<div dir="ltr"><blockquote style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;padding-left:1ex" class="gmail_quote"><span style="color:rgb(34,34,34);font-family:arial,sans-serif;font-size:12.727272033691406px"> Just look at the whois of some of the domains you have reported in the past, I am sure that you will notice that in most cases, the registrant details are 100% accurate, just not those of the actual registrant. </span></blockquote>
<div><br></div><div class="gmail_default" style="font-family:arial,helvetica,sans-serif;color:rgb(7,55,99)">Actually, I wouldn't agree with that based on the data in our database. That might be true (I don't know) for domain names we've reported to a particular registrar, and it certainly may happen, but I wouldn't agree with that across all registrars. It's certainly the case with some registrations, but definitely not all, and I actually don't think most, in fact. Offhand, I'd say that we see way more completely falsified Whois registrations (the Whois data isn't stolen; it's just falsified -- no such address, etc.) than stolen Whois information. </div>
</div><div class="gmail_extra"><br clear="all"><div><div dir="ltr"><font color="#073763" face="arial, helvetica, sans-serif">John Horton<br>President, LegitScript</font><div> <img src="https://static.legitscript.com/assets/logo-smaller-cdb8a6f307ce2c6172e72257dc6dfc34.png" width="96" height="21"><br>
<div><div><p style="margin:0.0px 0.0px 0.0px 0.0px;font:12.0px Helvetica"><br></p><p style="margin:0px;font-style:normal;font-variant:normal;font-size:12px;line-height:normal;font-family:Helvetica"><b><font color="#444444">Follow</font><font color="#0b5394"> </font><font color="#000000">Legit</font><font color="#0b5394">Script</font></b>: <a href="http://www.linkedin.com/company/legitscript-com" style="font-weight:normal" target="_blank"><font color="#cc0000">LinkedIn</font></a> | <a href="https://www.facebook.com/LegitScript" style="font-weight:normal" target="_blank"><font color="#6aa84f">Facebook</font></a> | <a href="https://twitter.com/legitscript" style="font-weight:normal" target="_blank"><font color="#674ea7">Twitter</font></a> | <a href="https://www.youtube.com/user/LegitScript" style="font-weight:normal" target="_blank"><font color="#bf9000">YouTube</font></a> | <font color="#ff9900"><u><a href="http://blog.legitscript.com" target="_blank">Blog</a></u></font> |<font color="#ff9900"> <font style="font-weight:normal"><a href="https://plus.google.com/112436813474708014933/posts" target="_blank">Google+</a></font></font></p>
</div></div></div></div></div>
<br><br><div class="gmail_quote">On Tue, Mar 18, 2014 at 3:01 AM, Volker Greimann <span dir="ltr"><<a href="mailto:vgreimann@key-systems.net" target="_blank">vgreimann@key-systems.net</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div text="#000000" bgcolor="#FFFFFF">
As you know, accurate whois for abusive domain names equals stolen
whois data. Just look at the whois of some of the domains you have
reported in the past, I am sure that you will notice that in most
cases, the registrant details are 100% accurate, just not those of
the actual registrant. <br>
<br>
If you want to promote identity theft further, this is the ticket...<br>
<br>
Volker<br>
<br>
<br>
<div>Am 17.03.2014 22:19, schrieb John
Horton:<br>
</div><div><div class="h5">
<blockquote type="cite">
<div dir="ltr">
<div class="gmail_default" style="font-family:arial,helvetica,sans-serif;color:#073763">We
also concur with those points. </div>
</div>
<div class="gmail_extra"><br clear="all">
<div>
<div dir="ltr"><font color="#073763" face="arial, helvetica,
sans-serif">John Horton<br>
President, LegitScript</font>
<div> <img src="https://static.legitscript.com/assets/logo-smaller-cdb8a6f307ce2c6172e72257dc6dfc34.png" width="96" height="21"><br>
<div>
<div>
<p style="margin:0.0px 0.0px 0.0px 0.0px;font:12.0px Helvetica">
<br>
</p>
<p style="margin:0px;font-style:normal;font-variant:normal;font-size:12px;line-height:normal;font-family:Helvetica"><b><font color="#444444">Follow</font><font color="#0b5394"> </font><font color="#000000">Legit</font><font color="#0b5394">Script</font></b>: <a href="http://www.linkedin.com/company/legitscript-com" style="font-weight:normal" target="_blank"><font color="#cc0000">LinkedIn</font></a> | <a href="https://www.facebook.com/LegitScript" style="font-weight:normal" target="_blank"><font color="#6aa84f">Facebook</font></a> | <a href="https://twitter.com/legitscript" style="font-weight:normal" target="_blank"><font color="#674ea7">Twitter</font></a> | <a href="https://www.youtube.com/user/LegitScript" style="font-weight:normal" target="_blank"><font color="#bf9000">YouTube</font></a> | <font color="#ff9900"><u><a href="http://blog.legitscript.com" target="_blank">Blog</a></u></font> |<font color="#ff9900"> <font style="font-weight:normal"><a href="https://plus.google.com/112436813474708014933/posts" target="_blank">Google+</a></font></font></p>
</div>
</div>
</div>
</div>
</div>
<br>
<br>
<div class="gmail_quote">On Mon, Mar 17, 2014 at 1:17 PM, <a href="mailto:GBarnett@sgbdc.com" target="_blank">GBarnett@sgbdc.com</a>
<span dir="ltr"><<a href="mailto:GBarnett@sgbdc.com" target="_blank">GBarnett@sgbdc.com</a>></span>
wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div link="blue" vlink="purple" lang="EN-US">
<div>
<p class="MsoNormal"><span>As Val mentioned, I
agree with Todd’s and Steve’s points, and those
noted in Val’s email.</span></p>
<p class="MsoNormal"><span> </span></p>
<p class="MsoNormal"><span>Griffin</span></p>
<p class="MsoNormal"><span> </span></p>
<p class="MsoNormal"><span>Griffin M. Barnett</span></p>
<p class="MsoNormal"><span>Silverberg, Goldman
& Bikoff, LLP</span></p>
<p class="MsoNormal"><span>1101 30<sup>th</sup>
Street NW</span></p>
<p class="MsoNormal"><span>Suite 120</span></p>
<p class="MsoNormal"><span>Washington, DC 20007</span></p>
<p class="MsoNormal"><span><a href="tel:%28202%29%20944-3307" value="+12029443307" target="_blank">(202)
944-3307</a></span></p>
<p class="MsoNormal"><span><a href="http://gbarnett@sgbdc.com" target="_blank"><span style="color:blue">gbarnett@sgbdc.com</span></a></span></p>
<p class="MsoNormal"><span> </span></p>
<p class="MsoNormal"><span> </span></p>
<p class="MsoNormal"><span> </span></p>
<div>
<div style="border:none;border-top:solid #b5c4df 1.0pt;padding:3.0pt 0in 0in 0in">
<p class="MsoNormal"><b><span style="font-size:10.0pt;font-family:"Tahoma","sans-serif"">From:</span></b><span style="font-size:10.0pt;font-family:"Tahoma","sans-serif"">
<a href="mailto:gnso-ppsai-pdp-wg-bounces@icann.org" target="_blank">gnso-ppsai-pdp-wg-bounces@icann.org</a>
[mailto:<a href="mailto:gnso-ppsai-pdp-wg-bounces@icann.org" target="_blank">gnso-ppsai-pdp-wg-bounces@icann.org</a>]
<b>On Behalf Of </b>Valeriya Sherman<br>
<b>Sent:</b> Monday, March 17, 2014 4:09 PM<br>
<b>To:</b> Metalitz, Steven; 'Williams, Todd';
Marika Konings; <a href="mailto:gnso-ppsai-pdp-wg@icann.org" target="_blank">gnso-ppsai-pdp-wg@icann.org</a></span></p>
<div>
<div><br>
<b>Subject:</b> Re: [Gnso-ppsai-pdp-wg] For your
review - updated template Cat B - question 2</div>
</div>
</div>
</div>
<div>
<div>
<p class="MsoNormal"> </p>
<div>
<p class="MsoNormal"><span>I, Jim Bikoff,
David Heasley, and Griffin Barnett agree with
Todd's assessment:
</span></p>
<div>
<p class="MsoNormal"><span> </span></p>
</div>
<div>
<p class="MsoNormal"><span>Contact
information that is ultimately revealed is
valuable only if it is accurate. </span></p>
</div>
<div>
<p class="MsoNormal"><span> </span></p>
</div>
<div>
<p class="MsoNormal"><span>The
validation/verification requirements should
be consistent with the 2013 RAA
requirements, but should go above and beyond
those requirements to
ensure the accuracy of contact
information. </span></p>
</div>
<div>
<p class="MsoNormal"><span> </span></p>
</div>
<div>
<p class="MsoNormal"><span>Registrars
already send an annual Whois Data Reminder
Policy notification to registrants,
reminding them to provide accurate and
up-to-date information. </span></p>
</div>
<div>
<p class="MsoNormal"><span> </span></p>
</div>
<div>
<p class="MsoNormal"><span>Similarly, the
privacy/proxy customer's contact information
should be verified upon initial registration
of the domain name (either by the registrar
or the Privacy/Proxy Service Provider) and
periodically thereafter by automated annual
email re-verification notifications that
require an affirmative response by the P/P
customer. Absence of a response would
trigger a follow-up, reminding the
privacy/proxy customer to provide accurate
and up-to-date information. </span></p>
</div>
<p class="MsoNormal"><span><br>
Regards,</span></p>
<div>
<p class="MsoNormal"><span> </span></p>
<div>
<div>
<div>
<div>
<p class="MsoNormal"><span>Valeriya
Sherman<br>
Silverberg, Goldman & Bikoff,
L.L.P.<br>
1101 30th Street, N.W.<br>
Suite 120<br>
Washington, D.C. 20007<br>
Tel <a href="tel:202.944.2330" value="+12029442330" target="_blank">202.944.2330</a><br>
Cell <a href="tel:303.589.7477" value="+13035897477" target="_blank">303.589.7477</a><br>
<a href="mailto:vsherman@law.gwu.edu" target="_blank"><span style="color:#1155cc">vsherman@sgbdc.com</span></a></span><span></span></p>
</div>
</div>
</div>
</div>
</div>
<div>
<div class="MsoNormal" style="text-align:center" align="center"><span>
<hr size="2" width="100%" align="center">
</span></div>
<div>
<p class="MsoNormal" style="margin-bottom:12.0pt"><b><span style="font-size:10.0pt;font-family:"Tahoma","sans-serif"">From:</span></b><span style="font-size:10.0pt;font-family:"Tahoma","sans-serif"">
<a href="mailto:gnso-ppsai-pdp-wg-bounces@icann.org" target="_blank">gnso-ppsai-pdp-wg-bounces@icann.org</a>
[<a href="mailto:gnso-ppsai-pdp-wg-bounces@icann.org" target="_blank">gnso-ppsai-pdp-wg-bounces@icann.org</a>]
on behalf of Metalitz, Steven [<a href="mailto:met@msk.com" target="_blank">met@msk.com</a>]<br>
<b>Sent:</b> Monday, March 17, 2014 6:13
AM<br>
<b>To:</b> 'Williams, Todd'; Marika
Konings; <a href="mailto:gnso-ppsai-pdp-wg@icann.org" target="_blank">
gnso-ppsai-pdp-wg@icann.org</a><br>
<b>Subject:</b> Re: [Gnso-ppsai-pdp-wg]
For your review - updated template Cat B -
question 2</span><span></span></p>
</div>
<div>
<div>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">I
agree with Todd’s characterization of
the status of this discussion, and that
the questions he highlights are still
open.
</span><span></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"> </span><span></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">Another
aspect of the second question below is
how the p/p service provider should
handle situations in which the contact
information supplied by the customer
cannot be verified. In the parallel
situation involving non-proxy
registrations, the RAA specification
calls either for suspension of the
registration, or “manual verification,”
which is not defined. How should this
apply in the p/p service scenario?
</span><span></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"> </span><span></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">Steve
Metalitz </span><span></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"> </span><span></span></p>
<div>
<div style="border:none;border-top:solid #b5c4df 1.0pt;padding:3.0pt 0in 0in 0in">
<p class="MsoNormal"><b><span style="font-size:10.0pt;font-family:"Tahoma","sans-serif"">From:</span></b><span style="font-size:10.0pt;font-family:"Tahoma","sans-serif"">
<a href="mailto:gnso-ppsai-pdp-wg-bounces@icann.org" target="_blank">gnso-ppsai-pdp-wg-bounces@icann.org</a>
[<a href="mailto:gnso-ppsai-pdp-wg-bounces@icann.org" target="_blank">mailto:gnso-ppsai-pdp-wg-bounces@icann.org</a>]
<b>On Behalf Of </b>Williams, Todd<br>
<b>Sent:</b> Friday, March 14, 2014
4:53 PM<br>
<b>To:</b> Marika Konings; <a href="mailto:gnso-ppsai-pdp-wg@icann.org" target="_blank">gnso-ppsai-pdp-wg@icann.org</a><br>
<b>Subject:</b> Re:
[Gnso-ppsai-pdp-wg] For your review
- updated template Cat B - question
2</span><span></span></p>
</div>
</div>
<p class="MsoNormal"><span> </span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">Thanks
Marika. I missed part of the call on
Tuesday where this may have been
discussed, but I don’t see how the draft
preliminary recommendation follows from
the attached Word document, insofar as
it concludes that p/p customer data
should be validated and verified in a
manner consistent with the requirements
outlined in the 2013 RAA. I thought the
current posture was that the WG has
basically agreed to the 2013 RAA
requirements as a floor, but that there
was not yet agreement on: 1) whether
validation/verification requirements
should go beyond the 2013 RAA; and 2) if
so, how.</span><span></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"> </span><span></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">On
the first question (2013 RAA vs.
“more”), it appears that more of the
responses in the attached argue for
“more” than not. That also seems to
have been an open topic in our email
threads (see attached). Just to
reiterate from that thread, the basic
argument on the “more” side (which I
agree with) is that in order to
partially offset the delay that will
inevitably occur when accessing p/p
data, the “more” should consist of
whatever reasonable
validation/verification steps can be
taken to increase the likelihood that
the information ultimately obtained will
be accurate enough to facilitate
contact. I suppose that if we
ultimately settle on a “reveal”
procedure that is essentially
instantaneous in certain cases (once we
get to discussing “reveal” procedures),
that may mitigate this concern. But
absent assurances on that point, I would
think we need to address it.</span><span></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"> </span><span></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">On
the second question: the attached
appears to include multiple proposals as
to what may or may not ultimately
comprise the “more” (<i>e.g.</i>, email
<u>and</u> phone vs. or; periodic/annual
re-verification vs. re-verification with
information suggesting the contact
information is incorrect; etc.). Have
we debated the relative merits of
those? Are some more likely to be
effective than others? I have my
thoughts, but I’m curious to hear what
everybody else thinks.</span><span></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"> </span><span></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">Thanks
all.</span><span></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"> </span><span></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">Todd.
</span><span></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"> </span><span></span></p>
<div>
<div style="border:none;border-top:solid #b5c4df 1.0pt;padding:3.0pt 0in 0in 0in">
<p class="MsoNormal"><b><span style="font-size:10.0pt;font-family:"Tahoma","sans-serif"">From:</span></b><span style="font-size:10.0pt;font-family:"Tahoma","sans-serif"">
<a href="mailto:gnso-ppsai-pdp-wg-bounces@icann.org" target="_blank">gnso-ppsai-pdp-wg-bounces@icann.org</a>
[<a href="mailto:gnso-ppsai-pdp-wg-bounces@icann.org" target="_blank">mailto:gnso-ppsai-pdp-wg-bounces@icann.org</a>]
<b>On Behalf Of </b>Marika Konings<br>
<b>Sent:</b> Thursday, March 13,
2014 7:04 AM<br>
<b>To:</b> <a href="mailto:gnso-ppsai-pdp-wg@icann.org" target="_blank">gnso-ppsai-pdp-wg@icann.org</a><br>
<b>Subject:</b> [Gnso-ppsai-pdp-wg]
For your review - updated template
Cat B - question 2</span><span></span></p>
</div>
</div>
<p class="MsoNormal"><span> </span></p>
<div>
<p class="MsoNormal"><span style="font-size:10.5pt;font-family:"Calibri","sans-serif"">Dear
All,</span><span></span></p>
</div>
<div>
<p class="MsoNormal"><span style="font-size:10.5pt;font-family:"Calibri","sans-serif""> </span><span></span></p>
</div>
<div>
<p class="MsoNormal"><span style="font-size:10.5pt;font-family:"Calibri","sans-serif"">Following
our call earlier this week, please
find attached the updated template for
Category B – question 2. To facilitate
your review, I've posted below the
draft preliminary recommendation in
which we've aimed to capture the
conversation to date taking into
account the language of the Whois
Accuracy Specification Program of the
2013 RAA. If you are of the view that
this does not accurately capture the
WG's view to date and/or have specific
suggestions for changes / edits,
please share those with the mailing
list. Also, if there are any other
issues that need to be addressed in
relation to this question and/or the
preliminary recommendation, please
share those as well.</span><span></span></p>
</div>
<div>
<p class="MsoNormal"><span style="font-size:10.5pt;font-family:"Calibri","sans-serif""> </span><span></span></p>
</div>
<div>
<p class="MsoNormal"><span style="font-size:10.5pt;font-family:"Calibri","sans-serif"">Best
regards,</span><span></span></p>
</div>
<div>
<p class="MsoNormal"><span style="font-size:10.5pt;font-family:"Calibri","sans-serif""> </span><span></span></p>
</div>
<div>
<p class="MsoNormal"><span style="font-size:10.5pt;font-family:"Calibri","sans-serif"">Marika</span><span></span></p>
</div>
<div>
<p class="MsoNormal"><span style="font-size:10.5pt;font-family:"Calibri","sans-serif""> </span><span></span></p>
</div>
<div>
<p class="MsoNormal"><b><span style="font-family:"Calibri","sans-serif"">Draft
Preliminary Recommendation –
Category B – question 2 (Should
ICANN-accredited privacy/proxy
service providers be required to
conduct periodic checks to ensure
accuracy of customer contact
information; and if so, how?)</span></b><span></span></p>
</div>
<div>
<p class="MsoNormal"><span style="font-size:10.5pt;font-family:"Calibri","sans-serif""> </span><span></span></p>
</div>
<div>
<p class="MsoNormal"><span style="font-family:"Calibri","sans-serif"">The
WG recommends that proxy and privacy
customer data be validated and
verified in a manner consistent with
the requirements outlined in Whois
Accuracy Specification Program of the
2013 RAA. The WG furthermore agrees
that in the cases where validation and
verification of the P/P customer data
was carried out by the registrar,
reverification by the P/P service of
the same, identical, information
should not be required. </span><span></span></p>
<p class="MsoNormal"><span style="font-family:"Calibri","sans-serif""> </span><span></span></p>
<p class="MsoNormal"><span style="font-family:"Calibri","sans-serif"">Similar
to ICANN’s Whois Data Reminder Policy
(<a href="http://www.icann.org/en/resources/registrars/consensus-policies/wdrp" target="_blank">http://www.icann.org/en/resources/registrars/consensus-policies/wdrp</a>),
the P/P provider should be required to
inform the P/P customer annually of
his/her requirement to provide
accurate and up to date contact
information to the P/P provider. If
the P/P provider has any information
suggesting that the P/P customer
information is incorrect (such as P/P
service receiving a bounced email
notification or non-delivery
notification message in connection
with compliance with data reminder
notices or otherwise) for any P/P
customer, the P/P provider must verify
or re-verify, as applicable, the email
address(es). If, within fifteen (15)
calendar days after receiving any such
information, P/P service does not
receive an affirmative response from
the P/P customer providing the
required verification, the P/P service
shall verify the applicable contact
information manually. </span><span></span></p>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
<br>
_______________________________________________<br>
Gnso-ppsai-pdp-wg mailing list<br>
<a href="mailto:Gnso-ppsai-pdp-wg@icann.org" target="_blank">Gnso-ppsai-pdp-wg@icann.org</a><br>
<a href="https://mm.icann.org/mailman/listinfo/gnso-ppsai-pdp-wg" target="_blank">https://mm.icann.org/mailman/listinfo/gnso-ppsai-pdp-wg</a><br>
</blockquote>
</div>
<br>
</div>
<br>
<fieldset></fieldset>
<br>
<pre>_______________________________________________
Gnso-ppsai-pdp-wg mailing list
<a href="mailto:Gnso-ppsai-pdp-wg@icann.org" target="_blank">Gnso-ppsai-pdp-wg@icann.org</a>
<a href="https://mm.icann.org/mailman/listinfo/gnso-ppsai-pdp-wg" target="_blank">https://mm.icann.org/mailman/listinfo/gnso-ppsai-pdp-wg</a></pre>
</blockquote>
<br>
</div></div></div>
<br>_______________________________________________<br>
Gnso-ppsai-pdp-wg mailing list<br>
<a href="mailto:Gnso-ppsai-pdp-wg@icann.org">Gnso-ppsai-pdp-wg@icann.org</a><br>
<a href="https://mm.icann.org/mailman/listinfo/gnso-ppsai-pdp-wg" target="_blank">https://mm.icann.org/mailman/listinfo/gnso-ppsai-pdp-wg</a><br></blockquote></div><br></div>