Home / Blogs

Mandatory Provision of Abuse Contact Information in WHOIS

Don't miss a thing – sign up for CircleID Weekly Wrap newsletter delivered to your inbox once a week.
Udeme Ukutt

An industry professional at Abusix is the backbone behind a proposal to improve and create better mitigation of abuse across different global internet networks. Basically, this introduces a mandatory "abuse contact" field for objects in global Whois databases. This provides a more efficient way for abuse reports to reach the correct network contact. Personally — as a Postmaster for a leading, white-label ISP, I applaud this with great happiness for multiple reasons. I also feel people who handle abuse desks, anti-abuse roles, etc. should closely follow this.

Let's take a look across the internet: we can review various RIRs (Regional Internet Registries) where a proposal has either already been approved, or in progress. Below,

AfriNIC (Africa Region): Proposal draft submitted April 7, 2010. Read more herehere.

ARIN (North America Region): An abuse-POC already exists for Organizational ID identifiers. Read more here.

LACNIC (Latin America and some Caribbean Islands): An "abuse-c:" exists for aut-num, inetnum and inet6num objects. Understand and note that there's no formal documentation on "abuse-c:" in inetnum and inet6num objects, but for documentation on the "abuse-c" in ASN records, see LACNIC Policy Manual (v1.3 - 07/11/2009). Read more here.

RIPE NCC (Europe, the Middle East, and Central Asia): Draft submitted November 8, 2010, which is open for discussion in the hands of RIPE's anti-abuse working group. Read more here.

APNIC (Asia/Pacific Region): "Prop-079" proposal implemented November 8, 2010. Read more here.

This brings me to the main reason for my post: APNIC just recently implemented their proposal about a fortnight ago. Above all, ensuring there's a dedicated abuse contact/department that specifically resolves abuse and security issues will go a long way to limit potential damage and enhance recovery.

MAAWG submitted comments in August 2010 supporting this proposal as well.

By Udeme Ukutt

Related topics: Cybersecurity, Internet Governance, Policy & Regulation, Regional Registries, Web, Whois

 
   

Comments

To post comments, please login or create an account.

Related Blogs

Related News

Explore Topics

Dig Deeper

Afilias

DNS Security

Sponsored by Afilias
Afilias Mobile & Web Services

Mobile Internet

Sponsored by Afilias Mobile & Web Services
Verisign

Cybersecurity

Sponsored by Verisign

Promoted Posts

Now Is the Time for .eco

.eco launches globally at 16:00 UTC on April 25, 2017, when domains will be available on a first-come, first-serve basis. .eco is for businesses, non-profits and people committed to positive change for the planet. See list of registrars offering .eco more»

Boston Ivy Gets Competitive With Its TLDs, Offers Registrars New Wholesale Pricing

With a mission to make its top-level domains available to the broadest market possible, Boston Ivy has permanently reduced its registration, renewal and transfer prices for .Broker, .Forex, .Markets and .Trading. more»

Industry Updates – Sponsored Posts

Attacks Decrease by 23 Precent in 1st Quarter While Peak Attack Sizes Increase: DDoS Trends Report

Major Media Websites Lose Audience Due to Slow Load Times on Mobile

Leading Internet Associations Strengthen Cooperation

i2Coalition to Present Tucows CEO Elliot Noss With Internet Community Leadership Award

DeviceAtlas' Deep Device Intelligence Now Addresses Native App Environment

A Look at How the New .SPACE TLD Has Performed Over the Past 2 Years

Verisign Releases Q4 2016 DDoS Trends Report: 167% Increase in Average Peak Attack from 2015 to 2016

Michele Neylon Appointed Chair Elect of i2Coalition

Verisign Q3 2016 DDoS Trends Report: User Datagram Protocol (UDP) Flood Attacks Continue to Dominate

2016 U.S. Election: An Internet Forecast

Government Guidance for Email Authentication Has Arrived in USA and UK

ValiMail Raises $12M for Its Email Authentication Service

MarkMonitor Supports Brand Holders' Efforts Regarding .Feedback Registry

Don't Gamble With Your DNS

Why .com is the Venture Capital Community's Power Player

Defending Against Layer 7 DDoS Attacks

Understanding the Risks of the Dark Web

New TLD? Make Sure It's Secure

Verisign Releases Q2 2016 DDoS Trends Report - Layer 7 DDoS Attacks a Growing Trend

Miss.Africa Announces 2016, Round II Seed Funding Tech Initiative for Women in Africa