whois in a post gdpr world
play

Whois in a post-GDPR world - The Norwegian model Hilde Thunem - PowerPoint PPT Presentation

Sep 21, 2023 •256 likes •432 views

Whois in a post-GDPR world - The Norwegian model Hilde Thunem ccNSO Tech Day 22. October 2018 Norid collects and processes customer data To ensure that private individuals and organisations can register Norwegian domain names and maintain

  1. Whois in a post-GDPR world - The Norwegian model Hilde Thunem ccNSO Tech Day 22. October 2018

  2. Norid collects and processes customer data ˃ To ensure that private individuals and organisations can register Norwegian domain names and maintain and transfer the registration within the parameters set by the domain name policy for .no ˃ To manage the Norwegian top-level domain in a way that contributes to robust operation of the internet as an infrastructure 2

  3. The .no data model: What data do we collect from our customers?

  4. At the core: information about the domain registration and the holder Domain holder can be an ˃ organisation or an individual The holder is identified to ˃ Norid by a unique identifier, showing who has the right to use the domain − Organisations: number registered in Brønnøysund Register Centre − Individuals: national identity number. To restrict access to the holder’s national identity number, Norid then creates a unique identifier that the holder uses in our systems and towards the registrar

  5. 2017: evaluating our data model 5

  6. 2018: new model, less data Contact person ˃ name added for holders that are organisations Tech-c must be role ˃ Clean-up ongoing ˃ − 550 000 person objects removed from customer database − May 2018: 130 000 domains with a person as tech contact. Registrars are currently updating them with roles 6

  7. Registration data directory services offered by Norid 7

  8. Why offer a publically available look-up of domain names? The purpose of the registration data directory service is to ˃ contribute to resolving technical problems where individual domains threaten the functionality, security and stability of other domains or the internet as an infrastructure. The purpose is also to give the public an opportunity to contact the domain name holder . The service strengthens confidence in Norwegian domains: ˃ − easy to find point of contact when a domain causes technical problems − possible to find the party responsible for a registration (if organisation) − provides an opportunity to contact the domain holder − contributes to the combating of illegal content on the internet 8

  9. 63% 27% 10% Overview of information available to the public 9

  10. Using the strengths of different channels ˃ Norid offers two different channels to the public where they can access information about a domain registration − whois.norid.no (port 43) − Web interface ˃ The intended target and potential for misuse of each channel influences the form and amount of information that is presented 10

  11. whois.norid.no Intended for the international ˃ technical community − Contribute to resolving technical problems − Well-known format – automated look-ups possible − Each look-up gives only the information requested Reducing potential for misuse ˃ − CAPTCHA not possible and rate limits has limited effect − Gives no info about the domain holder 11

  12. Web interface Intended for the public ˃ − Provides opportunity to contact the domain holder (and resolving technical problems) − A look-up gives all publically available info regarding a domain: registration info, domain holder, registrar, tech-c and technical setup − Emphasize most important info Reducing potential for ˃ misuse − CAPTCHA and rate limits 12

  13. Less information about individuals 13

  14. Domain overview ˃ The web interface also allows look-up of an organisation number − Domain names per registrar − DNSSEC-status ˃ No overview of domains registered by an individual 14

  15. What about layered access? ˃ We already have layered access (sort of) − Registry Part of registration − Registrars «ecosystem» − Public (through two separate services) ˃ Currently considering need for further layers ˃ Changing technology: Whois is dead – long live RDAP? 15

  16. More information ˃ Domain Lookup for .no − Web interface https://www.norid.no/en/domeneoppslag/ − Terms and conditions https://www.norid.no/en/domeneoppslag/vilkar/ ˃ Customer data we process https://www.norid.no/en/personvern/behandling-kundedata/ ˃ The lookup service and privacy https://www.norid.no/en/personvern/domeneoppslag/ 16

  17. Thank you Hilde Thunem hilde.thunem@norid.no

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Development of Open Source RESTful WHOIS Linlin Zhou Why We Need a New WHOIS Protocol WHOIS

Development of Open Source RESTful WHOIS Linlin Zhou Why We Need a New WHOIS Protocol WHOIS

Development of Open Source RESTful WHOIS Linlin Zhou Why We Need a New WHOIS Protocol WHOIS Protocol (RFC 3912) has problems WHOIS has never been internationalized WHOIS was defined for ASCII only WHOIS also has no data model The

316 views • 15 slides
WHOIS status and the impact of GDPR ccNSO meeting Barcelona - 23 October, 2018 Survey Details

WHOIS status and the impact of GDPR ccNSO meeting Barcelona - 23 October, 2018 Survey Details

WHOIS status and the impact of GDPR ccNSO meeting Barcelona - 23 October, 2018 Survey Details Period : June July 2018 Initiator : CENTR Respondents : .at, .au, .be, .ch, .cz, .de, .dk, .ee, .es, .eu, .fi, .fr, .ie, .lu, .me,

367 views • 20 slides
A RESTful Web Service for Whois Andy Newton Chief Engineer, ARIN My Background on Whois

A RESTful Web Service for Whois Andy Newton Chief Engineer, ARIN My Background on Whois

A RESTful Web Service for Whois Andy Newton Chief Engineer, ARIN My Background on Whois Prototyped an LDAP alternative to Whois (RFC 3663) Principal author of CRISP (IRIS) documents RFC 3707, RFC 3981, RFC 3983, RFC 4698, RFC 4991,

558 views • 34 slides
WHOIS Taxonomy Jim Galvin, SSAC Vice Chair 1 Status WHOIS has been discussed for over 10

WHOIS Taxonomy Jim Galvin, SSAC Vice Chair 1 Status WHOIS has been discussed for over 10

WHOIS Taxonomy Jim Galvin, SSAC Vice Chair 1 Status WHOIS has been discussed for over 10 years. The SSAC has issued 5 advisories. From the AoC: ICANN commits to "enforcing its existing policy relating to WHOIS, subject to

270 views • 9 slides
IPC/BC Presentation: Community Work on Accreditation and Access Model for Non-Public WHOIS 26

IPC/BC Presentation: Community Work on Accreditation and Access Model for Non-Public WHOIS 26

IPC/BC Presentation: Community Work on Accreditation and Access Model for Non-Public WHOIS 26 June 2018 ICANN62 GAC Plenary Meeting Agenda Item 8 - GDPR Discussion Agenda | 2 Context & Timeline 25-May-2018 May-2019 New P/P

366 views • 8 slides
GDPR How does it apply to me? What is GDPR? It is the LAW! What is GDPR? The General Data

GDPR How does it apply to me? What is GDPR? It is the LAW! What is GDPR? The General Data

GDPR How does it apply to me? What is GDPR? It is the LAW! What is GDPR? The General Data Protection Regulation Came into force on May 25 th Replaces the current 1995 Data Protection Directive and Data Protection Act (1998). What is GDPR?

570 views • 18 slides
Blockchain and GDPR Blockstack Decentralizing the World Tour, December 18, 2018, Prague Jrn

Blockchain and GDPR Blockstack Decentralizing the World Tour, December 18, 2018, Prague Jrn

Blockchain and GDPR Blockstack Decentralizing the World Tour, December 18, 2018, Prague Jrn Erbguth, Dipl.-Inf., Dipl.-Jur. Consultant Legal Tech, Blockchain, Smart Contracts and Data Protection joern@erbguth.ch +41 787256027 GDPR vs.

964 views • 42 slides
POST MAY 25TH GDPR OBLIGATIONS, GOVERNANCE, AND RESPONSE WEBINAR May 2, 2018 BDO USA, LLP,

POST MAY 25TH GDPR OBLIGATIONS, GOVERNANCE, AND RESPONSE WEBINAR May 2, 2018 BDO USA, LLP,

POST MAY 25TH GDPR OBLIGATIONS, GOVERNANCE, AND RESPONSE WEBINAR May 2, 2018 BDO USA, LLP, a Delaware limited liability partnership, is the U.S. member of BDO International Limited, a UK company limited by guarantee, and forms part of the

589 views • 28 slides
requested WHOIS studies Liz Gasster Senior Policy Counselor February 2011 Goals of WHOIS

requested WHOIS studies Liz Gasster Senior Policy Counselor February 2011 Goals of WHOIS

Update report on GNSO- requested WHOIS studies Liz Gasster Senior Policy Counselor February 2011 Goals of WHOIS studies WHOIS policy has been debated for many years Many competing interests with valid viewpoints GNSO Council

313 views • 7 slides
Brendan Tobin | Head of Growth @ecanvasserapp GDPR and AI: Salvation or Damnation? 1. How are

Brendan Tobin | Head of Growth @ecanvasserapp GDPR and AI: Salvation or Damnation? 1. How are

Brendan Tobin | Head of Growth @ecanvasserapp GDPR and AI: Salvation or Damnation? 1. How are political parties using AI? 2. How are political parties responding to GDPR? 3. How to build a post-GDPR political practice? 4. What is the

233 views • 7 slides
GNSO-requested WHOIS studies Liz Gasster, Senior Policy Counselor June 2010 Goals of WHOIS

GNSO-requested WHOIS studies Liz Gasster, Senior Policy Counselor June 2010 Goals of WHOIS

Update report on GNSO-requested WHOIS studies Liz Gasster, Senior Policy Counselor June 2010 Goals of WHOIS studies WHOIS policy has been debated for many years Many competing interests with valid viewpoints GNSO Council hopes that

159 views • 13 slides
Data minimization & concentration: Intended and unintended consequences of the GDPR Garrett

Data minimization & concentration: Intended and unintended consequences of the GDPR Garrett

garjoh_canuck Data minimization & concentration: Intended and unintended consequences of the GDPR Garrett Johnson (Boston U) Scott Shriver (U Colorado Boulder) GDPR Impact GDPR General Data Protection Regulation EU EEA Brexit GDPR

833 views • 27 slides
Protection Regulation (GDPR) Presentation Structure What is the GDPR? When and where does

Protection Regulation (GDPR) Presentation Structure What is the GDPR? When and where does

Presentation by Michalis Mantzaris, PhD Introduction to General Data Protection Regulation (GDPR) Presentation Structure What is the GDPR? When and where does it apply? Consisting elements and Guideline provision Key changes and

605 views • 23 slides
Overview What is the GDPR? What are the main changes? Risks? What do you need to do

Overview What is the GDPR? What are the main changes? Risks? What do you need to do

Overview What is the GDPR? What are the main changes? Risks? What do you need to do to be compliant? Data Breaches How does the GDPR affect you? Steps to Compliance Summary What is the GDPR? q The EU's General Data

355 views • 17 slides
Update report on GNS O- requested WHOIS studies Liz Gasster S enior Policy Counselor October

Update report on GNS O- requested WHOIS studies Liz Gasster S enior Policy Counselor October

Update report on GNS O- requested WHOIS studies Liz Gasster S enior Policy Counselor October 2010 Goals of WHOIS studies WHOIS policy has been debated for many years Many competing interests with valid viewpoints GNS O

347 views • 8 slides
PROTECTION REGULATIONS May 2018 GDPR What is GDPR What is different Principles

PROTECTION REGULATIONS May 2018 GDPR What is GDPR What is different Principles

GENERAL DATA PROTECTION REGULATIONS May 2018 GDPR What is GDPR What is different Principles of of GDPR How does it effect school How are school preparing How does it effect individual staff How can

475 views • 12 slides
Welcome to 5th Grade Curriculum Night!! with Mrs. Garrity, Mrs. Hurd, Mrs. Smith & Mrs.

Welcome to 5th Grade Curriculum Night!! with Mrs. Garrity, Mrs. Hurd, Mrs. Smith & Mrs.

Welcome to 5th Grade Curriculum Night!! with Mrs. Garrity, Mrs. Hurd, Mrs. Smith & Mrs. Basch Need to Know Information: HOMEWORK Given Monday-ThursdayMinimally given on weekend Should take no more than a half an hour

372 views • 23 slides
Easter 1916; Family Remembrance and Identity: An Irish Studies Journey John MacDonough MA

Easter 1916; Family Remembrance and Identity: An Irish Studies Journey John MacDonough MA

Easter 1916; Family Remembrance and Identity: An Irish Studies Journey John MacDonough MA Dissertation Research Impact of the 1916 Easter Rising on grandchildren of Patrick Rankin; a member of the IRB who took an active part in the

357 views • 14 slides
The International National Trusts Organisation (INTO) brings together organisations from around

The International National Trusts Organisation (INTO) brings together organisations from around

The International National Trusts Organisation (INTO) brings together organisations from around the world, united by their common interest in the conservation and enjoyment of our intangible and tangible heritage - both cultural and natural .

392 views • 8 slides
STATE-BUILDING IN HISTORICAL PERSPECTIVE * o Carles Boix o (Princeton University) o * Prepared for

STATE-BUILDING IN HISTORICAL PERSPECTIVE * o Carles Boix o (Princeton University) o * Prepared for

STATE-BUILDING IN HISTORICAL PERSPECTIVE * o Carles Boix o (Princeton University) o * Prepared for IGC State-building Workshop, Oxford, 27 September 2010 DEFINITIONAL ISSUES Main focus on: 1/ origins of state; 2/ territorial size of states. o

145 views • 12 slides
Manager Workshop Carol Mitchell April 2019 Housekeeping Introductions Table introductions

Manager Workshop Carol Mitchell April 2019 Housekeeping Introductions Table introductions

Deputy & Assistant Manager Workshop Carol Mitchell April 2019 Housekeeping Introductions Table introductions 10 mins! Share your name, organisation and role What do you most want to get from this session? What do we know? Findings

278 views • 27 slides
GENERATION WHAT INGRID DELTENRE, DIRECTOR GENERAL OF EBU 3 MARCH 2017, ROME 1 million

GENERATION WHAT INGRID DELTENRE, DIRECTOR GENERAL OF EBU 3 MARCH 2017, ROME 1 million

GENERATION WHAT INGRID DELTENRE, DIRECTOR GENERAL OF EBU 3 MARCH 2017, ROME 1 million Participants (aged 18-34) 35 countries 146 questions Official partners (UK = Wales) International version Arabic version to be launched

530 views • 15 slides
The Potential Return of Nationalism in Iraq By: Jeffrey Knapp Bemidji State University Why Did

The Potential Return of Nationalism in Iraq By: Jeffrey Knapp Bemidji State University Why Did

The Potential Return of Nationalism in Iraq By: Jeffrey Knapp Bemidji State University Why Did I Pick This Topic ? Iraqs Atmosphere Today Country thats struggling to become an emerging democracy Insurgent violence Strong

230 views • 18 slides
Globalism versus Nationalism Rawi Abdelal April 2019 The past is never dead. Its not even

Globalism versus Nationalism Rawi Abdelal April 2019 The past is never dead. Its not even

Globalism versus Nationalism Rawi Abdelal April 2019 The past is never dead. Its not even past. William Faulkner, Requiem for a Nun Abdelal 2 Three themes, three cycles: A great power transition, still unfolding Borders and the Other

834 views • 52 slides

More recommend