likely issues that may arise from the implementation
>> of the dashboard and whose outcomes could be disastrous.
> ...as said above, Serah, this is not at all
> specific to the proposed dashboard. As
> you wisely said: such issues (errors/theft/
> whatever) are likely to occur ; no matter
> the SLA/OLA of a given organization. Hence,
> we should start by agreeing that nothing
> in what you mention here is specific to
> the proposed dashboard; and therefore,
> those issues could not be considered as
> relevants and even specific to the proposed
> dashboard...the same risks are actually
> experienced within the MyAFRINIC
> plateform, which works however while
> being regularly improved...also, note that the
> proposed dashboard shall be integrated
> within the MyAFRINIC plateform, in order
> to be accessible only to each resource member.
> Serah, you should focus on the potential in
> usefulness of the proposed dashboard.
> If implemented, imho, it'll be of great
> interest for each resource member, in that
> it'll help them to, effortlessly, track their
> own compliance with the CPM. Remember
> that each resource member is bound by the
> CPM, but some are facing difficulties to track
> their own CPM-compliance. The CPM-compliance
> dashboard comes to clean these difficulties...
> ...for me, i was more concerned about the
> necessity of a policy to address these concerns
> in implementing such a operational solution
> ...but, i'm ok to have it through an operational
> policy; if it's the only mean this PDWG can
> Thank you.
>> On Wed, Dec 8, 2021, 4:25 PM PDWG Chair <vincent at ngundi.me.ke> wrote:
>>> *Dear PDWG, *
>>> * The summary of the elements that led to the PDWG Chairs decision for
>>> the policy proposal Policy Compliance Dashboard AFPUB-2021-GEN-003-DRAFT02
>>> that was discussed during the AFRINIC-34 Public Policy Meeting is as
>>> follows :- The concerns on the mailing list were addressed. During the open
>>> microphone discussion of the proposal, the PDWG expressed support of the
>>> intention of the policy, while also mentioning that policy should not be
>>> used to micromanage work done by staff and cautioning against the scope
>>> creep of the PDP. The privacy issue that was raised was addressed as the
>>> dashboard is visible only to the member. After consideration of the
>>> mailing list discussions and during the current Public Policy Meeting, the
>>> decision of PDWG Co-chairs is that this policy proposal has reached rough
>>> consensus. The policy proposal therefore moves to Last Call and the
>>> community can further comment in that period. The Last Call starts on 8
>>> December 2021 and will end at 23h59 UTC on 5 January 2022. Regards, Vincent
>>> Ngundi & Darwin Da Costa AFRINIC PDWG CO-CHAIRS *
> Best Regards !
> baya.sylvain[AT cmNOG DOT cm]|<https://cmnog.cm/dokuwiki/Structure>
> Subscribe to Mailing List: <https://lists.cmnog.cm/mailman/listinfo/cmnog/
> #LASAINTEBIBLE|#Romains15:33«Que LE #DIEU de #Paix soit avec
> vous tous! #Amen!»
> #MaPrière est que tu naisses de nouveau. #Chrétiennement
> «Comme une biche soupire après des courants d’eau, ainsi mon âme soupire
> après TOI, ô DIEU!»(#Psaumes42:2)
> RPD mailing list
> RPD at afrinic.net
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the RPD