Home / Blogs

Domain Registrar Hide and Seek

John Levine

In the past year ICANN has been putting a lot more effort into its compliance activities, which is a good thing, since the previous level was, ah, exiguous. That's the good news. The bad news is that while they're paying more attention to misbehaving registrants, the registrars, gatekeepers to the world of domains, have serious issues that ICANN has yet to address.

One straightforward problem is registrar (as opposed to registrant) compliance with the Registrar Accreditation Agreement (RAA). ICANN has sent out quite a few termination notices for failure to comply, but in nearly every case the failure involves not paying their bills. Other than that, the only meaningful enforcement has been their recent attempt to shut down EstDomains for the felony conviction of one of their principals.

Registrar Dynamic Dolphin is run by infamous high volume e-mail deployer Scott Richter. In 2003 Richter pled guilty to felony charges of receiving stolen property. Earlier this year Richter settled a suit with MySpace for $6 million, for spamming MySpace users using phished accounts. Section 5.3.3 of the RAA says that ICANN can terminate a registrar if an officer:

is convicted of a felony or of a misdemeanor related to financial activities, or is judged by a court to have committed fraud or breach of fiduciary duty, or is the subject of a judicial determination that ICANN deems as the substantive equivalent of any of these ...

Why hasn't ICANN acted in this case? ICANN certainly knows about it.

As a separate issue, ICANN gadfly Knujon has discovered that at least 70 accredited registrars are in practice completely anonymous, providing no usable contact information, and in many cases appearing to operate out of countries other than the ones in which they told ICANN they were located. Knujon has not gotten a warm reception from ICANN, who has shut down Knujon founder Bob Bruen whenever he's tried to bring up registrar behavior issues at ICANN events.

While the RAA does not have specific language about publishing contact information, this is ridiculous. As a friend of mine put it, no other form of near-critical infrastructure, either privatized or public, operates with such anonymity. Section 3.7.1 of the RAA provides for the creation of a registrar Code of Conduct, and having a registrar tell its customers who and where they are would be a good start.

ICANN's basic problem here is that it never occurred to them that they would have to enforce their contracts. For a long time there was no compliance at all, and their moves toward it have been slow and painful. At some point they'll have to realize that they are in practice a regulator, every rule or agreement they have is going to be subverted by bad guys trying to make a quick buck, so compliance needs to be integrated into all of their interactions with the people and organizations they regulate.

By John Levine, Author, Consultant & Speaker. More blog posts from John Levine can also be read here.

Related topics: Cybercrime, Domain Names, ICANN, Internet Governance, Law, Policy & Regulation

WEEKLY WRAP — Get CircleID's Weekly Summary Report by Email:

Comments

To post comments, please login or create an account.

Related Blogs

Related News

Topics

Industry Updates – Sponsored Posts

Introducing the Verisign DNS Firewall

In Celebration of Marriage Equality Each New .LGBT Name Donates $20 to the It Gets Better Project

TLD Security, Spec 11 and Business Implications

LogicBoxes Powers .NGO & .ONG Retail and Wholesale Channels for ENSET

Alabama Joins dotVOTE Movement - Announces Alabama.vote for Its Election Site

LogicBoxes Partners With Domains.Green to Setup Retail & Wholesale Channels for .green Domains

New Top-Level Domain .fit Launches, Announces Partnership with the Arnold Sports Festival

Bauer Media Joins Minds + Machines as a .fishing Pioneer

New .vote TLD Used for Arizona Voters

Afilias Releases 160,000+ Names Across 8 New TLDs

Deal Yourself In: .POKER Names Now Open to All

ICANN Business Constituency Elects Elisa Cooper of MarkMonitor as Chair

ICANN's Registry Audits Begin Next Week. Are You Prepared?

DotConnectAfrica on "CONNECTing the Dots: Options for Future Action" at UNESCO, Paris

IBCA Presentation to ICANN GAC on Protection of Geographic Names in New gTLDs

NSW Government Launches .sydney Domain

New .VOTE and .VOTO Domains Now Available

Verisign iDefense 2015 Cyber-Threats and Trends

Verisign Launches New Monthly Blog Series: Top 10 Keywords Registered in .COM and .NET

.LGBT Public Launch Begins Today

Sponsored Topics