Home / Blogs

Wither WHOIS!: A New Look At An Old System

Andrew Sullivan

No, that title is not a typo. The WHOIS service and the underlying protocol are a relic of another Internet age and need to be replaced.

At the recent ICANN 43 conference in Costa Rica, WHOIS was on just about every meeting agenda because of two reasons. First, the Security and Stability Advisory Committee put out SAC 051 which called for a replacement WHOIS protocol and at ICANN 43, there was a panel discussion on such a replacement. The second reason was the draft report from the WHOIS Policy Review Team.

This is hardly the first time there has been hand-wringing about WHOIS, especially at ICANN. So what's all the noise about now?

What is WHOIS?

To understand why we have WHOIS at all, a little history is needed. In the ancient pre-history of the Internet was a network called the ARPANET. It was an experimental network and as you might imagine, an important part of running an experimental network is being able to get in touch with the people participating in the experiment when something goes wrong.

Initially, the contact information was maintained at the Network Information Center, and over time, it migrated online. It appeared in the NICNAME/WHOIS service and the protocol was published in RFC 812 in 1982. To give an idea of how long ago that is in Internet terms, the ARPANET didn't officially transition to TCP/IP and DNS didn't exist until 1983.

Because WHOIS was really intended to be a service devoted to finding people's contact information when one needed to reach them, it was also a service designed to be consumed by humans. This made for a very simple protocol with free-form text in replies. In the 1990s — when our contemporary domain name management system came to be with ICANN, registrars, registries, and billions of people online — WHOIS came along for the ride.

People started using the term "WHOIS" to mean the protocol, but also the service (which is sometimes delivered as, for example, a web page), and even the data that you can get out of the service.

The registration data for domain names can be useful. Different parts of the data are useful to different people, but WHOIS cannot make those partial distinctions. Also, WHOIS is anonymous, so not only does everyone get the same data, but the WHOIS service doesn't even know who asked for the data. Because of that, many people who value their privacy simply lie when they enter registration data. That way, their phone numbers or street addresses can't be looked up by just anyone on the Internet.

A different environment, a different tool

The Internet has evolved considerably since WHOIS was specified and we have different problems than we did in those days.  On a network (like the ARPANET) where it was at least theoretically possible to get a list of every person on it, things like spam were not a problem.  Today, we need to be able to tell whether several domains are controlled by the same person in order to combat mail abuse.

And while it might be perfectly appropriate for law enforcement to be able to get your street address under the right circumstance, it isn’t clear that your address needs to be published for more than two billion people to see just so that you can have a domain name. Solving these sorts of problems will be impossible if the Internet community doesn’t settle on a new data access protocol without the limitations of WHOIS.

Work is just getting started and at this week’s IETF meeting, we hope to take another step on this path. We hope others in the ICANN and IETF communities will also work on making this much-needed improvement to the registration landscape.

Dyn was pleased to express its support for the SAC 051 recommendations and a plan to implement them. Dyn Labs is working on prototype versions of WHOIS protocol replacements so that once a new protocol standard is ready to go, we can move quickly to replace the old, less useful service with a new one.

By Andrew Sullivan, Tech Evangelist, Dyn+Oracle

Related topics: DNS, ICANN, Internet Protocol, Policy & Regulation, Privacy, Whois

 
   

Don't miss a thing – get the Weekly Wrap delivered to your inbox.

Comments

There needs to be a way for Phil Howard  –  Mar 28, 2012 10:58 AM PDT

There needs to be a way for contacts to always be contactable.  There's way too much evasion of being contacted going on.  Sure, I presume a lot is due to spam.  But a lot seems to be people that just don't care.  It's like the porno spam I got from 216.101.236.254 recently (that got displayed to a younger member of my family).  The organization responsible for that address simply won't respond.  Nor does their ISP.  They have registered false contact info and other contact info does not work.  Web site complaints go unanswered in some cases, and answered in other cases by people that clearly do not even read the message.  Businesses like these seem to think they are too important to be responsible.

Two things need to be done.  A means to better block the spam should be set up.  This can require verified contact info from those trying to contact others.  And a means to actually shut off services to those that refuse contact needs to be implemented.

Having a better WHOIS is pointless if the information itself is worthless or unusable.

To post comments, please login or create an account.

Related Blogs

Related News

Explore Topics

Dig Deeper

Afilias

DNS Security

Sponsored by Afilias
Verisign

Cybersecurity

Sponsored by Verisign
Afilias Mobile & Web Services

Mobile Internet

Sponsored by Afilias Mobile & Web Services

Promoted Posts

Now Is the Time for .eco

.eco launches globally at 16:00 UTC on April 25, 2017, when domains will be available on a first-come, first-serve basis. .eco is for businesses, non-profits and people committed to positive change for the planet. See list of registrars offering .eco more»

Industry Updates – Sponsored Posts

Verisign Named to the Online Trust Alliance's 2017 Audit and Honor Roll

Leading Internet Associations Strengthen Cooperation

Global Domain Name Registrations Reach 329.3 Million, 2.3 Million Growth in Last Quarter of 2016

i2Coalition to Present Tucows CEO Elliot Noss With Internet Community Leadership Award

Michele Neylon Appointed Chair Elect of i2Coalition

Neustar to be Acquired by Private Investment Group Led by Golden Gate Capital

2016 U.S. Election: An Internet Forecast

Afilias Chairman Jonathan Robinson Wins ICANN's 2016 Leadership Award at ICANN 57

MarkMonitor Supports Brand Holders' Efforts Regarding .Feedback Registry

Don't Gamble With Your DNS

Verisign Releases Q2 2016 DDoS Trends Report - Layer 7 DDoS Attacks a Growing Trend

How Savvy DDoS Attackers Are Using DNSSEC Against Us

Radix Adds Dyn as a DNS Service Provider

Verisign Named to the Online Trust Alliance's 2016 Honor Roll

Dyn Partners with the Internet Systems Consortium to Host Global F-Root Nameservers

Is Your TLD Threat Mitigation Strategy up to Scratch?

Domain Management Handbook from MarkMonitor

US Court Grants DCA Trust's Motion for Preliminary Injunction on .Africa gTLD

What Holds Firms Back from Choosing Cloud-Based External DNS?

United States Court Has Granted an Interim Relief for DCA Trust on .Africa gTLD