NordVPN Promotion

Home / Blogs

Compliance Overhaul a Start

ICANN is clearly changing with the new CEO making immediate changes to the organizational structure and Compliance announcing a number more effective tools and procedures at Sunday’s At-Large Advisory Committee (ALAC) and Regional Leadership Meetings. It seems very ambitious and they will need to be because our year-long research, publicly distributed here for the first time, shows a complete breakdown in ICANN’s Compliance functions on every level possible. Our document, in essence, demonstrates that ICANN has been completely ineffective in handling rampant abuse of the Domain Name System. Now, this analysis does not concern a vague responsibility for ICANN to protect the Internet but rather details specific failings which have allowed spam, malware, drug trafficking, and brand abuse to run rampant with absolute impunity. The related impact cannot be understated as rouge pharmacy websites have recently been tied to counterfeit cancer drugs. Some tainted versions were found to contain Streptococcus. It is not believed that ICANN staff wants the DNS to be abused in such ways and has been clearly frustrated by an internal structure which did not appreciate the importance of the department or devote enough resources to it. Regardless, our analysis shows a staff unclear about actual policy, providing contradictory information, and going silent when asked tough questions. This in general has been a disheartening discovery process.

ICANN Compliance acknowledged in Sunday’s meeting that it had several non-aligned ticketing systems and that complaint submission interfaces without back-end processing or tracking. It is responding to this problem by centralizing its complaint processes and significantly enhancing its reporting capacity. Compliance is obviously trying to clarify its mission and build resources but is ultimately restricted by the fact that the RAA contract as written is unenforceable on WHOIS inaccuracy. At this time correcting this gaping hole in the contract is not part of the current contract negotiations. Any new contract will be just as useless without a change in section 3.7.8.

The new CEO should be applauded for his agenda and welcomed. Compliance should be encouraged in its mission. But as George Santayana famously said “Those who cannot remember the past are condemned to repeat it.” For us not to document these failings, regardless of the current improvements would be irresponsible. Our full research document is here: http://knujon.com/Knujon_ICANN_compliance_eval_09192012.pdf

NORDVPN DISCOUNT - CircleID x NordVPN
Get NordVPN  [74% +3 extra months, from $2.99/month]
By Garth Bruen, Internet Fraud Analyst and Policy Developer

Filed Under

Comments

Comment Title:

  Notify me of follow-up comments

We encourage you to post comments and engage in discussions that advance this post through relevant opinion, anecdotes, links and data. If you see a comment that you believe is irrelevant or inappropriate, you can report it using the link at the end of each comment. Views expressed in the comments do not represent those of CircleID. For more information on our comment policy, see Codes of Conduct.

CircleID Newsletter The Weekly Wrap

More and more professionals are choosing to publish critical posts on CircleID from all corners of the Internet industry. If you find it hard to keep up daily, consider subscribing to our weekly digest. We will provide you a convenient summary report once a week sent directly to your inbox. It's a quick and easy read.

Related

Topics

Cybersecurity

Sponsored byVerisign

New TLDs

Sponsored byRadix

IPv4 Markets

Sponsored byIPv4.Global

DNS

Sponsored byDNIB.com

Domain Names

Sponsored byVerisign

Brand Protection

Sponsored byCSC

Threat Intelligence

Sponsored byWhoisXML API

NordVPN Promotion