Re: [DNSOP] Proposal: Whois over DNS
John Bambenek <jcb@bambenekconsulting.com> Tue, 09 July 2019 16:42 UTC
Return-Path: <jcb@bambenekconsulting.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6609812068D for <dnsop@ietfa.amsl.com>; Tue, 9 Jul 2019 09:42:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.298
X-Spam-Level:
X-Spam-Status: No, score=-4.298 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=bambenekconsulting.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id v52Avv0WXeYy for <dnsop@ietfa.amsl.com>; Tue, 9 Jul 2019 09:42:40 -0700 (PDT)
Received: from chicago.bambenekconsulting.com (chicago.bambenekconsulting.com [99.198.96.122]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id ECC1C1202BB for <dnsop@ietf.org>; Tue, 9 Jul 2019 09:42:24 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=bambenekconsulting.com; s=default; h=Content-Type:In-Reply-To:MIME-Version: Date:Message-ID:From:References:To:Subject:Sender:Reply-To:Cc: Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date: Resent-From:Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=vxLNyJ+5xxqqA/yJsie0KpOD2uQkdtE2TBeHA2v6pCw=; b=G47dTEkeqg+/gHDXCOQfzyfkY k7CE5m3KWxKMKakUaijnpQ94oJCdPQ0DjBUI/SvP3vj8MlhivoPIbaikwBCq6iC5CbWKczPPXWt+T uss+b9JDMu7owPTtYzlAPSMzJ+9JZukXdyV0baow+lCvnqZAPZhhfZA3mpRs3a5JtPOk0=;
Received: from [216.169.1.210] (port=7357 helo=jcb.local) by chicago.bambenekconsulting.com with esmtpsa (TLSv1.2:ECDHE-RSA-AES128-GCM-SHA256:128) (Exim 4.92) (envelope-from <jcb@bambenekconsulting.com>) id 1hktCB-0002kH-C3 for dnsop@ietf.org; Tue, 09 Jul 2019 12:42:23 -0400
To: dnsop@ietf.org
References: <1CA7BF1B-DF50-443B-9219-55259835FE23@bambenekconsulting.com> <233E0AD8-97FE-466C-9B6C-D7A376031C3B@rfc1035.com> <93244821-6C22-457F-BA06-CF43CA9FD12B@bambenekconsulting.com> <F45666C7-181A-4853-897E-40D5C0EA972B@fugue.com> <37daa562-c8a0-ec11-8a3f-ffebfb464d16@bambenekconsulting.com> <CABf5zvKtkVX+1WLoNcjwmff6-KoOxjVxh9cwZYS0YVO4PAVq4w@mail.gmail.com> <CABf5zvLvicDeSEfgkBotwRp=UYpKf3ryp-Cz-T+SjSBA6d8GNg@mail.gmail.com>
From: John Bambenek <jcb@bambenekconsulting.com>
Openpgp: preference=signencrypt
Message-ID: <fd6ab318-65bb-08c1-5e59-343fcc47548d@bambenekconsulting.com>
Date: Tue, 09 Jul 2019 11:42:23 -0500
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.14; rv:60.0) Gecko/20100101 Thunderbird/60.7.2
MIME-Version: 1.0
In-Reply-To: <CABf5zvLvicDeSEfgkBotwRp=UYpKf3ryp-Cz-T+SjSBA6d8GNg@mail.gmail.com>
Content-Type: multipart/alternative; boundary="------------3393E3C3C7C601EF7C2357B6"
Content-Language: en-US
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - chicago.bambenekconsulting.com
X-AntiAbuse: Original Domain - ietf.org
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - bambenekconsulting.com
X-Get-Message-Sender-Via: chicago.bambenekconsulting.com: authenticated_id: jcb@bambenekconsulting.com
X-Authenticated-Sender: chicago.bambenekconsulting.com: jcb@bambenekconsulting.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/8Mz6HnQwZYSeNBeW4FTE1SgRRj8>
Subject: Re: [DNSOP] Proposal: Whois over DNS
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 09 Jul 2019 16:42:45 -0000
I generally agree with this and have no problem deferring to an effort to create a dictionary of registration data elements and agreed upon definitions. I gave serious thought to just making the current proposal have one contact class, I kept several more for consistency with the legacy system, but I'm not married to that. On 7/9/19 11:26 AM, Steve Crocker wrote: > Folks, > > Let me share a somewhat broader perspective. I was chair of the ICANN > board for several years. During that period, I attempted, without > success, to reset the dialog related to whois. After I stepped off > the board in late 2017, I decided to take another run at the problem. > I've been working quietly with a small, excellent group to see if we > can provide some useful tools for assisting the community in thinking > about the policy issues. Our first goal is to provide a policy > framework for expressing the wide variety of policies in this area, > both existing and proposed. We're not quite ready to release this > framework, but it's coming along and I hope to be able to publish it > shortly. That said, I can share a few points. > > 1. "Whois" is a somewhat ill-fitting handle. The policy problems > extend beyond contact data to include quite few other types of > data, some of which are inherently public such as the DNS records, > some of which are inherently extremely sensitive such credit card > numbers, and others which fall somewhere in between such as dates > of registration and expiration. > > I'll also note that WHOIS arose in the days of the Arpanet, prior > to the existence of the domain name system and prior to the > Internet. The admin and tech contacts referred to the people > running the time-shared systems that were hosts on the Arpanet, > and these contacts were published so they could reach each other. > Almost fifty years later and a millionfold expansion, it's not a > surprise the original concepts are not a perfect fit. > > 2. Of the various contacts that are usually published, only the > registrant contact has any real meaning. For most registrations, > the admin and tech contacts have no agreed upon meaning. By "an > agreed upon meaning" I mean an explicit statement of the authority > (what the contact may do) and responsibility (what the contact is > supposed to do) so that both the contact and everyone who accesses > the contact data would share the same understanding. > > One of the most important roles in the entire structure is the > person who has the account with the registrar and therefore has > direct, electronic control of all the data. We use the term > "account holder" for this role. It may or may not be the same as > the registrant. > > Other contact data is occasionally published, e.g. billing > contact, legal contact, etc. While the meaning of these roles is > alluded to in the name, there is usually nothing explicit about > authority and responsibility. > > 3. The policy issues related to all of this are quite tangled. The > registrar and the registrar are the primary parties involved. The > blazingly simple and obvious fact is that neither of these parties > have any trouble with the accuracy or meaning of the data they > share with each other _that are related to the actual process of > registration_. The registrar is primarily concerned with getting > paid and the registrant is primarily concerned with having his > registration active. The trouble comes from the many third > parties who have developed practices and policies related to the > registration data. A full discussion of these multiple parties, > their motivations and needs, and the wide variety of policy issues > requires much more space and attention than is appropriate for > this note and this thread, but a couple of specific points are > relevant and worth emphasizing. > > 4. It's important to separate (a) the definition of the data > elements, (b) the policies governing who should have access to > which data elements, and (c) the access mechanisms. As I said in > an earlier note, the proposal being discussed in this thread, viz > to use DNS to publish contact data, speaks to only a small portion > of the overall problem. Because the proposed mechanism is DNS, > the data will presumably be public and provided at the discretion > of the registrant. This is useful for some purposes, but it > clearly does not address the larger policies issues of allowing > different groups to have differing levels of access to various > types of data. > > 5. With respect to the role of the IETF, I agree the policy issues > belong elsewhere. That said, there is, I believe, a natural role > for the IETF that matches one part of the current proposal. All > parties will benefit if there is a dictionary of the possible > registration data elements. As I suggested in point 1 above, the > relevant data elements include more than just contact data. And > even with respect to contact data, a more precise definition of > the various roles would be quite helpful. > > The distinction implied here is the separation of the definition > of the data elements from the publication mechanism. > > I would strongly support an effort within the IETF to create and > maintain a dictionary of registration data elements. This would > probably be in the form of an IANA-maintained registry, with oversight > from DNSOP. > > Steve > > > _______________________________________________ > DNSOP mailing list > DNSOP@ietf.org > https://www.ietf.org/mailman/listinfo/dnsop
- [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS Bill Woodcock
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS Steve Crocker
- Re: [DNSOP] Proposal: Whois over DNS Patrick Mevzek
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS Bill Woodcock
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS Bill Woodcock
- Re: [DNSOP] Proposal: Whois over DNS Patrick Mevzek
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS Paul Wouters
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS william manning
- Re: [DNSOP] Proposal: Whois over DNS Vittorio Bertola
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS Jim Reid
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS Bjarni Rúnar Einarsson
- Re: [DNSOP] Proposal: Whois over DNS David Waitzman
- Re: [DNSOP] Proposal: Whois over DNS Joe Abley
- Re: [DNSOP] Proposal: Whois over DNS Ted Lemon
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS Rubens Kuhl
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS Paul Vixie
- Re: [DNSOP] Proposal: Whois over DNS Jim Reid
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS Jim Reid
- Re: [DNSOP] Proposal: Whois over DNS Joe Abley
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS Bjarni Rúnar Einarsson
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS Ted Lemon
- Re: [DNSOP] Proposal: Whois over DNS Bjarni Rúnar Einarsson
- Re: [DNSOP] Proposal: Whois over DNS Jim Reid
- Re: [DNSOP] Proposal: Whois over DNS Steve Crocker
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS Ted Lemon
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS Ted Lemon
- Re: [DNSOP] Proposal: Whois over DNS Paul Wouters
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- [DNSOP] Proposal: Whois over DNS Steve Crocker
- Re: [DNSOP] Proposal: Whois over DNS Vittorio Bertola
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS Bjarni Rúnar Einarsson
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS Peter DeVries
- Re: [DNSOP] Proposal: Whois over DNS Ted Lemon
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS Ted Lemon
- Re: [DNSOP] Proposal: Whois over DNS Jim Reid
- [DNSOP] dictionary of registration data elements Jim Reid
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS Brian Dickson
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS George Michaelson
- Re: [DNSOP] Proposal: Whois over DNS Viktor Dukhovni
- Re: [DNSOP] Proposal: Whois over DNS Paul Vixie
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS Paul Vixie
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS Mark Andrews
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS Philip Homburg
- Re: [DNSOP] Proposal: Whois over DNS Jim Reid
- Re: [DNSOP] Proposal: Whois over DNS Philip Homburg
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS Philip Homburg
- Re: [DNSOP] Proposal: Whois over DNS Joe Abley
- Re: [DNSOP] Proposal: Whois over DNS David Conrad
- Re: [DNSOP] Proposal: Whois over DNS John Bambenek
- Re: [DNSOP] Proposal: Whois over DNS Michele Neylon - Blacknight
- Re: [DNSOP] Proposal: Whois over DNS Dr Eberhard W Lisse
- Re: [DNSOP] Proposal: Whois over DNS Michele Neylon - Blacknight