Home / Blogs

Mandatory Provision of Abuse Contact Information in WHOIS

Udeme Ukutt

An industry professional at Abusix is the backbone behind a proposal to improve and create better mitigation of abuse across different global internet networks. Basically, this introduces a mandatory "abuse contact" field for objects in global Whois databases. This provides a more efficient way for abuse reports to reach the correct network contact. Personally — as a Postmaster for a leading, white-label ISP, I applaud this with great happiness for multiple reasons. I also feel people who handle abuse desks, anti-abuse roles, etc. should closely follow this.

Let's take a look across the internet: we can review various RIRs (Regional Internet Registries) where a proposal has either already been approved, or in progress. Below,

AfriNIC (Africa Region): Proposal draft submitted April 7, 2010. Read more herehere.

ARIN (North America Region): An abuse-POC already exists for Organizational ID identifiers. Read more here.

LACNIC (Latin America and some Caribbean Islands): An "abuse-c:" exists for aut-num, inetnum and inet6num objects. Understand and note that there's no formal documentation on "abuse-c:" in inetnum and inet6num objects, but for documentation on the "abuse-c" in ASN records, see LACNIC Policy Manual (v1.3 - 07/11/2009). Read more here.

RIPE NCC (Europe, the Middle East, and Central Asia): Draft submitted November 8, 2010, which is open for discussion in the hands of RIPE's anti-abuse working group. Read more here.

APNIC (Asia/Pacific Region): "Prop-079" proposal implemented November 8, 2010. Read more here.

This brings me to the main reason for my post: APNIC just recently implemented their proposal about a fortnight ago. Above all, ensuring there's a dedicated abuse contact/department that specifically resolves abuse and security issues will go a long way to limit potential damage and enhance recovery.

MAAWG submitted comments in August 2010 supporting this proposal as well.

By Udeme Ukutt

Related topics: Internet Governance, Policy & Regulation, Regional Registries, Security, Web, Whois

 
   
WEEKLY WRAP — Get CircleID's Weekly Summary Report by Email:

Comments

To post comments, please login or create an account.

Related Blogs

Related News

Explore Topics

Promoted Post

Boston Ivy Gets Competitive With Its TLDs, Offers Registrars New Wholesale Pricing

With a mission to make its top-level domains available to the broadest market possible, Boston Ivy has permanently reduced its registration, renewal and transfer prices for .Broker, .Forex, .Markets and .Trading. more»

Industry Updates – Sponsored Posts

i2Coalition to Present Tucows CEO Elliot Noss With Internet Community Leadership Award

DeviceAtlas' Deep Device Intelligence Now Addresses Native App Environment

A Look at How the New .SPACE TLD Has Performed Over the Past 2 Years

Verisign Releases Q4 2016 DDoS Trends Report: 167% Increase in Average Peak Attack from 2015 to 2016

Michele Neylon Appointed Chair Elect of i2Coalition

Verisign Q3 2016 DDoS Trends Report: User Datagram Protocol (UDP) Flood Attacks Continue to Dominate

2016 U.S. Election: An Internet Forecast

Government Guidance for Email Authentication Has Arrived in USA and UK

ValiMail Raises $12M for Its Email Authentication Service

MarkMonitor Supports Brand Holders' Efforts Regarding .Feedback Registry

Don't Gamble With Your DNS

Why .com is the Venture Capital Community's Power Player

Defending Against Layer 7 DDoS Attacks

Understanding the Risks of the Dark Web

New TLD? Make Sure It's Secure

Verisign Releases Q2 2016 DDoS Trends Report - Layer 7 DDoS Attacks a Growing Trend

Miss.Africa Announces 2016, Round II Seed Funding Tech Initiative for Women in Africa

How Savvy DDoS Attackers Are Using DNSSEC Against Us

Airpush Chooses DeviceAtlas to Provide Device Awareness to Mobile Ad Network

DeviceAtlas Releases Q2 2016 Mobile Web Intelligence Report, Apple Loses Browsing Market Share

Sponsored Topics