[gnso-rds-pdp-wg] international law enforcement association resolution regarding domain registration data

[Hollenbeck, Scott]

> -----Original Message-----
> From: gnso-rds-pdp-wg-bounces at icann.org [mailto:gnso-rds-pdp-wg-
> bounces at icann.org] On Behalf Of Paul Keating
> Sent: Monday, April 24, 2017 1:26 PM
> To: Andrew Sullivan <ajs at anvilwalrusden.com>; gnso-rds-pdp-wg at icann.org
> Subject: [EXTERNAL] Re: [gnso-rds-pdp-wg] international law enforcement
> association resolution regarding domain registration data
>
> Andrew,
>
> Thank you.  That was helpful.
>
> ""Given this registrant, what other
> domains are registered?" is a solved problem, and has been since the early
> 2000s.²
>
> This is also traceable via alternative means such as consistencies in
> various WHOIS fields such as email, address, name, etc.
>
> Perhaps my comments are off point (and if so I am sorry).  I think an
> issue here is that some people are looking as the issue as being solvable
> with one fell swoop.  In reality finding out answers to questions such as
> yours (above) requires investigation using a plethora of data.  An entire
> industry exists for this purpose and I don¹t think we should be
> considering replacing what has already been existing in the cyber security
> marketplace.

Paul, if we accept this statement:

"I don¹t think we should be considering replacing what has already been existing in the cyber security marketplace"

as a given, we put ourselves in a certain position in terms of the actions we can and cannot recommend. We can make similar statements focused on registry operators, registrars, or any other stakeholder in this space. If we all approach this WG's task with the goal of not changing anything, we're all just wasting our time.

Scott