ICANN working group seeks to kill WHOIS

An ICANN working group is seeking input on a replacement for the current WHOIS system for retrieving details of domain name registrations

An Internet Corporation for Assigned Names and Numbers (ICANN) working group is seeking public input on a successor to the current WHOIS system used to retrieve domain name information.

The Expert Working Group on gTLD Directory Services (EWG) has issued a report (PDF) that recommends a radical change from WHOIS. The working group, which had a clean-slate approach to a new domain name information, was formed "to help resolve the nearly decade-long deadlock within the ICANN community on how to replace the current WHOIS system, which is widely regarded as 'broken.'"

With the current system, client software can retrieve database records from a WHOIS server run by a registrar or registry that typically list details such as administrative and technical contact details for the owner of a domain name, name servers and details of the registration and expiry dates of a domain.

The EWG is proposing a shift to an "aggregated RDS [registration data service] (ARDS) model", whereby most access to domain name registration details would be provided from a central repository. This would mean that operators of WHOIS services would no longer have to provide port 43 access to the public (port 43 is generally used for WHOIS queries).

The copy of data associated with domain names housed in the ARDS would be non-authoritative: Authoritative data would be remain with global top-level domain registries, which would provide "frequent periodic updates" to the ARDS.

Access to the 'live' domain records maintained by gTLD registries would also be possible via the ARDS "upon request and subject to controls to deter overuse or abuse of this option".

"Requestors" – people who want to query the data maintained by ARDS – would have to apply for the right to access domain information.

The EWG's report said that the dramatic centralisation of access to domain information would offer advantages in terms of cutting down abuse, compliance with privacy regulations, and ability for the system to scale.

An ARDS would also offer better handling of more complex searches, make it easier to manage reports of inaccuracies in domain registration and "enable accreditation of requestors qualifying for special purposes (i.e., law enforcement)".

The ARDS would be run by a third-party provider contracted by ICANN.

The EWG also highlighted possible pitfalls of the ARDS approach including possible latency and the security issues posed by having a centralised store of domain data (including increased risk "of insider abuse and external attack").

The working group is currently seeking input on the proposed system.

Tags ICANNdomain names

More about ICANNInternet Corporation for Assigned Names and Numbers

6 Comments

J

1

Ohh I really hope they skip the whos, this will also remove A LOT of spam sites on the internet and spam emails. It should not be aloved to access whois info and if then only per email request or so. No open Whois.

Gary

2

Here's the FLIP side... Many websites don't offer contact info, Not event an email or 800#. It's very frustrating. Regarding my OWN websites. I put privacy protection on websites where I deem in necessary. (End of problem). There is actually MORE of a problem with software that harvests emails right off the site. Personally, I think the Whois database is pretty worthless if you are a marketer

D.

3

This is just another restriction of freedom being imposed on the once open internet. Now websites that contain objectional material or propaganda can hide behind another layer of bureaucratic screening, allowing them to dispense lies among other things, without the average user having the ability to easily check who is the root pervayor and make their own judgement as to its value. I find the excuses to make this change flimsy at best, when other methods could be used to retain security.
Who decides whom is to get this farmed out subcontract; what country will it reside in and who will end up paying for it?

Tristan

4

The WHOIS info is essential to anyone selling/buying domains and websites. I'm sorry, but this is truly the dumbest suggestion in regards to domains so far.

Steve Kinney

5

Restricting WHOIS queries to priveliged parties - presumably law enforcement agencies, domain name registrars, and well funded doman name squatters, front runners and thieves - is the stupidest thing I have heard from ICANN, ever. If their purpose is to empower and support spammers, phishing, impersonation and other crimnal and abusive uses of network space, they picked a very productive move. PLEASE take the survey and say so!

Wolfgang Moecklin

6

"Central registries and nuclear reactors are safe"

Comments are now closed

Queensland Police arrest man for allegedly hacking US gaming developer site

READ THIS ARTICLE
DO NOT SHOW THIS BOX AGAIN [ x ]