ICANN/GNSO GNSO Email List Archives

[registrars]


<<< Chronological Index >>>    <<< Thread Index >>>

Re: [registrars] Proliferation of registrar locks

  • To: Marcus Faure <faure@xxxxxxxxxxx>
  • Subject: Re: [registrars] Proliferation of registrar locks
  • From: "Ross Wm. Rader" <ross@xxxxxxxxxx>
  • Date: Mon, 15 Nov 2004 09:58:44 -0500
  • Cc: Nikolaj Nyholm <nikolajn@xxxxxxxxx>, "Paul Lecoultre(CORE secretariat)" <secretariat@xxxxxxxxxxx>, Registrars@xxxxxxxx
  • In-reply-to: <200411151101.iAFB1Npf029652@brian.voerde.globvill.de>
  • Organization: Tucows Inc.
  • References: <200411151101.iAFB1Npf029652@brian.voerde.globvill.de>
  • Reply-to: ross@xxxxxxxxxx
  • Sender: owner-registrars@xxxxxxxxxxxxxx
  • User-agent: Mozilla Thunderbird 0.9 (Windows/20041103)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 15/11/2004 6:01 AM Marcus Faure noted that;

| Well, in that case you should not like the FOA as well. An FOA is not
more
| secure than the authinfo.

I think you are missing my point. The FOA represents explicit
instructions from the registrant - it is the equivalent of a contract.
Auth-info cannot provide this. On the other hand, the FOA doesn't, by
itself, represent that the instructions are coming from an authenticated
source. This is where the auth-info tokens come into play. They really
work together quite well, but you don't need to have auth-info
implemented in order for the FOA to work. There are other ways to
authenticate the registrant.

| Maybe you could explain your point ".com authinfo nightmare" a little
more.

There are no auth-info tokens for .com and .net. Given the confusion
caused by the .org migration, I would expect it to be another two or
three years before it would be safe to rely on a .com auth-info token as
being reliable evidence of identity. We need a solution in the meantime.
Jumping on auth-info in the transfer policy would have left us without a
solution for .com and .net.

| If the policy gives us more security, why have all registrars locked
their
| domains? Even those registars who have not yet put their domains on lock
| will do so soon because the market will drive them to. Is that what the
| transfer policy intended?

I think, in large part, that this trend has been driven by
misinformation fed to the market by the few registrars who put
protecting their marketshare ahead of the welfare of their customers.
Locking isn't a bad thing - in fact, on the whole, its probably a good
thing. Creating mass hysteria with your customers and the media isn't
good for anyone except the very selfish few operators who are
propagating the myths about this new policy.

- --




~                       -rwr



Contact info: http://www.blogware.com/profiles/ross
Skydasher: A great way to start your day
My weblog: http://www.byte.org


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3-nr1 (Windows XP)

iD8DBQFBmMQj6sL06XjirooRAp59AJ9sem+B2pZHwd9/v1Y0dhz6TqNePwCfceCz
G3uBsRq/6io9PoTlHAstaGg=
=4RbX
-----END PGP SIGNATURE-----




<<< Chronological Index >>>    <<< Thread Index >>>