[registrars] Privacy & Identity Theft
- To: <registrars@xxxxxxxx>
- Subject: [registrars] Privacy & Identity Theft
- From: "Michael D. Palage" <michael@xxxxxxxxxx>
- Date: Fri, 11 Mar 2005 14:44:18 -0500
- Importance: Normal
- In-reply-to: <ODEMIOJCLOOHCPNOJLPIOEMCACAB.firstname.lastname@example.org>
- Reply-to: <michael@xxxxxxxxxx>
- Sender: owner-registrars@xxxxxxxxxxxxxx
I know privacy and identity theft (wrt domain name hijacking) have been
hotly debated topics recently within the DNS space. Therefore, I thought the
following links regarding US Congressional hearings regarding
protection/theft of personal data would be of interest to the general list.
I believe that registrars, and the information that they gather from their
customers, make the following issue important. For those of you with just a
quick passing interest in this topic, the following article may be of
interest - http://news.com.com/2100-1028_3-5609324.html. Those with a more
detailed interest may wish to review the written testimony, as well as the
RealAudio archives of these hearings, see
I found particularly insightful the comments of Senator Leahy regarding
criminals posing as legitimate businesses to obtain sensitive data. The
Senator's full written comments can be viewed online at:
The troubling events at ChoicePoint, Bank of America and now LexisNexis are
on some of these weaknesses. ChoicePoint's bread-and-butter business
verification and screening to help corporate America "know its customers."
company failed to know its own customers and sold personal information on at
145,000 Americans to criminals posing as legitimate companies.
I think this fact should be considered by the various Whois task forces
regarding any discussion of tiered access.
Michael D. Palage