[gnso-rds-pdp-purpose] Purpose sub team

Susan Kawaguchi susank at fb.com
Wed Mar 30 17:45:16 UTC 2016 

Hi Ayden,

Thank you for the summary of the SSAC report below.  If possible could you send to the group the relevant sections that you summarized?  It will be helpful for myself and staff to be able collect all the relevant sections into one document.  If you could simply copy and paste into an email to the sub team.  We will then pull all the relevant sections into the working document.

Your summary will be helpful when we have collected all the relevant sections.
Susan Kawaguchi
Domain Name Manager
Facebook Legal Dept.


From: Ayden Fabien Férdeline <ayden at ferdeline.com<mailto:ayden at ferdeline.com>>
Date: Monday, March 28, 2016 at 12:18 PM
To: Greg Shatan <gregshatanipc at gmail.com<mailto:gregshatanipc at gmail.com>>, "Kiran.Malancharuvil at markmonitor.com<mailto:Kiran.Malancharuvil at markmonitor.com>" <Kiran.Malancharuvil at markmonitor.com<mailto:Kiran.Malancharuvil at markmonitor.com>>
Cc: Susan kawaguchi <susank at fb.com<mailto:susank at fb.com>>, "Gnso-rds-pdp-purpose at icann.org<mailto:Gnso-rds-pdp-purpose at icann.org>" <Gnso-rds-pdp-purpose at icann.org<mailto:Gnso-rds-pdp-purpose at icann.org>>
Subject: Re: [gnso-rds-pdp-purpose] Purpose sub team

Greg, hi-

Thank you for reviewing the bullet points. I accept your edits, but just for clarity, I would like to stress that an unattributed “widely held belief” is different from the SSAC explicitly identifying this use of registration data as being a “legitimate” use case. I'm sure this didn't need clarifying, but I've said it.

Kiran, hi-

I began with this document because it was listed on the wiki<https://urldefense.proofpoint.com/v2/url?u=https-3A__links2.mixmaxusercontent.com_aMjjKHWxnLSD3SEwj_l_DEYSHeAJa8krHqrYn-3Frn-3DISaoNWdnF2dhtEIuF2c1NlI-26re-3Di02bj5iYmB0auF2c1NnI&d=CwMFaQ&c=5VD0RTtNlTh3ycd41b3MUw&r=gvEx8xF7ynrYQ7wShqEr-w&m=SC9tWcg1SgR6WLmDQrnORp-t2h5lLCeNrrQSRLDw29c&s=X0mCLqzzxeKeW1tSYNssI8vgOHuWMPcv7Rb1PJuWMg8&e=> as a key input for informing questions around purpose. I intend on reviewing all of the inputs listed on this page, but started with this document simply because I hadn't stumbled across it before. There were no ulterior motives here; I plan on reviewing the EWG Recommendations this week. If there are any other inputs you would suggest I read, I will be sure to review them too. Thanks.

Best wishes,

Ayden



On Mon, Mar 28, 2016 at 7:52 PM, Greg Shatan <gregshatanipc at gmail.com<mailto:gregshatanipc at gmail.com>> wrote:
Edited below.

Greg


On Mon, Mar 28, 2016 at 12:46 PM, Ayden Fabien Férdeline <gnso-rds-pdp-purpose at icann.org<mailto:gnso-rds-pdp-purpose at icann.org>> wrote:
Hello all,

Thank you to Susan for setting out the approach we will take in our sub-team. I will begin this exercise by tabling “WHOIS: Blind Men and an Elephant<https://urldefense.proofpoint.com/v2/url?u=https-3A__links5.mixmaxusercontent.com_aMjjKHWxnLSD3SEwj_l_JHXwtM1x9354tdJND-3Frn-3DIyZy9mLu5WYjlGQlN3bwJXdw1CckBXLzRmct82cudkI-26re-3DIyZy9mLu5WYjlGQlN3bwJXdw1CckBXLzRmct82cudkI&d=CwMFaQ&c=5VD0RTtNlTh3ycd41b3MUw&r=gvEx8xF7ynrYQ7wShqEr-w&m=SC9tWcg1SgR6WLmDQrnORp-t2h5lLCeNrrQSRLDw29c&s=CHb8OUvJbiKep62V6l-s4IjzuwkufDcmjoToLivY4I4&e=>”, a report from the Security and Stability Advisory Committee (SSAC) in September 2012.

The gist of their report is that there are four current uses of the WHOIS service, two of which the SSAC says are legitimate (law enforcement access to data; security practitioner access to data), and two where it is silent on the question of legitimacy (public access to data; intellectual property owner access to data). I have bullet pointed below the main arguments they raise in relation to the purpose of collecting and maintaining this data:

  *   Terminology:
  *   SSAC disagrees with the term “WHOIS” - prefers three specific terms be used: domain name “registration data,” “access protocol,” and “directory services”.
  *   Data Elements:
  *   The appearance of email addresses guarantees that spam will be delivered to those email addresses.
  *   Purpose:
  *   WHOIS was created to provide a means to make contact information available for what was then a very small (and essentially homogeneous in terms of user community) Internet compared to what exists today.
  *   Today there are four main uses of WHOIS:
     *   Public access to details about a domain name registration.
        *   SSAC
​notes that "It is a widely held belief that the public Internet should have access to domain name registration data."
​
     *   Law enforcement access to details about a domain name registration.
        *   SSAC says this is a legitimate use case.
     *   Intellectual property owner access to details about a domain name registration.
        *   SSAC
​notes that "It is a widely held belief that intellectual property owners should have access to domain name registration data."
​
.
     *   Security practitioner access to details about a domain name registration.
        *   SSAC says this is a legitimate use case.
  *   SSAC would like to see research into why users purchase privacy-proxy services. It has heard that some people do so to hide from law enforcement, but would like to see more research/evidence to validate this point. Privacy-proxy services should not hinder the ability to trace the identity of a domain name registrant.
  *   Access Levels:
  *   SSAC says we need to distinguish between what information is collected and what information is published in an open database. Does not comment any further.
  *   Universality:
  *   Whatever policy is adopted it should be applied universally across all gTLDs.
  *   Accuracy:
  *   Whatever data is collected must be accurate and there must be enforcement and compliance mechanisms in place to support this.

I hope this summary is useful. Please let me know if you would prefer that I summarise reports in a different way as we move forward with the review of past literature.

Best wishes,

Ayden Férdeline

On Fri, Mar 25, 2016 at 11:28 PM, Susan Kawaguchi via gnso-rds-pdp-purpose <gnso-rds-pdp-purpose at icann.org<mailto:gnso-rds-pdp-purpose at icann.org>> wrote:

Hello All,

Thank you for volunteering for the Purpose sub team.

This is a list of all that have volunteered -  Carlton Samuels, Fabricio Vayra, Susan Prosser, Beth Allegretti, Jim Galvin, Kiran Malancharuvil, Lori Schulman, Vlad Dinculescu, Richard Leaning, Amr Elsadr, Donna Austin, Stephanie Perrin, Tjabbe Bos, Sana Ali, Ayden Ferdeline, Greg Aaron, Jody Kolker, Adrian Cheek, Kathy Kleiman, Chuck Gomes, Maryan Rizinski, Nathalie Coupet, Roger Carney


I look forward to working with you all over the next couple of weeks to collect, consolidate, concisely summarize, and then present inputs and information about the purpose of registration data.

This is a link to the RDS PDP WG document that describes the approach the WG agreed upon  https://community.icann.org/download/attachments/58730879/RDS-PDP-Proposed-Summary-Approach.pdf<https://urldefense.proofpoint.com/v2/url?u=https-3A__community.icann.org_download_attachments_58730879_RDS-2DPDP-2DProposed-2DSummary-2DApproach.pdf&d=CwMBAg&c=5VD0RTtNlTh3ycd41b3MUw&r=gvEx8xF7ynrYQ7wShqEr-w&m=u1EVRiHe_hJc7jxNs5HvrA_j6PFk6zDIgTHzeV5HW-I&s=2ky2gNfugoilw7hdnuB-Li1SPS7b_5IFQFq5Dm1QeEk&e=>

Would any one like to volunteer to start collecting information on purpose of registration data?  I am sure that the RDS PDP WG wiki has resources to start this collection and then we should think of what else should be included.    Once we have started collecting the information I think a sub team conference call to discuss what we are collecting would be helpful.

Any other ideas on how to approach our work?

Looking forward to the discussion.

Susan Kawaguchi
Domain Name Manager
Facebook Legal Dept.


_______________________________________________
gnso-rds-pdp-purpose mailing list
gnso-rds-pdp-purpose at icann.org<mailto:gnso-rds-pdp-purpose at icann.org>
https://mm.icann.org/mailman/listinfo/gnso-rds-pdp-purpose<https://urldefense.proofpoint.com/v2/url?u=https-3A__mm.icann.org_mailman_listinfo_gnso-2Drds-2Dpdp-2Dpurpose&d=CwMFaQ&c=5VD0RTtNlTh3ycd41b3MUw&r=gvEx8xF7ynrYQ7wShqEr-w&m=SC9tWcg1SgR6WLmDQrnORp-t2h5lLCeNrrQSRLDw29c&s=2bgwVrb6q2slxYZtBl6HEpv20EH07NcDrODipFhgGDI&e=>


Ayden Férdeline
+44.77.8018.7421<tel:%2B44.77.8018.7421>



_______________________________________________
gnso-rds-pdp-purpose mailing list
gnso-rds-pdp-purpose at icann.org<mailto:gnso-rds-pdp-purpose at icann.org>
https://mm.icann.org/mailman/listinfo/gnso-rds-pdp-purpose<https://urldefense.proofpoint.com/v2/url?u=https-3A__mm.icann.org_mailman_listinfo_gnso-2Drds-2Dpdp-2Dpurpose&d=CwMFaQ&c=5VD0RTtNlTh3ycd41b3MUw&r=gvEx8xF7ynrYQ7wShqEr-w&m=SC9tWcg1SgR6WLmDQrnORp-t2h5lLCeNrrQSRLDw29c&s=2bgwVrb6q2slxYZtBl6HEpv20EH07NcDrODipFhgGDI&e=>



Ayden Férdeline
+44.77.8018.7421
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mm.icann.org/pipermail/gnso-rds-pdp-purpose/attachments/20160330/92c4a6c6/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: attachment-1.gif
Type: image/gif
Size: 43 bytes
Desc: attachment-1.gif
URL: <http://mm.icann.org/pipermail/gnso-rds-pdp-purpose/attachments/20160330/92c4a6c6/attachment-1-0001.gif>

More information about the gnso-rds-pdp-purpose mailing list