Section I: Description, Explanation, and Purpose ICANN Staff is seeking comments on the Preliminary Issue Report on the Inter-Registrar Transfer Policy Part C [PDF, 572 MB]. Specifically, this Report addresses: “Change of Control” function, including an investigation of how this function is currently achieved, if there are any applicable models in the country-code name space that can be used as a best practice for the gTLD space, and any associated security concerns. It should also include a review of locking procedures, as described in Reasons for Denial #8 and #9, with an aim to balance legitimate transfer activity and security. Whether provisions on time-limiting Form Of Authorization (FOA)s should be implemented to avoid fraudulent transfers out. For example, if a Gaining Registrar sends and receives an FOA back from a transfer contact, but the name is locked, the registrar may hold the FOA pending adjustment to the domain name status, during which time the registrant or other registration information may have changed. Whether the process could be streamlined by a requirement that registries use IANA IDs for registrars rather than proprietary IDs This Public Comment solicitation represents an opportunity for the ICANN community to provide its views on the issues outlined above and on whether a Policy Development Process should be initiated. Further data and supporting information on issues b) and c) are especially welcomed as these issues were originally raised in 2005. This Preliminary Issue Report will be updated to reflect community feedback submitted through this forum. A Final Issue Report will then be presented to the Generic Names Supporting Organization (GNSO) Council for its consideration. Section II: Background The Inter-Registrar Transfer Policy (IRTP) is an existing community consensus policy that was implemented in late 2004 and is now being reviewed by the GNSO. The IRTP aims to provide a straightforward procedure for domain name holders to transfer their names from one ICANN-accredited registrar to another should they wish to do so. The policy also provides standardized requirements for registrar handling of such transfer requests from domain name holders. The IRTP Part C is the third in a series of five Policy Development Processes (PDPs) that address areas for improvements in the existing Inter-Registrar Transfer Policy.  The GNSO Council requested an Issue Report on IRTP Part C at its meeting on 22 June 2011 (see gnso.icann.org/resolutions/#201106 ). Section III: Document and Resource Links Preliminary Issue Report on the Inter-Registrar Transfer Policy Part C [PDF, 572 MB] Inter-Registrar Transfer Policy Comment Period Deadlines Open Date: 25 July 2011 Close Date: 25 August 2011 Important Information Links Public Comment Box To Submit Your Comments (Forum) View Comments Submitted This ICANN announcement was sourced from: www.icann.org/en/announcements/announcement-25jul11-en.htm

*Deadline for applications 25 July 2011* Introduction 1.1. ICANN is an internationally organized, non-profit public benefit corporation responsible for coordinating critical Internet resources. These include Internet Protocol (IP) address space allocation, protocol identifier assignment, generic (gTLD) and country code (ccTLD) Top-Level Domain Name System (DNS) management, and root server system management. ICANN is dedicated to preserving the operational stability of the Internet; to promoting competition; to achieving broad representation of global Internet communities; and to develop policy appropriate to its mission through bottom-up, consensus-based processes. As part of its work, ICANN implements policy for WHOIS services that provide public access to data about registered domain names. The extent of data collected at the time of domain name registration, and the ways such data can be accessed, are specified in agreements established by ICANN for domain names registered in gTLDs. For example, ICANN requires accredited registrars to collect and provide free public access to the name of the registered domain name, name servers, registrar, the date the domain was created, when its expires, the name and contact information for the domain name’s Registered Name Holder, technical contact and administrative contact. Anyone can obtain this data by using a WHOIS client to send an RFC 3912-formatted query to TCP port 43, or by submitting a web form query to a WHOIS server. Data is returned in an unspecified human-readable form, predominately but not exclusively represented in US-ASCII. 1.2. ICANN has made commitments in an Affirmation of Commitments with the U.S. Department of Commerce related to WHOIS. In Section 9.3.1: “ICANN additionally commits to enforcing its existing policy relating to WHOIS, subject to applicable laws. Such existing policy requires that ICANN implement measures to maintain timely, unrestricted and public access to accurate and complete WHOIS information, including registrant, technical, billing and administrative contact information. One year from the effective date of this document and then no less frequently than every three years thereafter, ICANN will organize a review of WHOIS policy and its implementation to assess the extent to which WHOIS policy is effective and its implementation meets the legitimate needs of law enforcement and promotes consumer trust.” Based on this commitment, ICANN organized a WHOIS Review Team, which began its work in January 2011. The WHOIS Review Team is comprised of volunteer community members and includes designated nominees by the Chair of the Governmental Advisory Committee and the CEO of ICANN, representatives of the relevant Advisory Committees and Supporting Organizations, experts and representatives of the global law enforcement community and global privacy experts. Resulting recommendations from the WHOIS Review Team will be provided to the Board and posted for public comment. The Board will take action within six months of receipt of the recommendations. 1.3. Pursuant to the above mandate to review WHOIS policy, the WHOIS Review Team seeks to engage an independent consumer research organization to undertake data collection and analysis of consumer trust as it relates to the commitment to provide unrestricted and public access to accurate and complete WHOIS information as described above. Objectives 2.1. The overall objective for seeking independent research is to be able to evaluate the effectiveness of WHOIS policy and its implementation as it relates to promoting consumer trust. It is expected that this research will provide a consumer perspective that cannot be obtained from the internal communication work with ICANN stakeholder groups to obtain input and opportunities for public comment. 2.2. Section 4 of the Affirmation of Commitments states: “ICANN and DOC recognize that there is a group of participants that engage in ICANN’s processes to a greater extent than Internet users generally.” The WHOIS Review Team has concluded that this wider group must also be polled to determine to what level they trust the Internet and specifically ICANN’s role in establishing that trust as it relates to implementation of WHOIS policy. 2.3. The WHOIS Review Team is planning to prepare its preliminary findings and recommendations in September 2011. The results of this research are viewed as a critical input for that task. Therefore, interested parties are asked to submit applications no later than 25 July 2011. The intention is to select a firm and begin the research work by 15 August 2011. The target date for research results is 19 September 2011. Terms of Reference 3.1. The first deliverable required is to construct and formulate appropriate questions and provide recommendations on an optimum representation of consumer characteristics given the objectives. Examples of these characteristics are: consumers who do and do not hold a domain name, who use the Internet, who have used or not used WHOIS data, etc. 3.2. The second deliverable is to perform online surveys on a global scope in multiple languages and scripts, compile and analyze the results and report findings. The findings should be presented in both an overview and with appendices that show supporting details. A minimum of ten (10) key countries is required and must be reasonably distributed across countries in the Asia Pacific region, the Americas, Europe, Middle East and Africa and shall include, at least, three developing countries. The surveys must collect a minimum of 100 responses per country. Surveys should be conducted in the language that is local for each country. A fair and balanced approach must be employed to canvass all age and gender groups equally. Tender Scope and Conditions 4.1. Statement of Suitability. The Statement of Suitability must include a detailed outline of the applicant’s ability to perform this work, including references and examples of past research projects, publications, and other relevant information. Preference will be given to applicants who can demonstrate experience conducting global consumer research related to using the Internet. Disclose and describe any business relationship or association with ICANN, a registry, a registrar or proxy service provider. 4.2. Work Approach. The Work Approach must detail the manner in which the applicant would respond to the Terms of Reference, providing details about how the specified research would be conducted. Applicants are encouraged to elaborate upon the research tasks as needed to quantify effort, enumerate assumptions, and identify dependencies. The successful applicant will be expected to interact with the ICANN WHOIS Review Team via email, conference calls, and video conference to refine proposed research methodologies, finalize input sources/participants, and review research progress. Weekly informal progress updates are expected and should be communicated with the designated point of contact for the WHOIS Review Team. 4.3. Tools or Resources. The response must include descriptions of the tools and resources and any other relevant capabilities that will be used to carry out the research work. 4.4. Team. The applicant shall designate and specify the individuals that will work on and provide the deliverables. It shall provide a full biography for each designated individual and assign one individual as the main contact person for the ICANN WHOIS Review Team. Any change in the designated individuals and/or their roles and responsibilities requires consent from the ICANN WHOIS Review Team. 4.4. Contractual Relationship. The successful applicant will be required to enter into a standard contractor agreement with ICANN wherein the successful applicant shall warrant, among other things, that it will operate under a non-disclosure agreement and agree to assign and waive any relevant intellectual property rights of the deliverables, research, and work. 4.5 Selection. ICANN has no obligation to select any applicant. Selection criteria will not be based solely on price and will consider overall value and ability to deliver quality results in the desired timeframe. 4.6. Schedule and Fees. The proposal should include a work schedule, including key milestone dates and a statement of proposed fees. Fees should be inclusive of related project expenses, including (but not limited to) electronic, postal, and telephone communication; computer hardware, software, and services; and travel costs. Deadline/Requirements: By 12:00 p.m. UTC on 25 July 2011, interested applicants shall submit proposals via email to: rfp-whois-cons-trust@icann.org to the attention of Olof Nordling. A confirmation email will be sent for each proposal received. Any proposal received after 12:00 p.m. UTC on 25 July 2011 will not be considered. This ICANN announcement was sourced from: www.icann.org/en/announcements/announcement-10jul11-en.htm

A “deliberate, premeditated and malicious” attack on the network of Australian registrar and webhost Distribute.IT saw customer data, websites and emails that were hosted on a number of Distribute.IT servers potentially rendered unrecoverable. Distribute.IT described it as “a deliberate aim at the Company and our clients”. The loss of the data has been disastrous for many customers of Distribute.IT. The cost to the company that had around 210,000 domain names under management and 6.5 per cent share of the .AU market representing on recent figures around 130,000 .AU domains, has been disastrous with the company subsequently being acquired by the Netregistry Group, Australia’s largest group of registrars. Approximately 4800 domain names across four servers, holding domain related services, such as DNS and web hosting suffered complete data loss. 2000 of these were websites and associated data while a further 2800 accounts had DNS hosting. Of the 2000 websites lost, Netregistry is still working to recover data around one month after the hack. The SAN storage device hosting data has been sent to Sydney and in the next few days will go to data recovery experts, but time and cost constraints will in part determine what data can be recovered. To do their work, hackers gained SSH access to a compromised desktop within the company and then gained access to an internal log containing passwords to gain access to the network, Brett Fenton, NetRegistry’s Chief Operating Officer told the Goldstein Report/Domain Pulse/Domain News. The Australian policy and regulatory body auDA worked quickly with Netregistry to ensure the acquisition of Distribute.IT went ahead with minimal disruption. As required under the Registrar Agreement, auDA’s consent was requested by the parties prior to finalisation and was very quickly granted. While the hacking is a rare case, there are lessons the domain name industry – registrants, resellers, registrars and registries – all need to learn. For registries and TLD managers, Fenton says it is important from an Australian perspective “that auDA needs to take responsibility for ensuring security of domain data for domain registrars.” One part of this Fenton believes is that the registrar accreditation test should ensure that registrars have PCI-DSS compliance to ensure best practice security for registrars with the stability of the .AU namespace being the role of the regulator. He further added that a review of the ICANN model of data escrow for registrars should be undertaken with a view to possible implementation in at .AU namespace. Globally it is highly likely there are many registrars where security is inadequete and the possibility of similar attacks is highly probable. Ultimately more care needs to be taken with the domain names, registrant data and data hosted on these domains. Registrars need to ensure their security standards are high, recognising their client’s website can be their business, and the loss of data such as in the Distribute.IT hack has the potential to destroy a business. However it is not just registrars such as Distribute.IT that have to bear some responsibility Fenton said, but also resellers who have to safeguard against catastrophic data loss. And then it comes to the domain name registrant. Registrants need to realise that sometimes despite the best intentions and highest levels of security, hacks and natural disasters can happen that can occasionally lead to a catastrophic data loss. Webhosting companies can and do lose data and people and organisations using these services should also do regular backups.

July 6, 2011 — European data center operator Interxion Holding announced on Tuesday that its Interxion Switzerland data center is being powered by 100 percent green energy. Since the beginning of January, local energy provider Energie Opfikon AG has supplied the data center with its Aquastrom hydroelectricity product, which uses naturally flowing water instead of storage plants.

Free online resources outline opportunities for dot.BRAND TLDs in today’s new Internet environment [news release]  In a historic move, ICANN approved its long-discussed New gTLD Program. This program allows any brand or community of interest to apply for a unique “right of the dot” top-level domain. For example, instead of “.com,” a brand like Nike could apply for “.nike” to reinforce its brand on the Web. “The ICANN program creates opportunities for brand builders to re-invent how customers experience brands on the Internet,” said Roland LaPlante, Senior Vice President and Chief Marketing Officer of Afilias. “However, there are a variety of challenges in applying for, winning and running a dot.BRAND Web space. One significant issue is time. The program application period starts on January 12, 2012, and will end on April 12, 2012. Once the application window is closed, the opportunity to apply for a dot.BRAND TLD is gone. There are no firm plans to accept new applications after this round of submissions closes.” To help global brand builders understand the complex ICANN application process — as well as the many benefits of owning and operating a unique dot.BRAND TLD — Afilias has created an easy-to-digest video and e-book to explain the program. “Afilias is ideally positioned to offer this information,” LaPlante said. “Afilias is among the world’s largest providers of diverse domain registry services, and has supported the applications for and launches of numerous new TLDs under ICANN processes — including the highly successful .INFO, .MOBI and .ASIA domains. This also means we are uniquely qualified to help organizations apply for new dot.BRAND TLDs as well as launch and manage new dot.BRAND Internet spaces.” Organizations interested in pursuing a dot.BRAND investment will need to act quickly to assemble a team of experts, which will likely include the Chief Marketing Officer (CMO), a brand advisor, the ad agency, a trademark lawyer and a domain registry technology partner. Properly assembled, this team will be able to prepare and submit an application that will meet ICANN’s stringent requirements and be awarded their own dot.BRAND. To access the free Afilias e-book, Envisioning Your .BRAND New World: A Field Guide for Brand Builders , as well as the educational video, Welcome to Your .Brand New World , visit www.afilias.info/dotbrand . About Afilias Afilias is a global provider of Internet infrastructure services that connect people to their data. Afilias’ reliable, secure, scalable, and globally available technology supports a wide range of applications, including Internet domain registry services and Managed DNS. For more information on Afilias, visit www.afilias.info . This Afilias news release was sourced from: www.afilias.info/news/2011/06/20/afilias-launches-campaign-educate-“brand-builders”-icann-new-tld-progra

Web Hosting – SAN JOSE, CA – Cisco (NASDAQ: CSCO) today announced a new green data center in Allen, Texas, with an architecture deploying Cisco’s entire data center technology portfolio spanning computing, switching, and data storage access to support Cisco’s internal private cloud and deliver Information Technology (IT) as a service. The new data center demonstrates the value of a network-based approach through improved resilience, performance and use of resources, while delivering IT services such as video, mobility, security, and collaboration to Cisco employees, customers, partners, and other constituents.

Web Hosting – SANTA CLARA, CA – Vantage Data Centers, an innovative wholesale data center operator backed by the largest U.S. technology-based private equity firm, today announced the start of construction on V2 Santa Clara. V2 is the second building housed within the Vantage Santa Clara Campus and will provide data center modules designed to scale the facility from 9 to 18 MWs, allowing customers to immediately request more power without any additional construction, moving of equipment or service disruption