Canadian Internet Policy and Public Interest Clinic (CIPPIC)

Search

• 2.1: About Us
• 2.2: CIPPIC Publications
• 2.4: Events & Presentations
• Projects and Cases
  • 2.5.1: Consumer Protection Online
  • 2.5.2: Copyright law reform
  • 2.5.4: File-Sharing Lawsuits
  • 2.5.5: Identity Theft
  • 2.5.6: Lawful Access
  • 2.5.7: On the Identity Trail Project
  • 2.5.8: Other
  • 2.5.9: Privacy
  • 2.5.10: Spyware
  • 2.5.11: Telecom Policy
• FAQs & Resources
  • 2.6.1: Access to Information Laws
  • 2.6.2: ACTA
  • 2.6.3: Behavioural targeting
  • 2.6.4: Bill C-60: Copyright Bill 2005
  • 2.6.5: Bill C-61: Copyright Bill 2008
  • 2.6.7: Biometrics
  • 2.6.8: Broadcast Flag
  • 2.6.9: Copyright Law
  • 2.6.10: Defamation and SLAPPs
  • 2.6.11: Digital Rights Management
  • 2.6.12: Domain Name Disputes

  • Current page is 2.6.13: Domain Names

  • 2.6.15: File Sharing
  • 2.6.16: Internet Accessibility
  • 2.6.17: Identity Theft
  • 2.6.18: Internet Censorship in Public Libraries
  • 2.6.19: Lawful Access
  • 2.6.20: National ID Cards
  • 2.6.21: Net Neutrality
  • 2.6.22: Online Anonymity and John Doe lawsuits
  • 2.6.23: Open Source
  • 2.6.24: Podcasting Legal Guide
  • 2.6.25: Privacy
  • 2.6.26: Public Video Surveillance
  • 2.6.27: RFIDs
  • 2.6.28: Social Networking
  • 2.6.29: Spam
  • 2.6.30: Spyware
  • 2.6.31: Workplace Privacy
  • 2.6.32: Trusted Computing
• 2.7: For Students
• 2.8: Links
• 2.9: Support CIPPIC
• 2.10: uOttawa Law & Technology Program
• 2.11: Contact Us
• 2.12: Privacy Policy
• 2.13: Test Page

Domain names

• Introduction
• Glossary of Terms
• F.A.Q.
• Resources
• Further Reading

---

Introduction

The domain name system (DNS) was created in the early 1980's in order to simplify navigation on the Internet. Before then, each computer on the Internet was identified by a complex set of numbers called an Internet Protocol (IP) address. Now, instead of typing in a complex set of numbers, we type in text-based domain names and the computer takes us to the corresponding IP address. The system is global; to maintain reliability, it has to make sure that no two IP addresses or corresponding domain names are the same. The DNS is thus of critical importance to the way the Internet operates: If it fails, websites and email addresses cannot be located.

Glossary of Terms

Domain Names

The text-based mnemonic address associated with a numerical IP address. For example, 'www.google.com' is the domain name associated with the IP address 216.239.41.99. The 'www' part of the domain name indicates the server, the 'google' part is a name chosen by the site owner and the '.com' part indicates the Domain Name Registry under which the site is registered. Together, they make one domain name.

ICANN

The Internet Corporation for Assigned Names and Numbers (ICANN) is responsible for managing the Domain Name System to ensure that every address is unique and that all users of the Internet can find all valid addresses. It does this by overseeing the distribution of unique IP addresses and domain names. It also ensures that each domain name maps to the correct IP address.

IP Address

A 32-bit numerical address which identifies the sender and receiver of information sent over the Internet. Without a unique IP address, information cannot be sent or received over the Internet.

Mnemonic

A device used to assist in the process of memorization. For example, it is easier to remember the mnemonic domain name 'www.google.com' than it is to remember the IP address 216.239.41.99 which the domain name represents.

Domain Name Registry

An organization with the authority to assign domain names within one or more top level domains. The authority to deal with one or more top level domains is provided by ICANN, the Internet Corporation for Assigned Names and Numbers. Registries are required to make their domain name registrations available to the public through the WHOIS database.

Domain Name Registrar

A company whose business it is to register domain names with a particular registry. Registrars are intermediaries between domain name holders and registries. They charge end users for their registration services and pay a fee to the registries for the right to engage in this business.

Domain Name Registrant

The individual or organization that registers a specific domain name with a Registrar. The registrant then receives the right to use a domain name for a specified period of time after which it can usually be renewed.

Reseller

A person or entity that provides registration services for domain names to the public without being certified as a Registrar by a Registry. The Reseller uses the services of a certified Registrar to have its registration transactions processed.

Top Level Domain (TLD):

The uppermost in the hierarchy of domains, the TLD is identified by the letters which follow the dot in a web address like .com or .ca. Each TLD is administered by a given Registry, under the umbrella of ICANN. There are two categories:

Generic Top Level Domain (gTLD)

A TLD which is global and open to registrants around the world. E.g. .com, .net or .org. Some other new and more limited top level domains include .museum (museums) or .mil (U.S. military). Note that .com is not restricted to commercial entities.

Country Code Top Level Domain (ccTLD)

A two-letter TLD which is associated with a particular country and usually controlled by a national registry. ccTLDs usually require that their registrants be located in that country, unlike gTLDs which are open to anyone. It is possible for a country to cede its rights to a national ccTLD as Tuvalu did with the ccTLD '.tv'.

Uniform Resource Locator (URL):

A string of characters representing the location of a resource on the Internet; also known as a "web address." The first part of the address identifies the protocol being used (usually HTTP) and the second part indicates the domain name attached to an IP address where the resource is located. The URL for CIPPIC's home page, for example, is www.cippic.ca.

F.A.Q.

• What is the Domain Name System (DNS)?
• Who administers the Domain Name System (DNS)?
• What information is collected when registering a domain name?
• What is the WHOIS database?
• What is the WHOIS used for?
• Does my information have to be displayed through WHOIS?
• What are the privacy concerns associated with WHOIS?

What is the Domain Name System (DNS)?

The Domain Name System (DNS) translates domain names to Internet Protocol (IP) addresses. Every computer on the Internet has a unique IP address. For example, if you type "216.239.41.99" into the address bar at the top of your browser, you will be taken to the Google website. Because that number is difficult to remember, we assign a mnemonic name to it. That way, instead of having to remember "216.239.41.99" a user can simply type in "www.google.com".

Who administers the Domain Name System (DNS)?

The domain name system is administered by The Internet Corporation for Assigned Names and Numbers (ICANN). ICANN is primarily responsible for ensuring that IP addresses correspond with the correct domain name and for generic Top Level Domain (gTLD) and country code Top Level Domain (ccTLD) name system management.

The management and distribution of both generic and country code Top Level Domains (TLD) is handled by Registries. For example, the Canadian Internet Registration Authority (CIRA) is responsible for operating the ".ca" ccTLD and VeriSign Global Registry Services manages the operation of the ".com" and ".net" gTLDs.

Currently, there are 12 generic TLDs operated by various Registries. There are various restrictions (set out in the following table) on who may obtain a specific gTLD.

Top level Domain	Restrictions
.com	Unrestricted
.edu	4 Year Universities
.gov	US Government Agencies
.mil	US Military
.net	Unrestricted
.org	Unrestricted
.biz	Businesses
.info	Unrestricted
.aero	Airports
.coop	Cooperatives
.museum	Museums
.pro	Certified Professionals

There are 247 country code TLDs. The requirements for obtaining ccTLD vary from country to country. The Canadian presence requirements are outlined by CIRA.

Domain names are generally distributed by Registrars to Registrants, who can be individuals or organizations. The Registrar keeps records of the Registrants' contact information, submits the technical information to the Registry and publishes the contact information of Registrants through WHOIS.

Registrants may also obtain domain names through Resellers. Resellers are organizations are not certified as a Registrar, but instead act as an intermediary between the Registrant and the Registrar. Typically, Resellers offer value added services, such as web hosting, URL forwarding, email forwarding, and search engine listing.

What information is collected when registering a domain name?

In addition to certain technical information (e.g. IP address of primary name server) and information required for billing purposes (e.g. credit card number, billing address, etc…), the Registrar collects certain Registrant information which is disclosed to the public through the WHOIS database.

This information includes:

• the name of the Registrant and the Domain Name registered;
• the Registrant's name, postal address, email address, telephone and fax number(s);
• a description of the Registrant's business (if applicable); and
• the name(s), postal address(es), email address(es), telephone and fax number(s) of the technical and Administrative contacts.

What is the WHOIS database?

The WHOIS is an online database that provides Internet users with a directory listing the contact information (including the name, telephone number, mailing address and email address) of domain name Registrants.

For example, the WHOIS displays the following information regarding the domain name for the Canadian Internet Registration Authority (CIRA) website (www.cira.ca).

Status:         EXIST                                             
Registrar:      Canadian Internet Registration Authority (NFP)
                / Autoritй Canadienne pour les enregistrements Internet (OSBL)
Registrar-no:   1
Registrant-no:  1
Domaine-no:     1
Subdomain:      cira.ca
Renewal-Date:   2011/02/05
Date-Approved:  1998/02/05
Date-Modified:  2004/07/19
Organization:   Canadian Internet Registration Authority (NFP)
                / Autoritй Canadienne pour les enregistrements Internet (OSBL)
Description:    CA domain registration.
Admin-Name:     Mr Bernard Turcotte
Admin-Title:
Admin-Postal:   CIRA
                Canadian Internet Registration Authority
                350 Sparks Street
                Suite  1110
                Ottawa ON  K1R 7S8 Canada
Admin-Phone:    +1 (613) 237-5335
Admin-Fax:      +1 (613) 237-0534
Admin-Mailbox:  turcotte@cira.ca
Tech-Name:      Mr Bernard Turcotte
Tech-Title:
Tech-Postal:    CIRA
                Canadian Internet Registration Authority
                350 Sparks Street
                Suite  1110
                Ottawa ON  K1R 7S8 Canada
Tech-Phone:     +1 (613) 237-5335
Tech-Fax:       +1 (613) 237-0534
Tech-Mailbox:   turcotte@cira.ca
NS1-Hostname:   ns01.cira.ca
NS1-Netaddress: 206.191.6.174
NS2-Hostname:   ns02.cira.ca
NS2-Netaddress: 64.26.149.99

What is the WHOIS database used for?

Although initially developed and used by network administrators to help resolve technical issues, the WHOIS database is now widely used by a range of Internet users, including: ISPs, governmental and law enforcement officials, intellectual property holders and registrars. Both CIRA and ICANN list terms of use for the WHOIS database which state that it may be used only to query the availability of a domain name; to identify the holder of a domain name; and/or to contact the holder of a domain name registration in regard to the domain name or in regard to the respective website. Unfortunately, it is very difficult to enforce this policy. In fact, the CIRA Registrant Agreement includes the following clause:

4.3 WHOIS: The Registrant acknowledges and agrees that CIRA has no control over how any member of the public uses the information disclosed by CIRA through the WHOIS database whether or not the information is subject to domestic or foreign privacy laws

It is widely accepted that marketing organizations continuously access the WHOIS database to collect personal information for marketing purposes. These organizations 'harvest' email addresses from the WHOIS and send unsolicited emails ("spam") or mail to Registrants marketing everything from pornography to domain name re-registration.

Does my information have to be displayed through WHOIS?

Unfortunately, personal contact information listed in the WHOIS database cannot be deleted or made confidential and anonymous registration is not possible. Furthermore, listing false or misleading information can result in the suspension and/or termination of your domain name registration.

While there are some organizations which offer to act as your agent, essentially communicating with the Registrar on your behalf and listing their contact information instead of yours in the WHOIS database, such services are not generally free and there a number of potential problems that may arise. By listing an agent as the administrative contact, you authorize that person to make changes and provide any confirmation relating to your domain name, including canceling, suspending, and even transferring your domain name.

What are the privacy concerns associated with WHOIS?

As mentioned above, it is widely accepted that marketing organizations continuously access the WHOIS database to collect personal information for marketing purposes. In October 2003 CIPPIC, along with other interested consumer and civil liberty organizations, called on ICANN to limit the use of the WHOIS database to its original purpose of resolving technical issues.

In response to this letter and concerns from other organizations and individuals about the protection of personal privacy, ICANN formed three Task Forces to the analyze privacy issues surrounding the Whois database.

On May 28, 2004, the Task Forces published three preliminary reports for public comment. These reports examined:

• Restricting Access of Whois for Marketing Purposes
• Collecting and Displaying Registrant Data
• Improving the Accuracy of Data Collected from Registrants

In a letter to ICANN regarding these preliminary reports, CIPPIC recommended that the Whois database be limited in use to facilitating communication between network administrators in resolving technical and operational problems, and not be openly available to law enforcement agencies, intellectual property rights holders, or the general public. CIPPIC proposed the implementation of a two-tiered system, under which only technical data such as the name of the Registrar, the renewal and registration date, and domain name's primary server would be accessible to the public. Access to Registrant personal information would be limited to Registrars and Registries for purposes of administration, management of the Domain Name System, and the resolution technical problems.

Resources

ICANN and Top Level Domain Registries

• The Internet Corporation for Assigned Names and Numbers (ICANN) - ICANN is responsible for managing and coordinating the Domain Name System (DNS) through the distribution of IP addresses and domain names.
• Canadian Internet Registration Authority (CIRA) - CIRA (the Canadian Internet Registration Authority) is the Registry responsible for operating the ".ca" Internet country code Top Level Domain for Canada, which includes accrediting domain name registrars for ".ca".
• VeriSign Global Registry Services - VeriSign Global Registry Services is the Registry responsible for operating the ".com" and ".net" domains. The ".com" and ".net" domains were originally intended for use by commercial businesses, organizations and individuals around the world.
• Public Interest Registry - Public Interest Registry is the Registry responsible for operating the ".org" domain, which was originally intended to serve the non-commercial community.
• NeuLevel, Inc. - NeuLevel Inc. is the Registry responsible for operating the ".biz" domain, which is restricted in its use to the business community.
• Afilias Limited - Afilias Limited is the Registry responsible for operating the ".info" domain. The ".info" domain is unrestricted in its use.
• Global Name Registry - The Global Name Registry is responsible for the ".name" domain, which is restricted in its use to individuals.
• RegistryPro - RegistryPro operated the ".pro" domain, which is restricted to certified professionals and related entities.

Registrar and Registrant Agreements

• ICANN Registrar Agreement - A copy of the agreement that governs the relationship between the Registrar and ICANN.
• CIRA Registrar Agreement - A copy of the agreement that governs the relationship between the Registrar and CIRA.
• CIRA Registrant Agreement - A copy of the agreement that governs the relationship between the Registrant (user) and CIRA.

Privacy Related Documents

• Personal Information Protection and Electronic Documents Act
• ICANN Model Registrar Privacy Policy
• CIRA Privacy Policy
• WHOIS Task Force 1: Restricting access to WHOIS data for marketing purposes
• WHOIS Task Force 2: Review of data collected and displayed
• WHOIS Task Force 3: Improving Accuracy of collected data

Further Reading

• Top Ten Things to Consider When Registering a Domain Name (ICANN)
• A. Michael Froomkin, "Wrong Turn in Cyberspace: Using ICAAN to Route Around the APA and the Constitution" (2000) 50 Duke L.J. 17.
• Michael Geist "West urged to share Internet governance" The Toronto Star (17 May 2004).
• Michael Geist "Think Web's virtually government free? Think again" The Toronto Star (1 December 2003).
• Kieren McCarthy "How much does it cost to oversee the Internet?" The Register (17 March 2003).
• Kieren McCarthy "ICANN grows up at last" The Register (24 May 2004).
• Declan McCullagh "Who should govern the Net?" CNET News.com (18 March 2004).
• Bruce Sterling, Short History of the Internet (February 1993).
• United States Department of Commerce "Management of Internet Names and Addresses" (5 June 1998).

Back to top

This page last updated: June 2, 2007

By: April Brousseau and Matthew Kindree