<div dir="ltr">Dear Steinar,<div>I would like for all the efforts that you are providing in order to make the At-large community updated about the TRP WG activities in addition to your active participation in this WG.</div><div>No doubt that with the absence of objective Metrics it will be very hard for the community members to decide for a precise lock period and proposals will differ.</div><div>No doubt, in the absence of objective metrics, it will be very difficult for the community members to decide on a precise period of lockdown and the proposals will be multiple.</div><div><br></div><div>In my opinion the lock period in the case of inter registrants transfer should be delegate to the registrants and no need to mention a lock period in the CoR policy since from end-user perspective this period should be reduced at the duration of the management or financial process , so registrants should improve this management process duration in order to avoid a long lock period that will affects the services offered to the end user, a similar recommendations that could be added to the policy CoR without mentioning a static lock period that will handicape all actors and that could evolve in a short period.</div><div><br></div><div>Friendly regards</div><div>Chokri</div><div><br></div><div><br></div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">Le mer. 7 sept. 2022 à 07:14, Steinar Grøtterød via CPWG <<a href="mailto:cpwg@icann.org">cpwg@icann.org</a>> a écrit :<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><div class="msg8538732003650519519">
<div lang="en-NO" style="overflow-wrap: break-word;">
<div class="m_8048812172253905443WordSection1">
<p class="MsoNormal"><span lang="EN-US">Dear all,<u></u><u></u></span></p>
<p class="MsoNormal"><span lang="EN-US"><u></u> <u></u></span></p>
<p class="MsoNormal"><span lang="EN-US">Due to the cancellation of the CPWG meeting on Sep 7, 2022, I will inform the CPWG of the outcome of the CPWG informal letter to the TPR WG.<u></u><u></u></span></p>
<p class="MsoNormal"><span lang="EN-US"><u></u> <u></u></span></p>
<p class="MsoNormal"><span lang="EN-US">From the minutes <u></u><u></u></span></p>
<p class="MsoNormal"><span lang="EN-US"><u></u> <u></u></span></p>
<ul style="margin-top:0cm" type="disc">
<li class="MsoNormal" style="color:black">Update from Steiner on the At-Large summary of the CPWG discussion on Change of Registrant policy. See attached.<u></u><u></u></li><ul style="margin-top:0cm" type="circle">
<li class="MsoNormal" style="color:black">Had a fruitful discussion last week on the CPWG call.<u></u><u></u></li><li class="MsoNormal" style="color:black">Based on that discussion, if we are going to change anything on the transfer lock the CPWG would like some statistics/data supporting removing that part of the policy. But we don’t have any
statistics. If we will have transfer lock period it might be reduced to less than 60 days. Specifically: “Input to the discussion were mostly connected to the question whether the present 60-days transfer lock after a change of registrant data is preventing
domain name hijacking. Further - the majority of the CPWG attendees requested data about the volume of hijacked domain names. These statistics - if available, may indicate if the transfer lock after a change of registrant is needed. The discussion also covered
whether a transfer lock is needed for mitigation of domain name hijacking.”<u></u><u></u></li></ul>
<li class="MsoNormal" style="color:black">Discussion: <u></u><u></u></li><ul style="margin-top:0cm" type="circle">
<li class="MsoNormal" style="color:black">Wonder if Compliance has some data?<u></u><u></u></li><li class="MsoNormal" style="color:black">Registrars have indicated that they don’t have data.<u></u><u></u></li><li class="MsoNormal" style="color:black">Without data we should remove it.<u></u><u></u></li><li class="MsoNormal" style="color:black">From staff re: question about data: Compliance has provided data related to complaints about the lock itself in Phase 1A, but not specific enough in terms of hijacking. As to data to “prove”
that a lock is necessary or not, we don’t have that level of breakdown/tracking to speak to that issue.<u></u><u></u></li><li class="MsoNormal" style="color:black">Compliance tracks transfer complaints in general, but does not break down to “inter registrar" vs. “COR”.<u></u><u></u></li><li class="MsoNormal" style="color:black">The best you can get is the NACK statistics from the Open Data Initiative, but only limited years and not recent. Does show significant use of the NACK, but can’t correlate it to hijacking.<u></u><u></u></li><li class="MsoNormal" style="color:black">Not sure that we can get valuable data as to why there was a NACK in the first place.<u></u><u></u></li><li class="MsoNormal" style="color:black">Registrars offer different levels of security and registrant can pick the model that fits their needs/shop around to get what they are looking for.<u></u><u></u></li><li class="MsoNormal" style="color:black">I also remember most complaints about COR to Compliance were people annoyed by not being to unlock their domains. For hijacked domains, the hijack happened even with COR process (which hijackers
were able to bypass).<u></u><u></u></li><li class="MsoNormal" style="color:black">It’s a very interesting perspective. As registrars can and do provide security that is superior to minimum requirements under the Transfer Policy. Accordingly, it may be that this is the answer;
leave it to registrants to select a registrar with desirable security protocols to prevent unauthorized transfer.<u></u><u></u></li></ul>
</ul>
<p class="MsoNormal"><u></u> <u></u></p>
<p class="MsoNormal"><span lang="EN-US"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="color:black">All recordings for the<span class="m_8048812172253905443apple-converted-space"> </span><b>Transfer Policy Review PDP WG</b><span class="m_8048812172253905443apple-converted-space"> </span>call held on<span class="m_8048812172253905443apple-converted-space"> </span><b>Tuesday,<span class="m_8048812172253905443apple-converted-space"> </span>06
September 2022<span class="m_8048812172253905443apple-converted-space"> </span>at 16:00 UTC</b><span class="m_8048812172253905443apple-converted-space"> </span>can be found<span class="m_8048812172253905443apple-converted-space"> </span>on the<span class="m_8048812172253905443apple-converted-space"> </span></span><a href="https://community.icann.org/x/BwVpD" title="https://community.icann.org/x/BwVpD" target="_blank">agenda
wiki page </a><span style="color:black">(attendance included)<span class="m_8048812172253905443apple-converted-space"> </span>and the<span class="m_8048812172253905443apple-converted-space"> </span></span><a href="https://urldefense.com/v3/__https:/gnso.icann.org/en/group-activities/calendar/2022__;!!PtGJab4!vZdE84iVM-1QJ1D7deBk7YLs762A0a7CKZCW9WEuS-kwSDVItUTQIDSY2VVe4xM40A6qESvEAw$" title="https://urldefense.com/v3/__https:/gnso.icann.org/en/group-activities/calendar/2022__;!!PtGJab4!vZdE84iVM-1QJ1D7deBk7YLs762A0a7CKZCW9WEuS-kwSDVItUTQIDSY2VVe4xM40A6qESvEAw$" target="_blank"><span style="color:rgb(0,112,192)">GNSO
Master calendar</span><span class="m_8048812172253905443apple-converted-space"><span style="text-decoration:none"> </span></span></a><span style="color:rgb(0,112,192)">.</span></p>
<p class="MsoNormal"><u></u> <u></u></p>
<p class="MsoNormal"><span lang="NO-BOK">Regards,<u></u><u></u></span></p>
<p class="MsoNormal"><span lang="NO-BOK"><u></u> <u></u></span></p>
<p class="MsoNormal"><span lang="NO-BOK">Steinar Grøtterød<u></u><u></u></span></p>
</div>
</div>
_______________________________________________<br>
CPWG mailing list<br>
<a href="mailto:CPWG@icann.org" target="_blank">CPWG@icann.org</a><br>
<a href="https://mm.icann.org/mailman/listinfo/cpwg" rel="noreferrer" target="_blank">https://mm.icann.org/mailman/listinfo/cpwg</a><br>
<br>
_______________________________________________<br>
By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (<a href="https://www.icann.org/privacy/policy" rel="noreferrer" target="_blank">https://www.icann.org/privacy/policy</a>) and the website Terms of Service (<a href="https://www.icann.org/privacy/tos" rel="noreferrer" target="_blank">https://www.icann.org/privacy/tos</a>). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.</div></blockquote></div>