Comment Period |
Important Information Links |
Open Date: |
5 December 2011 |
Close Date: |
18 March 2012 |
Time (UTC): |
23:59 |
Originating Organization: |
WHOIS Policy Review Team |
Purpose: |
The WHOIS Policy Review Team, constituted under ICANN's Affirmation of Commitments with the U.S. Department of Commerce, publishes its Draft Report and Recommendations [PDF, 1.04 KB] for public comment.
|
Current Status: |
Draft report for public comment |
Next Steps: |
Final Report and Recommendations to be published by 30 April 2012. |
Staff Contact: |
Olof Nordling |
Email: |
This Draft of the ALAC Statement on the WHOIS RT Report was prepared by Carlton Samuels.
Please add your comments/contributions to the Workspace to direct the final Statement.
=============================================================================
Please click here to download a copy of this draft Statement in PDF format.
=============================================================================
The ALAC concurs unanimously with the Review Team’s judgment that the WHOIS construct is broken and we support the tone and tenor of almost all of the twenty (20) recommendations made by Team for relief and/or remedy of existing disabilities. Going into this review process, the ALAC outlined our anticipations in our Statement of March 2011. We are pleased to see that for the most part, our concerns were considered. However, details of the recommendations grouped under “Data Access” invite some residual concerns and for these reasons, we reserve judgment and offer our own perspectives.
The ALAC is pleased with the Review Team’s acknowledgement that this WHOIS policy framework is properly within the purview of the Affirmation of Commitments. In this context, they affirmed our principled position: regardless of the vehicles or conduits used for policy implementation and enforcement, we endorse the equal representation of all ICANN community interests in the development of a WHOIS policy framework and their settled consensus should be reflected in all aspects of WHOIS implementation and enforcement. We therefore welcome the Review Team’s recommendation in favour of ‘a clear, concise and well-communicated’ WHOIS policy that drives its development, thru implementation and enforcement. In this context, we see an expansion in the role that Cross Community Working Groups should play in further WHOIS policy development as a fit and proper response.
We do not anticipate a retreat from these positions: The ALAC believes that the public interest rationale for a WHOIS service and its contextual implementation remains and retains our support; it is absolutely required as a starting point for redress of grievance. We insist there should be no hindrance placed on the ordinary Internet user with regard to access of WHOIS data. In this context, we summarily reject the concept of differentiated access – via so-called white-listed IP addresses – some jurisdictions seem to be proposing as exception to otherwise embargoed WHOIS data under the guise of the ‘privacy’ retention of personal data. The ALAC also reiterates our fulsome support for enforcement of a purposeful WHOIS data accuracy regime without delay.
With respect to privacy and WHOIS, we acknowledge competing views in our community. The arguments intersect at the nexus of several fundamental principles; information rights vs. privacy vs. necessity vs. transparency vs. predictability. In context, this ALAC seeks to espouse a general principle that prioritize and accepts some measure of convergence between competing principles.
We plainly accept the Internet as transnational and a perfect embodiment of the common; meaning a global collection of shared resources to the use and benefit of all of the world’s peoples. The crucial distinction we recognize is that while data or content use is global, regulatory practice and/or enforcement tends to the local. As such, we have long recognized that the cross-border nature of Internet resources makes for persistent jurisdictional problems, especially those that tend to be narrowly nationalistic in outlook. Increasingly, we are witness to the development of regimes for collaboration and concurrent jurisdiction between and among metropolitan countries, especially with matters pertaining to law enforcement. We note the dissonance occasioned by class distinctions between ‘natural’ and ‘legal’ persons in the several jurisdictions…..and all that this implies for the virtual world. It is within reason to accept that even in this context, deception or unfair practices can be accommodated.
We accept that for the virtual world, the Domain Name System allows the connection of each of us to all of us; North and South, East to West. And in context of generic Top Level Domain structures, define a set of common pool resources, inclusive of WHOIS data. In furtherance of the global public interest, the ALAC has a duty of care to speak out and ensure that management or control initiatives for such resources are not determined by the whims of hegemony or the cynical calculations of exceptionalism. We must look beyond the rhetoric.
It cannot be right for a national law or set of national laws to be deemed as superseding all other considerations. And while there is a time-honoured tradition that parties to a contract may choose the legal jurisdiction to which they will submit for binding claims and judgments, we hardly think it useful in this 'one-to-many' relationship of common-pool resources for a claim of suzerainty of any particular national law or, set of laws. It is not unknown for members of a community to cede certain rights to be a part of a community. The Internet remaining as a global commons is worthy. And so we believe in extant case that it is not only politic but right for members of this global community to devise binding WHOIS rules and expect due respect for them from external parties, including governments.
The At-Large is properly mindful of claims to privacy for one or other purpose and willingly accede accommodation for such claims, so long as these do not degrade the ability of any user to effectively seek redress of grievance. Truth be known, what we have are persons, both natural and legal and for whatever reason, wishing to be on the commons but not of the commons. First, we cannot concede that commercial entities should prevail on any claim of a right to privacy. But we would wish to err on the side of caution and acknowledge that for perfectly reasonable political purposes, anonymity is sometimes good and necessary; we concede common cause and vouchsafe the anonymity of the [political] pamphleteer. This aside, we hold that redress begins with knowing who is liable and, where to find them, all relevant protocols observed.
In this context, we should care less whether privacy rights or claims are connected to a natural person or a corporation. In our view, the defining matter/ issue inre the proxy relationship is an acceptance and adoption of certain rules. The ALAC accepts the RAA as fit and proper for enshrining WHOIS requirements. The ALAC further recommends that WHOIS proxies be regularized and privacy registrations accommodated so long as: a) the proxy provider acts on the expressed actual authority of the registrant b) the proxy provider accepts strict liability for the registrant on whose behalf it acts.
The ALAC extends it congratulations to the Review Team for what it considers one of the most exhaustive processes ever enabled to meet inclusion and transparency goals as it sought to explore the views of the entire ICANN community in this very important piece of work.
3 Comments
Carlton Samuels
This Draft of the ALAC Statement on the WHOIS RT Report was prepared by Carlton Samuels.
Please add your comments/contributions to the Workspace to direct the final Statement.
=============================================================================
The ALAC concurs unanimously with the Review Team’s judgment that in the context of gTLDs, the WHOIS construct is broken. And we support the tone and tenor of almost all of the twenty (20) recommendations made by Team for relief and/or remedy of existing disabilities. Going into this review process, the ALAC outlined our anticipations in our Statement of March 2011: https://community.icann.org/display/alacpolicydev/ALAC+Statement+on+the+Whois+Review+Team++March+2011+March+2011\. We are pleased to see that for the most part, our concerns were considered. However, details of the recommendations grouped under “Data Access” invite some residual concerns and for these reasons, we reserve judgment and offer our own perspectives.
The ALAC is pleased with the Review Team’s acknowledgement that this WHOIS policy framework is properly within the purview of the Affirmation of Commitments. In this context, they affirmed our principled position: regardless of the vehicles or conduits used for policy implementation and enforcement, we endorse the equal representation of all ICANN community interests in the development of a WHOIS policy framework and the consensus of their interactions should be reflected in all aspects of WHOIS implementation and enforcement. We therefore welcome the Review Team’s recommendation in favour of ‘a clear, concise and well-communicated’ WHOIS policy that drives its development, thru implementation and enforcement. In this context, we see an expansion in the role that Cross Community Working Groups should play in further WHOIS policy development as a fit and proper response.
We do not anticipate a retreat from these positions: The ALAC believes that the public interest rationale for a WHOIS service and its contextual implementation remains and retains our support; it is absolutely required as a starting point for redress of grievance. We insist there should be no hindrance placed on the ordinary Internet user with regard to access to the data inscribed by the extant WHOIS dataset defined in the RAA. In this context, we summarily reject the concept of differentiated access – via so-called white-listed IP addresses – some jurisdictions seem to be proposing as exception to otherwise embargoed WHOIS data under the guise of the ‘privacy’ retention of personal data.
The ALAC also reiterates our fulsome support for enforcement of a purposeful WHOIS data accuracy regime without delay. We note the voices that say the standard being promoted for WHOIS data accuracy to be measured is 'not achievable'. We do not accept the widely held assumption that implementation of an accuracy regime is as costly or onerous as the community is led to believe. In our view, a stepped approach is both feasible and implementable. In this context, the ALAC endorse a plan for accuracy improvement with a firm timeline to objective.
With respect to privacy and WHOIS, we acknowledge competing views in our community. The arguments intersect at the nexus of several fundamental principles; information rights vs. privacy vs. necessity vs. transparency vs. predictability. In context, this ALAC seeks to espouse a general principle that prioritize and accepts some measure of convergence between competing principles.
We plainly accept the Internet as transnational and a perfect embodiment of the common; meaning a global collection of shared resources to the use and benefit of all of the world’s peoples. The crucial distinction we recognize is that while data or content use is global, regulatory practice and/or enforcement tends to the local. As such, we have long recognized that the cross-border nature of Internet resources makes for persistent jurisdictional problems, especially those that tend to be narrowly nationalistic in outlook. Increasingly, we are witness to the development of regimes for collaboration and concurrent jurisdiction between and among metropolitan countries, especially with matters pertaining to law enforcement. We note the dissonance occasioned by class distinctions between ‘natural’ and ‘legal’ persons in the several jurisdictions…..and all that this implies for the virtual world. It is within reason to accept that even in this context, deception or unfair practices can be accommodated.
We accept that for the virtual world, the Domain Name System allows the connection of each of us to all of us; North and South, East to West. And in context of generic Top Level Domain structures, defines a set of common pool resources, inclusive of WHOIS data. The ALAC cares that management or control initiatives for such resources are not determined by the whims of hegemony or the cynical calculations of exceptionalism. We must look beyond the rhetoric.
It cannot be right for a national law or set of national laws to be deemed as superseding all other considerations. And while there is a time-honoured tradition that parties to a contract may choose the legal jurisdiction to which they will submit for binding claims and judgments, we hardly think it useful in this 'one-to-many' relationship of common-pool resources for a claim of suzerainty of any particular national law or, set of laws. It is not unknown for members of a community to cede certain rights to be a part of a community. The Internet remaining as a global commons is worthy. And so we believe in extant case that it is not only politic but right for members of this global community to devise binding WHOIS rules and expect due respect for them from external parties, including governments.
The At-Large is properly mindful of claims to privacy for one or other purpose and willingly accede accommodation for such claims, so long as these do not degrade the ability of any user to effectively seek redress of grievance. Our Internet knows two classes of persons; construed as 'natural' and 'legal'. For reasons various and sundry, known and unknown, actors from both set wish to be on the commons but not of the commons. First, we cannot concede that those who are engaged in commercial activities should prevail on any claim of a right to privacy. But we would wish to err on the side of caution and acknowledge that for perfectly reasonable purposes, including political ones, anonymity is sometimes good and necessary. The ALAC concedes its interest in safeguarding a space for maintaining anonymity of some users of Internet resources, including that of the [political] pamphleteer. This aside, we hold that redress begins with knowing who is liable and, where to find them, all relevant protocols observed.
In this context, we should care less whether privacy rights or claims are connected to a natural person or a corporation. In our view, the defining matter/ issue inre the proxy relationship is an acceptance and adoption of certain rules. The ALAC accepts the RAA as fit and proper for enshrining WHOIS requirements. The ALAC further recommends that WHOIS proxies be regularized and privacy registrations accommodated so long as: a) the proxy provider acts on the expressed actual authority of the registrant b) the proxy provider accepts strict liability for the registrant on whose behalf it acts.
The ALAC extends it congratulations to the Review Team for what it considers one of the most exhaustive processes ever enabled to meet laudable community inclusion and transparency goals. We look forward to publication of further steps in the process and anticipate our full inclusion in the implementation process for this most important piece of work.
Anonymous
Dear Carlton,
Here are my comments on the draft statement:
"we believe in extant case that it is not only politic but right for members of this global community to devise binding WHOIS rules and expect due respect for them from external parties, including governments"
Well, at a time when even UN resolutions are being laughed at and ignored by governments, do you real expect them to abide to rules drafted by an industrial group like the ICANN community ? Contrary to the -mostly- self-selected 3000 individuals that participate in ICANN policy drafting, governments have a legitimacy, are controlled by their parliament, etc. What I hear is that common people (over here anyway) want more privacy, rather than less. Limiting the right to privacy, as you suggest, to political purposes is very narrow.
"We hardly think it useful in this 'one-to-many' relationship of common-pool resources for a claim of suzerainty of any particular national law or, set of laws. It is not unknown for members of a community to cede certain rights to be a part of a community."
Three remarks, here. This is a not a question of suzerainty of any particular law. Registries and registrars are doing business in a certain legal context, and need to abide to laws applicable to them. If they do not, they are exposing themselves to legal consequences. No industry regulation can change this.
As for the registrant, the need to cede certain fundamental rights to be able to sign a contract (i.e. buy a domain name) is considered void under many jurisdictions. The French word for this is "clause léonine", meaning an unfair provision, damageable to only one party to the contract. I am lacking a correct English translation.
Regarding the concept of "community", it has been a long time since the Internet is no more a "community", much to my regret. It has become a business. We have to think in terms of business rules and regulations. The At-Large is the voice of the consumer part of this business. Among those are customers who purchase domain names. They need fair contracts. I do not think it is the At-Large mission to consider the needs for a totally open WHOIS of a few companies that have a business in chasing spammers. As much as respect their values, I do not think that subcontracting law enforcement to the private sector is doing any good to democracy. Official LEAs have always had access to full WHOIS data, as long as they follow due process.
In short, I can agree on the statement that the WHOIS is broken from a technical point of view. This needs to be addressed. There are several proposals floating around and ICANN would do well to come up with a clear project and calendar for its implementation.
On the privacy perspective, or rather lack of, we have a different approach.
Patrick Vande Walle
Gordon Chillcott
Carleton:
After some thought of my own, I offer this observation:
While I appreciate the argument that there “should be no hindrance placed on the ordinary user with regard to access of WHOIS data”, I am uncomfortable with a statement that suggests a flat rejection of differentiated access. While that differentiation via any “white list” method is probably unwise, I feel that the statement should acknowledge an understanding of the need for some registrant information to be protected from access without cause.
Privacy retention of personal data isn't just a guise; it is increasingly a legal requirement in many jurisdictions.
Regards,
Gordon Chillcott