Comment Close Date | Statement Name | Status | Assignee(s) and | Call for Comments | Call for Comments Close | Vote Announcement | Vote Open | Vote Reminder | Vote Close | Date of Submission | Staff Contact and Email | Statement Number |
---|---|---|---|---|---|---|---|---|---|---|---|---|
22.10.2013 | Study on Whois Privacy & Proxy Service Abuse | Adopted |
| 30.09.2013 | 10.10.2013 | 14.10.2013 | 14.10.2013 | 20.10.2013 | 21.10.2013 | 22.10.2013 | Mary Wong policy-staff@icann.org | AL-ALAC-ST-1013-01-00-EN |
(*) Comments submitted after the posted Close Date/Time are not guaranteed to be considered in any final summary, analysis, reporting, or decision-making that takes place once this period lapses.
FINAL VERSION TO BE SUBMITTED IF RATIFIED
Please click here to download a copy of the PDF below.
FINAL DRAFT VERSION TO BE VOTED UPON BY THE ALAC
The National Physical Laboratory Study of Whois Privacy and Proxy Service Abuse tested the following two hypotheses:
- A significant percentage of the domain names used to conduct illegal or harmful Internet activities are registered via privacy or proxy services to obscure the perpetrator’s identity; and
- The percentage of domain names used to conduct illegal or harmful Internet activities that are registered via privacy or proxy services is significantly greater than the percentage of domain names used for lawful Internet activities that employ privacy or proxy services.
It found the first hypothesis to be true, and the second, to be partly true. In other words, while the Study acknowledges the many legitimate uses of privacy and proxy services, it points to the use of such services to hide the identify of the perpetrator engaged in the misuse of malicious use of the Internet.
In its final report, the Whois Policy Review Team recommended that ICANN should regulate and oversee privacy and proxy service providers, possibly through an accreditation scheme, that would strike an appropriate balance between privacy, data protection and law enforcement. As part of developing such an accreditation scheme, registrations under the scheme should include full contact details for the domain name user that are ‘contactable and responsive.’
The 2013 changes to the RAA included a framework for an accreditation scheme for privacy and proxy services. However, the important elements of such a scheme, particularly the balance between the legitimate needs for privacy, data security and law enforcement, are still to be developed.
The ALAC generally welcomed the many changes to the RAA passed by the Board in 2013. However, the ALAC made two recommendations, the importance of which are underlined by this study.
We supported the development of an accreditation scheme for privacy and proxy services and argued they should only be accredited to the extent they meet all relevant RAA requirements (including accuracy and verification of Whois information for the beneficial user of the domain name). We also said that the new requirements for verification of Whois information should apply not only to registrars (and resellers) but to proxy and privacy service providers as well.
The ALAC supports this study and the clear support it provides for the development of a strong privacy and proxy service provider accreditation scheme and for accuracy and verification requirements covering all Whois information, including those who use privacy and proxy service providers.
FIRST DRAFT SUBMITTED
The National Physical Laboratory Study of Whois Privacy and Proxy Service Abuse tested the following two hypotheses:
- A significant percentage of the domain names used to conduct illegal or harmful Internet activities are registered via privacy or proxy services to obscure the perpetrator’s identity; and
- The percentage of domain names used to conduct illegal or harmful Internet activities that are registered via privacy or proxy services is significantly greater than the percentage of domain names used for lawful Internet activities that employ privacy or proxy services.
It found the first hypothesis to be true, and the second, to be partly true. In other words, while the Study acknowledges the many legitimate uses of privacy and proxy services, it points to the use of such services to hide the identify of the perpetrator engaged in the misuse of malicious use of the Internet.
In its final report, the Whois Policy Review Team recommended that ICANN should regulate and oversee privacy and proxy service providers, possibly through an accreditation scheme, that would strike an appropriate balance between privacy, data protection and law enforcement. As part of developing such an accreditation scheme, registrations under the scheme should include full contact details for the domain name user that are ‘contactable and responsive’
The 2013 changes to the RAA included a framework for an accreditation scheme for privacy and proxy services. However, the important elements of such a scheme, particularly the balance between the legitimate needs for privacy, data security and law enforcement, are still to be developed.
The ALAC generally welcomed the many changes to the RAA passed by the Board in 2013. (link to ALAC statement on the RAA changes of 4 June 2013. However, we made two recommendations, the importance of which are underlined by this study.
We supported the development of an accreditation scheme for privacy and proxy services and argued they should only be accredited to the extent they meet all relevant RAA requirements (including accuracy and verification of Whois information for the beneficial user of the domain name). We also said that the new requirements for verification of Whois information should apply not only to registrars (and resellers) but to proxy and privacy service providers as well.
The ALAC supports this study and the clear support it provides for the development of a strong privacy and proxy service provider accreditation scheme and for accuracy and verification requirements covering all Whois information, including those who use privacy and proxy service providers.