Jump to content

Whois

From ICANNWiki
Revision as of 16:35, 29 December 2015 by Dustin Loup (talk | contribs) (Removing extraneous link)

Whois is a TCP-based query/response protocol which is widely used for querying a database in order to determine the owner of a domain name, an IP address, or an autonomous system number on the Internet.[1]

Overview[edit | edit source]

Whois (pronounced as the phrase Who is) represents a protocol that is mainly used to used to find details and information about domain names, networks and hosts. The Whois records contain data referring to various organizations and contacts related to the domain names. The Whois protocols operate by means of a server where anyone is allowed to connect and create a query; the Whois server will then respond to this query and end the connection.[2]

Whois History[edit | edit source]

WHOIS was initially established to provide information for resolving technical issues with ARPANET. As the Internet grew and became commercialised, the new uses of WHOIS began to emerge, such as tracking abusive practices, attempting to purchase the domain from the owner and to discover registrant information in cases of potential trademark infringement.[3]

The conception of WHOIS came in 1982, when Ken Harrenstien submitted RFC-812 to the IETF, which created the protocol for ARPANET's directory service.[4] In 1985, this RFC-812 was obsoleted by RFC-954. which made minor expansions and updates to the WHOIS service, also known as NICNAME at the time.[5]

In 1998, when ICANN was created, it inherited the WHOIS protocol and the existing TLDS, including .com, .org and .net.[6] Network Solutions acted as the sole manager of these gTLDs, so the WHOIS system acted as a centralized query-based server.

In 1999, to promote competition in the gTLD market, ICANN created registrars. In order to create competitive fairness, ICANN made .com a thin registry, meaning they hold limited registrant data, with complete data held by the registrar.

The specifications from RFC-954 remained intact, until 2004 when the IETF published RFC 3912, which removed information no longer relevant to today's internet. Additionally, this update outlined shortcomings in the WHOIS system, such as internationalisation and security considerations.[7]

WHOIS Issues[edit | edit source]

How to maintain both a privacy secure and safe Whois system, and an accurate database for contacts for any domain registrant, has been one of the most intractable issues at ICANN. Whois is one of 4 issues areas that is subject to Independent Review under ICANN's Affirmation of Commitments with the U.S. Government.[8] At ICANN 45 in Toronto, the fist opening ceremony address by new ICANN CEO, Fadi Chehadé, he memorably said that the Whois problem should not have been drawn out for 12 years and should not be a difficult problem to solve.[9][10]

In late 2012, a senior executive at ICANN was brought in to focus exclusively on Whois.[8]

Whois Purpose[edit | edit source]

The Internet has become an essential key for commerce activities and a wide source of information for worldwide users; and the Whois represents a database where essential contact information is found and updated.[11] Apart from finding information about the domain name or executing the queries created on the server, the Whois also:

  • Ensures support for security and stability over the Internet
  • Determines a domain name's registration status
  • Ensures restrictive use of information communication technology
  • Enforces laws at national and international level under the guidance of authorities during investigations
  • Protects intellectual property and trademarks
  • Ensures the right support for organizations in combat against fraud while complying with relevant laws

Whois and ICANN[edit | edit source]

ICANN's requirements for registered domain names state that the extent of registration data collected in the moment of domain name registration can be accessed. That is, ICANN requires accredited registrars to collect and provide free public access, such as a Whois service, to information regarding the registered domain name and its nameservers and registrar, the date the domain was created and when its registration expires, and the contact information for the registered name holder, the technical contact, and the administrative contact.[12]

Whois Protocol[edit | edit source]

The origin of Whois Protocol is in the ARPANET NICNAME protocol, which was developed based on NAME/FINGER Protocol (discussed in RFC742 from 1977). In 1982, in RFC812, the NICNAME/WHOIS protocol was presented for the first time by Ken Harrenstien and Vic White from SRI International - Network Information Center. While Whois was first used on the Network Control Program, its main use was eventually determined by the standardization of TCP/IP across the ARPNET and Internet.

Whois Replacements/Alternatives[edit | edit source]

Due to shortcomings of the protocol, various proposals exist to augment or replace it. Examples are Internet Registry Information Service (IRIS) as well as the newer proposed IETF working group called WHOIS-based Extensible Internet Registration Data Service (WEIRDS) intended to develop a REST-based protocol.

Thick Whois[edit | edit source]

A Thick Whois Server stores complete and accurate information from all registrars regarding registered domain names and their registrants. This information is available to the registry operator and it can facilitate bulk transfers of all domain names to another registrar in the event of a registrar failure. Thick Whois also enables faster queries.[13]

In November 2011, ICANN Staff issued a Preliminary Issue Report on 'Thick' Whois to determine if the GNSO Council needs to conduct a Policy Development Process (PDP) regarding the Whois requirements made of existing gTLDs.[14] The ICANN community was divided on the issue. In a statement, Verisign said that it will "neither advocate for nor against the initiation of a PDP." The company also argued that its Whois model for .com, .net, .name and .jobs is effective but if the internet community and its customers believed that thick Whois is a better, it will respect and implement the policy. The Intellectual Property Constituency supports Whois implementation. The constituency believed that it will help prevent abuses on intellectual property rights and consumer fraud. [15] On the other hand, Wendy Seltzer of the Non-Commercial Users Constituency (NCUC) expressed her concern on the impact of further Whois expansion on privacy rights. She pointed out that, "Moving all data to the registry could facilitate invasion of privacy and decrease the jurisdictional control registrants have through their choice of registrar."[16]

In February 2012, the GNSO Council postponed its decision to determine if it is necessary for Verisign to implement the thick Whois database on .com and all the other gTLDs under its management. The Policy Development Process regarding the issue was also delayed due to the request of the NCUC. All registry operators except Verisign were required to implement Thick Whois.[17] In August, 2012, the GNSO Council, along with two other ICANN constituencies sent a letter to ICANN chastising it for its decision to not require Verisign to implement Thick Whois for the .com TLD.[18]

References[edit | edit source]


External links[edit | edit source]