Skip to main content
  • RFC Production Center management transition

    After an extensive review of recent developments in the RFC Editor function, the IETF Administration LLC (IETF LLC) and Association Management Solutions LLC (AMS) have agreed that the IETF LLC will assume management of existing RFC Production Center (RPC) staff, under an Employer of Record arrangement with AMS, the employer of the RPC team.

    5 Jan 2025
  • Workshop on the Decentralization of the Internet at ACM CoNEXT 2024

    The recent Decentralization of the Internet (DIN) workshop at ACM CoNEXT-2024 brought together network researchers, law and policy experts, and digital right activists to discuss the consolidation and centralization of the existing Internet applications, services, and infrastructure observed in recent years.

    19 Dec 2024
  • Launch of the IETF Community Survey 2024

    The IETF Community survey is our major annual survey of the whole of the IETF community and is used to inform the actions of IETF leadership throughout the year. The 2024 IETF Community Survey is live and we want to hear from you!

    19 Dec 2024
  • Second IASA2 Retrospective Report

    The IETF Administration LLC (IETF LLC) has now completed the second IETF Administrative Support Activity (IASA 2.0) retrospective. The report was developed with community input and review, and is now available online.

    18 Dec 2024
  • IETF Administration LLC 2025 Draft Budget

    The IETF Administration LLC has prepared its draft budget for 2025 and now seeks community feedback.

    13 Dec 2024

Filter by topic and date

Filter by topic and date

IETF LLC Statement on OFAC Compliance Questions

24 Mar 2021

IETF contributors recently asked the IETF LLC about the implications of complying with the US Treasury Department’s Office of Financial Asset Controls (OFAC).

See:

The sanctions rules managed by the US Treasury Department’s Office of Financial Asset Controls (OFAC) are nuanced and complex; broad statements about them are inevitably oversimplifications. That said, we think it unlikely that OFAC rules would meaningfully inhibit participation in IETF activities by individuals from sanctioned countries, or ever have in the past, as a general matter. OFAC rules focus on transactions and trade. Most IETF activity is fundamentally speech, excepted out from OFAC regulation either explicitly in the OFAC rules themselves or implicitly via U.S. constitutional safeguards.

We are not aware of any instance where OFAC rules have inhibited an individual from participating in the IETF. If such a situation were to arise in the future, we would work the affected individual to seek an appropriate accommodation to enable participation—for example, we could avoid problematic transactions while still engaging in communications, or seek a license from OFAC, or even escalate the issue as a legal matter if we thought that an individual’s right “to seek, receive and impart information and ideas through any media and regardless of frontiers” was being infringed (quoting the U.N. Declaration of Human Rights).

Properly complying with the OFAC regulations—as well as all other applicable laws and regulations—remains a critical task for IETF LLC. Our OFAC policy is designed to ensure our compliance. We do not anticipate that compliance will cause negative impacts on the IETF or its current or potential future new participants.

Recommendation of the IETF LLC to the General Area Dispatch working group and the Internet-Draft authors that asked the initial question.

We have no data to suggest OFAC rules have ever prevented any individual from participating in and contributing to the technical work of the IETF. We predict this will remain true in the future. OFAC rules thus do not appear to be a factor that will lead to a negative impact on the diversity and inclusiveness of the IETF. Further, OFAC regulations are a complex, nuanced topic that is difficult for non-experts to assess, and that defy simple summary treatment. Misstatements about compliance can have consequences. 

Accordingly, we recommend that any IETF groups or individuals focusing on issues of diversity and inclusiveness leave OFAC issues out of scope, given that (a) they are unlikely to negatively impact participation, (b) there is no evidence suggesting it has had an impact in the past, and (c) statements about IETF OFAC compliance are best managed by legal counsel.


Share this page