<div dir="ltr">Hi,<div><br></div><div>I am against this proposal unless any other arguments can be made, as I believe that the NCC's resources can be better used doing other things.</div><div>(I would think that this would require quite a large amount of work due to how split the DB and LIR portal are.)</div><div><div><br></div><div>- Cynthia</div></div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Fri, Feb 21, 2020 at 1:28 PM Tore Anderson <<a href="mailto:tore@fud.no">tore@fud.no</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">* Cynthia Revström<br>
<br>
> But it does have something very similar, md5-pw and I really don't see why this is not adequate.<br>
> Just generate a 64 character hex string put it as a password and boom you have an API key.<br>
> <br>
> My question is, how would having a dedicated API key feature help? <br>
<br>
The API keys system in the LIR portal is much easier to use. You can very easily issue and revoke API keys, see which keys are already active, who issued them and when, etc.<br>
<br>
It does not make sense to me for the RIPE database APIs to not participate in this system.<br>
<br>
Again, and to be absolutely clear, I do not propose to remove the MD5-PW authentication method. If you are using it and you are happy with it, then rest assured that this proposal will not take anything away from you.<br>
<br>
Tore<br>
</blockquote></div>