Wouldn’t a simple option be to use something like WorldLog And have the identification code that is mailed to you be used As proof of identity.
Adam KC7GDY
On Feb 20, 2020, at 10:24 AM, Lin Holcomb via 44Net 44net@mailman.ampr.org wrote:
Quan brings up a very good point. If AMPR is requiring and retaining photo identification and home address on the ham radio licence is the intention to be in compliance with Personal Data Privacy Laws for every country in the world? Note that as an example Russia does not allow this sort of PII (Personally Identifiable Information) to be stored any place besides inside the boarders of Russia. In the professional opinion of my wife W4FHL who is an SPHR (Senior Professional of HR think CPA of HR) who is a director of HR for a global shipping company this is a very, risk to AMPR. Basically AMPR would need to retain a lawyer and hire a copanice manage ensures personal data is protected properly for every country.
AMPR should require only a copy of the licence with the home address blacked out. Anything else is a violation of PII (personal identifiable Information) regulations in almost any country in the world. Our suggestion is conduct an electronic shred what of what AMPR has currently and remove this requirement ASAP. As AMPR has significant funds on hand this make a very large target for both regulatory agencies as well as persons if their data is breached.
Lin and Adrienne Holcomb NI4Y and W4FHL
On Thu, Feb 20, 2020 at 11:42 AM David Ranch via 44Net < 44net@mailman.ampr.org> wrote:
Hello Quan,
I can give you my perspective as an AMPR coordinator on how BGP allocations usually get processed. When I receive a request from a user requesting a BGP prefix, I ask a bunch of questions to ensure the person understands the minimum requirements. My questions include:
- Your callsign (is it valid with your government's amateur radio
licensing body)
- Your current home address (to know if you're in my AMPR
coordination territory or not). The use of PO boxes or otherwise greatly complicate this Q&A discussion
- I have never requested nor am I aware of Brian Kantor previously
requesting copies of a person's photo-id to prove identity. This does NOT mean it's never been requested in the past
- Would your use of address space be for primarily Internet-only
focus traffic or RF-servicing traffic?
- Your intended purpose for the address space (to ensure it meets
the guidelines of AMPR's charter)
- Your Justification for any requests larger than a /24 as our
address space isn't unlimited
- Your allocated ARIN ASN number ( associated to your name or to a
company you directly control)
Once I receive appropriate answers for all of the items above, I would either approve the AMPR subnet in the AMPR Portal or if more Internet-only facing traffic, have the user to close out the current AMPR request and create a new request in the 44.190/16 prefix managed by Jan DG8NGN for an allocation. At that point, Brian Kantor would then review the allocation with all the above Q&A answers. If Brian was satisfied with the details, he would begin the LOA process and ultimately send you an official approval email. At that point, some hosting ISPs would then send Brian Kantor a "consent letter" request that he would need to respond to. This response sometimes would require that it be from the ARDC on ARDC letterhead with Brian's hand signature. With all the paperwork completed, you or your hosting provided would then be able to start announcing your allocated prefix.
I know this process can be invasive but you would be surprised how many bogus requests I've received over the years. I have to assume this is because of the scarcity of IPv4 addresses and/or people trying to do bad things over the Internet hoping that AMPR address space would shield them somehow. I would assume that if you followed a similar process for your BGP prefixes and can provide all the previous email exchanges with you, your local AMPR coordinator and Brian Kantor and most importantly his approval email, I would assume that Chris G1FEF would accept all that as a valid allocation.
Beyond that, you can consider taking this discussion up with the ARDC board:
https://www.ampr.org/about/who-we-are/
President/CEO: Phil Karn — KA9Q
Treasurer: Bdale Garbee — KB0G John Gilmore — W0GNU K. C. Claffy — KC6KCC
Technical Advisory Committee John Hays — K7VE Heikki Hannikainen — OH7LZB Tim Osburn — W7RSZ Tim Pozar — KC6GNJ
Hope this helps.
--David KI6ZHD Silicon Valley 44.4.x.x/16 AMPR Coordinator
On 02/19/2020 09:18 PM, Quan Zhou via 44Net wrote:
Hi all,
Sorry to bother you with a rant, but I'm feeling an urge to ask that what's happening on the AMPR/ARDC.
## Background
A few weeks ago I have received a harsh email from Chris G1FEF accusing me for announcing a prefix was assigned to me. In that case, the claimed reason is that the prefix wasn't listed on the AMPR portal.
I tried to clear things up by sending him the LOA from WB6CYT, which he claims that is NOT legitimate, also denied possibility there could a bug in the portal caused this. I have also complied with his demands on even more information including all conversations between me and Brian regarding that the assignment. Eventually he continued to ask for even more personal information without justification, threatening that not complying may cause "close of account".
## Questions
- Has all previous assignment by WB6CYT been overruled? Or am I
singled out?
- What are the current rules on allocation now? A snapshot of the
latest version of ToS is at:
https://web.archive.org/web/20190731094938/https://www.ampr.org/terms-of-ser...
It does not requires personal information beyond ASN addresses.
- What is G1FEF's role in the allocation, which are the rights that
ARDC holds has been delegated to this guy along.
- The holding-the-ID-in-a-photo-of-you practice is pretty common when
dealing with financial institutions and websites frequently deals with fraudsters. Since LIR, RIR, and BGP upstream also requires and validates these ID, Why this is necessary to do it again?
- Is Chris Smith, G1FEF capable of handling sensitive personal data?
He's handling data as natural person, or an legal entity that ARDC approves?
- If there's another change, do anyone with a allocation has to go
through the same process again?
I see that we already have a problem with transparency, now we got bureaucracy? Also it's not my problem that the assignment wasn't added to the portal.
Best Regards,
Quan
On 12/31/19 1:36 AM, Phil Karn via 44Net wrote:
Hi. As you all know, Brian Kantor WB6CYT passed away suddenly last month. Brian did so much for AMPRNet from the very beginning that he'll be impossible to fully replace. We're trying but it's hard, especially since he was a close personal friend.
Chris Smith, G1FEF (chris@g1fef.co.uk) has kindly volunteered to take over Brian's portal work and to handle portal and BGP allocation requests. Please direct queries to him.
73, Phil Karn, KA9Q
President, ARDC
44Net mailing list 44Net@mailman.ampr.org https://mailman.ampr.org/mailman/listinfo/44net
44Net mailing list 44Net@mailman.ampr.org https://mailman.ampr.org/mailman/listinfo/44net
44Net mailing list 44Net@mailman.ampr.org https://mailman.ampr.org/mailman/listinfo/44net
-- Lin Holcomb
Office: +1 404 806 5412 Mobile: +1 404 933 1595 Fax: +1 404 348 4250 _________________________________________ 44Net mailing list 44Net@mailman.ampr.org https://mailman.ampr.org/mailman/listinfo/44net