Browse > Home / Domain News

ICANN: Study on Whois Misuse

Purpose (Brief): This study, conducted by Carnegie Mellon University’s Cylab (CMU), examines the extent to which public Whois contact information for gTLD domain names is misused (i.e. harmful actions such as spam, phishing, identity theft or data theft are taken using gTLD registration data).

The findings from the study provide empirical data needed by the ICANN community to assess community concerns about misused Whois contact information, identify the most common forms of misuse, and highlight the effectiveness of anti-harvesting measures in reducing misuse. The findings will also inform future policy development by ICANN and the GNSO in relation to improvements to the Whois system.

Current Status: This Public Comment solicitation represents an opportunity for the community to consider the study results detailed in this report, provide feedback and request further clarifications. In parallel, ICANN and CMU will conduct Webinars to facilitate feedback by summarizing this study’s purpose, methodology, key findings, and conclusions.
 
Next Steps: CMU will consider all comments submitted to this Public Comment forum during the comment period, incorporate any needed clarifications, and then publish a final version of this Whois Misuse study report. It is expected that this report will inform future GNSO policy development in relation to the Whois system.
 
Detailed Information
Section I: Description, Explanation, and Purpose: 

Having concluded that a comprehensive, objective and quantifiable understanding of key factual issues regarding the gTLD Whois system would benefit future GNSO policy development efforts, the GNSO Council in March 2009 requested ICANN staff to research the feasibility and cost of studying several high priority aspects of Whois. In September 2010, the GNSO Council approved this Whois Misuse study. The purpose of this study was to attempt to prove or disprove the following hypothesis: Public access to WHOIS data leads to a measurable degree of misuse – that is, to actions that cause actual harm, are illegal or illegitimate, or otherwise contrary to the stated legitimate purpose.

The overall study consisted of two related studies. First, the research team surveyed (1) registrants of a representative sample of domain names registered in the top five gTLDs – .biz, .com, .info, .net and .org; (2) registries and registrars associated with registration of the surveyed domain names to identify Whois anti-harvesting mechanisms they employ; and (3) cybercrime researchers and law enforcement organizations to gather examples and statistics related to harmful acts attributed to Whois misuse. Secondly, the research team designed and conducted an experiment to measure Whois misuse by registering 400 domains across 16 registrars, associating unique, synthetic Whois contact information with test domains and monitoring incidents of misuse for six months.

This draft report summarizes the various project activities, methodology, sampled data and findings of the research team.

The GNSO Council is now seeking community review and feedback on the draft report. The purpose of this Public Comment period is to ensure that study results have been communicated clearly and to solicit feedback on desired clarifications (if any).

Section II: Background: 

As part of its effort to develop a comprehensive understanding of the gTLD Whois system, the GNSO Council had chartered a number of Working Groups and Drafting Teams to develop various possible hypotheses for studies to be performed in relation to several key aspects of Whois. These efforts include the Whois Working Group chartered in 2007 and work done in 2008 by the Whois Studies Working Group, the Whois Hypothesis Working Group and the Whois Study Drafting Team. At the GNSO Council’s request, ICANN issued a Request for Proposal (RFP) in September 2009 and related Terms of Reference describing a study to analyze different types of Whois misuse reported by registrants (e.g. spam, phishing, identity theft and data theft), to determine which occurs most often and is most impactful on registrants, and to correlate these findings with anti-harvesting measures that registries and registrars apply to Whois queries (e.g. rate limiting or the use of CAPTCHA phrases).  Because of limitations of particular study methods, the study was to consist of two complementary approaches: a descriptive (survey) and an experimental study. The descriptive study would document and analyze Whois misuse incidents (i.e. harmful acts) that have already occurred, while the experimental study would simulate and record misuse to measure more reliably the impact of making Whois data public and of measures applied to deter data harvesting.

After considering RFP responses received from researchers willing to undertake this Whois Misuse study, in March 2010 ICANN staff reported [PDF, 488 KB] to the GNSO Council that it was not clear whether it would be possible to either quantitatively or qualitatively assess the extent to which Whois misuse is “significant”, although it was possible to measure and categorize many different types of harmful acts often attributed to the use of Whois data. In September 2010, the GNSO Council decided to proceed with the Whois Misuse study in the manner described in ICANN staff’s March report. In April 2011, ICANN announced that CMU had been selected to conduct the study.

The findings from this study are intended to provide empirical data needed to assess the ICANN community’s concerns over the use of public Whois data to conduct harmful acts. This empirical data is intended to inform ICANN ‘s policy work on the Whois system, including future policy development work by the GNSO .

Section III: Document and Resource Links: 
Section IV: Additional Information: 

Whois Misuse Study Terms of Reference [PDF, 167 KB]

ICANN Staff Update on Whois Studies [PDF, 488 KB]

GNSO Council motion to pursue Whois Misuse Study

CMU Cylab selected to perform Whois Misuse study

Additional Whois studies have also been conducted at the request of the GNSO Council, as summarized at: gnso.icann.org/issues/whois/

Comment / Reply Periods
  • Comment Open Date: 27 November 2013
  • Comment Close Date: 27 December 2013 – 23:59 UTC
  • Reply Open Date: 28 December 2013
  • Reply Close Date: 18 January 2014 – 23:59 UTC
 
Important Information Links

Nominet Announces Discontinuing Legal Action Against That Internet Ltd

Nominet announced it has discontinued its legal action against Mr Graeme Wingate and That Internet Ltd in a statement yesterday.

 

The decision was taken by the Nominet Board, and by Lesley Cowley, who were the co-claimants, in order that the company can focus on its programme to evolve the .uk namespace and push forward with the wider development of Nominet.

The company continues to refute entirely the untrue allegations made.

Attempts at mediation, initiated by Nominet, preceded and post-dated the commencement of legal proceedings. Both sides met recently to try to find an amicable solution, but this was unsuccessful.

In their statement, Nominet said they had hoped for a swift resolution to this dispute, and that it has taken several months to get to the position they are in today, with the third attempt at a defence now tabled by the defendant.

Having initiated action, protocol requires the company to pay costs of the other party, which will be assessed at a later hearing if not agreed. However, the company judges that this will be a fraction of the costs (both financial and in management time) of continuing with a long-running and increasingly broad-ranging dispute.

“With a major programme of work underway to transform the .uk namespace, this action is now an unwelcome distraction,” said Cowley. “I refute the allegations entirely, but recognise that a far better use of the team’s time and energy is to focus on steering Nominet safely through a period of unprecedented change.”

AFNIC : 2013 – A year of Slow Growth in the Deployment of IPv6

Afnic,the company behind .FR domain extension revealed that as of 2013, 71.3% of .FR domains are IPv6 compatible,which is a slowdown compared with the previsous year’s dynamic expansion.

 

You can read the announcement after the jump:

“As of 2013, 61.3% of .fr domain names are IPv6 compatible, which is a slowdown compared with the previous year’s dynamic expansion according to Afnic

This month’s AFNIC Domain Name Industry Report focuses on IPv6 deployment and shows that:

2012/2013 was a year of slow growth in the deployment of IPv6 in relation to the dynamic expansion recorded for the 2011/2012 period. The percentage of .fr domain names that have at least one DNS server addressed in IPv6 rose from 40.9% in 2011 to 59.6% in 2012, finally reaching 61.3% in 2013.

Web servers recorded the highest growth (+ 3 points), but with an overall deployment of 7.4% they are still behind mail servers, which are deployed at 10.75%.

Check out here the figure and the details explanations behind it.

Check out EuroDNS here to register your .FR domain name.

 

 

 

 

 

 

 

Paris Hilton Wants Her Domain Back

Paris Hilton, famous for doing almost nothing, is reportedly “going after a Slovenian porn site that’s illegally profiting off her good name and legendary sex tape,” reports the celebrity news website TMZ.

The website — ParisHiltonPornVideos.com — features clips of the Hilton hotel heiress. To gain control of the domain, Hilton has filed a complaint with WIPO requesting the domain name be transferred to her.

Sedo Reports $1 Million in Domain Name Sales! 3DPrinter.net Topped Sedo’s Weekly Sales list at $60,000

3DPrinter.net topped Sedo’s weekly sales chart at $60,000. Highlights also include Routes.com,leading the .COM category at $50,000 and Mozart.co,leading the ccTLD category at $21,000.

 Other notable domain name sales include:

.COM

blabbermouth.com 34,000  USD

financed.com 25,000  USD

bkon.com 17,000  USD

nutritionacademy.com 15,000  USD

dropz.com 14,000  USD

vpal.com 10,000  USD

voog.com 10,000  USD

holdyourfire.com 10,000  USD

instal.com 10,000  EUR

brokercapital.com 9,750  USD

c-change.com 9,750  USD

diamondshield.com 7,500  USD

kiano.com 6,300  USD

87777.com 5,600  USD

fototour.com 5,480  USD

creditconnect.com 5,400  EUR

islamitatil.com 5,000  USD

flashpool.com5,000  USD

investomatic.com   5,000  USD

hiddendoor.com 5,000  USD

gamberro.com5,000  USD

ccTLD

lakeland.cn 10,000  USD

chef.co 7,500  USD

kasino.fi 5,000  EUR

pinoy.ph 4,800  USD

debugger.de 2,797  EUR

calzados.es 2,500  EUR

studio-line.de 2,268  EUR

swa.ch 2,121  EUR

slimming.us 2,000  USD

online-casino.no 2,000  USD

versen-ems.de 1,750  EUR

frg-gmbh.de 1,500  EUR

casino-apps.de 1,500  EUR

nha.ch 1,495  EUR

inc.vc 1,299  USD

copyshop-frankfurt.de 1,200  EUR

stuggi.de 1,200  EUR

contactosgratis.es 1,200  EUR

bordküche.de 1,100  EUR

Other

strategy.net 4,999  EUR

dnamodels.net 3,800  EUR

antioch.org 2,900  USD

myearth.org 2,400  USD

schütt.net 2,200  USD

runr.net 2,000  USD

lowtestosterone.org 1,800  USD

seo-check.info 1,700  EUR

spritzen.org 1,400  EUR

chen.info 1,288  USD

domainnamesearch.net 1,249  USD

picme.net 1,100  USD

tlds.info 1,000  USD

pcos.org 1,000  USD

Check out Sedo.com for more information.

 

Page 2,992 of 3,738
« First
...
10
20
30
2,990
2,991
2,992
2,993
2,994
3,000
3,010
3,020
...
Last »