<div dir="auto"><div>Dear JORDI, dear all,<div dir="auto">Please see my comments in line:</div><div dir="auto"><br></div><br><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Wed, 30 Sep 2020, 13:43 JORDI PALET MARTINEZ via RPD <<a href="mailto:rpd@afrinic.net" rel="noreferrer noreferrer" target="_blank">rpd@afrinic.net</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div lang="ES" link="blue" vlink="purple" style="word-wrap:break-word"><div><p class="MsoNormal"><span lang="EN-US" style="font-size:12.0pt">Hi AK, Moses, all,<u></u><u></u></span></p><p class="MsoNormal"><span lang="EN-US" style="font-size:12.0pt"><u></u> <u></u></span></p><div><p class="MsoNormal"><span lang="EN-US" style="font-size:12.0pt;color:black">I will like you to reconsider your decision on this proposal, following CPM 3.5, on the grounds of my responses below, which have already been provided thru previous discussions and I don’t think any of those are valid-objections to the proposal.<u></u><u></u></span></p><p class="MsoNormal"><span lang="EN-US" style="font-size:12.0pt;color:black"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="EN-US" style="font-size:12.0pt;color:black">See my points below, in-line.<u></u><u></u></span></p><p class="MsoNormal"><span lang="EN-US" style="font-size:12.0pt;color:black"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="EN-US" style="font-size:12.0pt;color:black">Regards,<u></u><u></u></span></p><p class="MsoNormal" style="margin-bottom:12.0pt"><span lang="EN-US" style="font-size:12.0pt;color:black">Jordi<u></u><u></u></span></p><p class="MsoNormal" style="margin-bottom:12.0pt"><span lang="EN-US" style="font-size:12.0pt;color:black">@jordipalet<u></u><u></u></span></p></div><div><div><div><div><div><div><div><div><div><div><div><div><div><div><div><div><div><div><div><p style="margin-right:0cm;margin-bottom:8.0pt;margin-left:71.4pt;line-height:106%"><span lang="EN-PH">5.</span><span lang="EN-PH" style="font-size:7.0pt;line-height:106%;font-family:"Times New Roman",serif"> </span><span lang="EN-PH">Policy Compliance Dashboard</span><u></u><u></u></p><p class="MsoNormal" style="margin-right:0cm;margin-bottom:8.0pt;margin-left:35.4pt;line-height:106%"><span lang="EN-PH">The policy proposal seeks to provide a framework or a policy compliance dashboard be developed by AFRINIC and incorporated in myAFRINIC (and future member’s communication platforms). It will allow a periodic review of the policy compliance status of each member. It will also enable members to receive automated notifications for any issue. Staff will receive repeated warnings of lack of compliance or severe violations enshrined in the CPM. However, there are several oppositions to this proposal, such as:</span><u></u><u></u></p><p style="margin-right:0cm;margin-bottom:0cm;margin-left:166.65pt;line-height:106%"><u></u><span lang="EN-PH"><span>a.<span style="font:7.0pt "Times New Roman""> </span></span></span><u></u><span lang="EN-PH">This policy seems to be redundant of the status quo as violations are already checked and processed by the human staff.<u></u><u></u></span></p><p style="margin:0cm;line-height:106%"><span lang="EN-PH"><u></u> <u></u></span></p><p style="margin:0cm;line-height:106%"><span lang="EN-PH" style="font-size:12.0pt;line-height:106%">That's the key human vs. automation. Human verification is costly and inefficient if it can be automated.</span></p></div></div></div></div></div></div></div></div></div></div></div></div></div></div></div></div></div></div></div></div></div></blockquote></div></div><div dir="auto"><br></div><div dir="auto">Yes, I agree that generally automation is more efficient. However, in our case we must ask ourselves whether it will be more efficient in the case of AFRINIC. I understand that through this policy notifications will be automated but who will be reviewing the compliance status of each member? This work will still be done by the staff. So the question here is would the resources invested in this policy be worth a few automated emails? </div><div dir="auto"><br></div><div dir="auto">In addition, it is much easier to dismiss automated emails than those coming from a real human being. There is no guarantee that these alerts won't be simply disregarded.</div><div dir="auto"><div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div lang="ES" link="blue" vlink="purple" style="word-wrap:break-word"><div><div><p style="margin:0cm;line-height:106%"><span lang="EN-PH" style="font-size:12.0pt;line-height:106%"><u></u><u></u></span></p><p style="margin:0cm;line-height:106%"><span lang="EN-US" style="font-size:12.0pt;line-height:106%"><u></u> <u></u></span></p><p style="margin-right:0cm;margin-bottom:0cm;margin-left:166.65pt;line-height:106%"><u></u><span lang="EN-PH"><span>b.<span style="font:7.0pt "Times New Roman""> </span></span></span><u></u><span lang="EN-PH">There is already an existing system of guidelines on keeping track of the violations of members.<u></u><u></u></span></p><p style="margin:0cm;line-height:106%"><span lang="EN-PH"><u></u> <u></u></span></p><p style="margin:0cm;line-height:106%"><span lang="EN-PH" style="font-size:12.0pt;line-height:106%">The RSA and bylaws have generic provisions. There is nothing against the power of the community to make those more clearly stated. Furthermore this will protect the members against a mistake, which according to the legal bindings today, can call for an immediate resource reclamation.<u></u><u></u></span></p><p style="margin:0cm;line-height:106%"></p></div></div></div></blockquote></div></div><div dir="auto"><br></div><div dir="auto">I am wondering whether there are already precedents of such issue. As far as I understand staff notifies the resource holder in case there are any violations. So how would this policy make a difference? </div><div dir="auto"><div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div lang="ES" link="blue" vlink="purple" style="word-wrap:break-word"><div><div><p style="margin:0cm;line-height:106%"><br></p><p style="margin-right:0cm;margin-bottom:0cm;margin-left:166.65pt;line-height:106%"><u></u><span lang="EN-PH"><span>c.<span style="font:7.0pt "Times New Roman""> </span></span></span><u></u><span lang="EN-PH">The policy is not binding and does not enforce members actually to follow the rules and not violate policies. <u></u><u></u></span></p><p style="margin:0cm;line-height:106%"><span lang="EN-PH"><u></u> <u></u></span></p><p style="margin:0cm;line-height:106%"><span lang="EN-PH" style="font-size:12.0pt;line-height:106%">All the policies are binding for all the members. This is clearly stated in the legal documents.</span></p></div></div></div></blockquote></div></div><div dir="auto"><br></div><div dir="auto">Yet, there is no mechanism to ensure that members will actuality check the dashboard. </div><div dir="auto"><div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div lang="ES" link="blue" vlink="purple" style="word-wrap:break-word"><div><div><p style="margin:0cm;line-height:106%"><span lang="EN-PH" style="font-size:12.0pt;line-height:106%"><u></u><u></u></span></p><p style="margin:0cm;line-height:106%"><span lang="EN-US" style="font-size:12.0pt;line-height:106%"><u></u> <u></u></span></p><p style="margin-right:0cm;margin-bottom:0cm;margin-left:166.65pt;line-height:106%"><u></u><span lang="EN-PH"><span>d.<span style="font:7.0pt "Times New Roman""> </span></span></span><u></u><span lang="EN-PH">Ignorance could be a convenient excuse for violations because one could claim that they never got notified about their violations.<u></u><u></u></span></p><p style="margin:0cm;line-height:106%"><span lang="EN-PH"><u></u> <u></u></span></p><p style="margin:0cm;line-height:106%"><span lang="EN-PH" style="font-size:12.0pt;line-height:106%">On the other way around, this is the actual status quo. This policy ensures that ignorance can’t be used as an excuse, because it will send alerts and show them also in the member account GUI.</span></p></div></div></div></blockquote></div></div><div dir="auto"><div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div lang="ES" link="blue" vlink="purple" style="word-wrap:break-word"><div><div><p style="margin:0cm;line-height:106%"><span lang="EN-PH" style="font-size:12.0pt;line-height:106%"><u></u><u></u></span></p><p style="margin:0cm;line-height:106%"><span lang="EN-US" style="font-size:12.0pt;line-height:106%"><u></u> <u></u></span></p><p style="margin-right:0cm;margin-bottom:0cm;margin-left:166.65pt;line-height:106%"><u></u><span lang="EN-PH"><span>e.<span style="font:7.0pt "Times New Roman""> </span></span></span><u></u><span lang="EN-PH">There is no comprehensive system on how the board should take proper actions once members violate policies, nor does it give guidelines based on the severity of the violations.<u></u><u></u></span></p><p style="margin:0cm;line-height:106%"><span lang="EN-PH"><u></u> <u></u></span></p><p style="margin:0cm;line-height:106%"><span lang="EN-PH" style="font-size:12.0pt;line-height:106%">This is on purpose. There are different severity levels, and this even may depend on circumstances, so it is up to the operational details of the implementation, to better detail it, which can be done in consultancy with the community. If the community think the staff is not doing that correctly, then a new proposal can be submitted, but with this proposal we have a starting point at least. Trying to agree on if making a mistake on this or that part of the CPM is more or less severe than doing 3 times wrong this or that, will be and endless discussion and too operational.</span></p></div></div></div></blockquote></div></div><div dir="auto"><br></div><div dir="auto">This is interesting because when discussing resource transfer policy you stated, and I quote:</div><div dir="auto">"<span style="font-family:sans-serif;font-size:16px">Now, regarding the point on “we can get this policy working” and then resolve the issues with another proposal … I will love to believe in that, but I’m every day more and more convinced that this will not happen. If we don’t get it right (or almost right on the first shot), we will not agree in 1 year to resolve it."</span></div><div dir="auto"><span style="font-family:sans-serif;font-size:16px"><br></span></div><div dir="auto"><span style="font-family:sans-serif;font-size:16px">When it comes to your own policy you are open to passing it and then amending it later as necessary. But when it concerns the policy proposed by someone else, this is one of your main counter arguments. Doesn't this seem to be a little of a double standard? </span></div><div dir="auto"><span style="font-family:sans-serif;font-size:16px"><br></span></div><div dir="auto"><span style="font-family:sans-serif;font-size:16px">Also, I understand your point on giving AFRINIC staff the freedom to decide the severity of each violation. However, I t</span>hink if we were to ever pass this policy it AT LEAST has to include a set guidelines for the appropriate procedure that is to be followed by the board when such violations occur. Otherwise we could be stuck in a situation where violations take place, and no one is really sure what to do about it. And since the decision making process of the community can take months, I fail to see how this is in any way effective or efficient. </div><div dir="auto"><div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div lang="ES" link="blue" vlink="purple" style="word-wrap:break-word"><div><div><p style="margin:0cm;line-height:106%"><span lang="EN-PH" style="font-size:12.0pt;line-height:106%"><u></u><u></u></span></p><p style="margin:0cm;line-height:106%"><span lang="EN-US" style="line-height:106%"><span style="font-size:12pt"><u></u></span> <span style="font-size:12pt"><u></u></span></span></p><p style="margin-right:0cm;margin-bottom:0cm;margin-left:166.65pt;line-height:106%"><u></u><span lang="EN-PH"><span>f.<span style="font:7.0pt "Times New Roman""> </span></span></span><u></u><span lang="EN-PH">This policy takes away resources that could be used for more beneficial pursuits to AFRINIC for something existing in the system.<u></u><u></u></span></p><p style="margin:0cm;line-height:106%"><span lang="EN-PH"><u></u> <u></u></span></p><p style="margin:0cm;line-height:106%"><span lang="EN-PH" style="font-size:12.0pt;line-height:106%">On the other way around. It is clear that automation *<b>saves</b>* resources. The policy doesn’t state *<b>how</b>* or *<b>when</b>* it should be implemented, and it is just fine that the staff defines what parts of the CPM are implemented when and in what order, depending on the availability of the human resources unless the board decides that this is key and should be implemented faster.</span></p></div></div></div></blockquote></div></div><div dir="auto"><br></div><div dir="auto">Again, without a thorough cost benefit analysis, any claims of whether or not this would save AFRINIC resources in the long term are completely groundless. However, it IS obvious that in the short term implementating this policy will be a great financial burden. </div><div dir="auto"><div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div lang="ES" link="blue" vlink="purple" style="word-wrap:break-word"><div><div><p style="margin:0cm;line-height:106%"><span lang="EN-PH" style="font-size:12.0pt;line-height:106%"><u></u><u></u></span></p><p style="margin:0cm;line-height:106%"><span lang="EN-US" style="font-size:12.0pt;line-height:106%"><u></u> <u></u></span></p><p style="margin-right:0cm;margin-bottom:8.0pt;margin-left:166.65pt;line-height:106%"><u></u><span lang="EN-PH"><span>g.<span style="font:7.0pt "Times New Roman""> </span></span></span><u></u><span lang="EN-PH">It an administrative process, and this should be left to staff<u></u><u></u></span></p><p style="margin-right:0cm;margin-bottom:8.0pt;margin-left:0cm;line-height:106%"><span lang="EN-PH">Is not. The community has the right to ensure that the policy compliance is monitored in a way that, because it is automated, doesn’t make a difference in how much time the staff has to do that manually and then do it faster for some resource holders than others. Automation makes it quick (no difference among resource holders), human means you do it for each resource holder “when you can”. Trying to make this in a way that is fair for all members by humans, will mean having almost as many staff human resources for each “validation” pass as resource holders. It will also mean that you do a reduced number of “passes” per year, while automation means you can do it every week or month.</span></p></div></div></div></blockquote></div></div><div dir="auto">In my view, maintaining policy compliance is a purely operational issue that is outside the scope of the PDP. The policies should only focus on HOW the resources are distributed and not on whether or not members follow these policies.</div><div dir="auto"><br></div><div dir="auto">I understand where you are coming from in regards to proposing this policy. But I really think it requires way more assessment, review, and discussion to determine if it is really necessary and whether or not it is actually in the scope of the PDP. </div><div dir="auto"><br></div><div dir="auto">Best, </div><div dir="auto"><br></div><div dir="auto">Ekaterina </div><div dir="auto"><div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div lang="ES" link="blue" vlink="purple" style="word-wrap:break-word"><div><div><p style="margin-right:0cm;margin-bottom:8.0pt;margin-left:0cm;line-height:106%"><span lang="EN-PH" style="font-size:12.0pt;line-height:106%"><u></u><u></u></span></p><p style="margin-right:0cm;margin-bottom:8.0pt;margin-left:0cm;line-height:106%"><span lang="EN-US" style="font-size:12.0pt;line-height:106%"><u></u> <u></u></span></p><p class="MsoNormal" style="margin-right:0cm;margin-bottom:8.0pt;margin-left:35.4pt;line-height:106%"><span lang="EN-PH">Chairs Decision: NO rough Consensus</span><u></u><u></u></p></div><p class="MsoNormal"> <u></u><u></u></p></div><br>**********************************************<br>
IPv4 is over<br>
Are you ready for the new Internet ?<br>
<a href="http://www.theipv6company.com" rel="noreferrer noreferrer noreferrer" target="_blank">http://www.theipv6company.com</a><br>
The IPv6 Company<br>
<br>
This electronic message contains information which may be privileged or confidential. The information is intended to be for the exclusive use of the individual(s) named above and further non-explicilty authorized disclosure, copying, distribution or use of the contents of this information, even if partially, including attached files, is strictly prohibited and will be considered a criminal offense. If you are not the intended recipient be aware that any disclosure, copying, distribution or use of the contents of this information, even if partially, including attached files, is strictly prohibited, will be considered a criminal offense, so you must reply to the original sender to inform about this communication and delete it.<br>
<br>
</div>
_______________________________________________<br>
RPD mailing list<br>
<a href="mailto:RPD@afrinic.net" rel="noreferrer noreferrer noreferrer" target="_blank">RPD@afrinic.net</a><br>
<a href="https://lists.afrinic.net/mailman/listinfo/rpd" rel="noreferrer noreferrer noreferrer noreferrer" target="_blank">https://lists.afrinic.net/mailman/listinfo/rpd</a><br>
</blockquote></div></div></div>