Tag Archives: .de

DENIC Wins Domains Award At eco://award 2018 With Data Escrow Service

DENIC, the .de ccTLD manager, has won the Domains category at the 17th annual eco://award held in Cologne’s Wolkenburg on 28 November. DENIC won for their Data Escrow Service – a unique solution for registrars and registries to meet their contractual escrow obligations in accordance with European legal standards. DENIC also made the final 3 in the Domains category with their ID4me, a Single Sign-On solution.

The prize-winning DENIC service offers an unprecedented backup option for domain data in Europe. By choosing DENIC as their escrow provider, European customers comply with their escrow obligations under European law. A combination of computer centres located in Europe as the only place for storing the data and the freedom to choose the place of jurisdiction and arbitration within Europe that make the DENIC Data Escrow Service unique. To become an accredited escrow provider, DENIC successfully passed ICANN’s multi-stage accreditation process.

The accreditation by ICANN authorises DENIC to provide data escrow services for registrars and registry operators of generic Top Level Domains (gTLDs). In addition, DENIC is a Designated Escrow Agent for registrars. This means that ICANN-accredited registrars can use DENIC’s escrow services free of charge, financed by ICANN.

“The eco Award confirms that our commitment to creating a strictly European escrow solution for the domain industry provides real added value,” said DENIC COO Andreas Musielak. The marketing of the escrow services is performed by DENIC’s wholly-owned subsidiary DENIC Services GmbH & Co. KG, which specialises in optimal customer service.

ID4me, a service from the German country code top level domain manager, was also a finalist in the Domains category. ID4me gives internet users full control over their digital identity and enables them to govern the use of their personal data. Unlike other Single Sign-On solutions, ID4me uses only open standards. DENIC is one of the initiators of ID4me and has made an inaugural contribution to the technical development of the domain-based application.

The other finalist in the Domains category was Hexonet with their Search and Help Me Find My Domain service. The service was developed with a view to reconsider domain name search technology. HEXONET’s new domain search framework is relevance- and speed-based, challenging the traditional search approach. In addition, we have launched a chat-like feature which is fast becoming a preferred interface.

Other winners in the German internet industry awards were KAMP Netzwerkdienste GmbH in the Hosting category for their KAMP Dynamic Hardware Pool. With DHP, companies can operate a secure virtual data centre that, combined with on-site colocation, offers the optimal IT platform for their specific application.

There were 7 categories, with the remaining 5 winners and their categories being:

CATEGORY Cloud:
Consultix GmbH for ProCampaign Lighthouse – the secure Customer Engagement Hub for individualized marketing campaigns, which fully complies with the requirements of the GDPR.

CATEGORY Data Centre Infrastructure:
ColocationIX GmbH for ColocationIX ­– the data centre in the former nuclear shelter with the highest level of digital and physical security and an innovative fire protection and climate control concept.

CATEGORY ISP/Interconnection:
ANEXIA Deutschland GmbH for Backbone Europe – the massive expansion of the European network (n*100G), with the highest level of network quality and best routing.

CATEGORY Security:
Rohde & Schwarz Cybersecurity GmbH for R&S Trusted Gate – combining a Cloud Access Security Broker with a data-centric encryption system to make data more secure in the public cloud.

CATEGORY Innovation/Digital Business Models:
eyeo GmbH for Trusted News – which checks the trustworthiness of information on the Internet, and through which malware, fake news, and clickbait is visible at a glance.

There was also a Special Prize for Tim Cole who was honoured by eco with a special prize for his life’s work. For many years, the German-American author and publicist has immersed himself in topics relating to the Internet, e-business, the social web, and IoT.

“When Internet visionaries were still dismissed as crackpots in the early 1990s, he recognized the potential of the global data network and made a significant contribution to the commercial breakthrough of the Internet in Germany,” explained eco CEO Harald A. Summa in his laudatory speech. Cole has managed “to present technical developments in such a way that people not only understand them, but also – thanks to him – understand the consequences for their own actions and the implications for society.”

DENIC Hives Off Non-Core Activities to New Subsidiary

From 1 November DENIC is hiving off its non-core activities, including DNS Anycast Services, Data Escrow Services and Direct Services Newly Grouped, to a newly formed subsidiary called DENIC Services GmbH & Co. KG that will be located in Darmstadt, about 30km south of Frankfurt where Denic eG is located.

The fully owned subsidiary of the German country code top level domain (ccTLD) manager DENIC eG will focus on the provision of technical and administrative services within the Internet ecosystem and take over from DENIC eG a number of existing business lines outside the parent organisation’s core business.

Initially, the new company will take care of Direct Services, and then, step by step, extend to the assumption of DNS Anycast Services and Data Escrow Services as well. The management and operation of Internet domains under the Top-Level Domain .DE will yet fully remain within the responsibility of DENIC eG, which will thus focus more strongly on running and expanding its member business.

DENIC Services GmbH & Co. KG will assume the marketing of DNS Anycast Services for Top Level Domain operators and of Data Escrow Services for registrars and registry operators of generic Top-Level Domains (gTLDs).

For domain name registrants who have not registered their domains through a registrar (DENIC member), but directly with DENIC (DENICdirect), the subsidiary will take over the provision of customer service, starting from November. Notwithstanding, DENIC eG shall remain party to all domain contracts for domains under .DE, including those of direct customers.

For the provision of its services, DENIC Services GmbH & Co. KG will make use of DENIC eG‘s technical infrastructure on a fee-paying basis. Clients from DENIC’s DNS Anycast Services, Data Escrow Services or Direct Services will thus be able to continue benefitting from DENIC eG’s technical expertise, whilst customer care then provided by DENIC Services GmbH & Co. KG will be tailored even more specifically to customer needs.

The main reason for the new corporate structure is the Cooperative’s core mandate in accordance with DENIC’s Statutes, i. e. managing and operating Internet domains under the Top-Level Domain .DE, which DENIC eG provides together with its members. The new structure will suit these circumstances more appropriately, by clearly separating services that are not covered by DENIC’s Statutes or that are not provided to the members of the Cooperative, and assigning them to the new subsidiary, DENIC Services GmbH & Co. KG, established specifically for this purpose.

The changes follow a suggestion from the Executive Board in April 2018 for the General Assembly of DENIC eG to set up a subsidiary, with the aim of transferring the non-member business and the associated complementary business lines into a new, affiliated company. The new company will also be committed to the cooperative values of DENIC eG. Accordingly, part of the new company’s revenue will also go to projects and initiatives that will advance the interests of the overall Internet community.

At the ICANN63 Public Meeting in Barcelona, Spain, this week from 20 to 25 October 2018, DENIC eG and its new subsidiary are exhibiting at a joint stand (Booth TT1).

.DE Reaches 100,000 DNSSEC Domain Names

It’s taken over 6 years, but the 100,000th .de domain name to be signed with DNSSEC was reached last week according to a statement from DENIC.

DENIC has been supporting the Domain Name System Security Extensions (DNSSEC) since 2011. For the first 4 years DNSSEC-signed .de domain names grew slowly, and then around May 2015 there was a sharp rise which has been followed by a steady increase to today’s 100,000. Even though less than 1% of the 16.2 million domain names for Germany’s country code top level domain (ccTLD) are digitally signed, the ongoing growth shows a growing interest in a secure Internet, to which DENIC is constantly committed.

DNSSEC is a security measure that ensures the authenticity and integrity of data in the DNS (Domain Name System). In particular, the security extension serves to protect the content data against modification on the transmission path.

A central component of this security mechanism is the so-called “trust anchor” of the DNS. This anchor that applies for the global DNS and falls within the responsibility of ICANN will be replaced with a new one for the first time on 11 October 2018.

.BR Hits 4 Million Domain Name Registrations

Brazil’s ccTLD manager, NIC.br, announced [Portuguese only] Monday they’ve reached the 4 million registrations mark after ‘more than 25 years of flawless operation’.

There are over 120 second level domains under which .br domain names can be registered from blog.br and wiki.br for individuals to eng.br and adv.br for liberal professionals, tv.br and tur.br for legal persons, rio.br, sampa.br and curitiba.br for cities those reserved for specific purposes such as gov.br, jus.br, b.br and org.br among others. Some of these have as few as 10 registrations, while the largest, com.br has 3,645,125 accounting for 91.2% of all registrations.

According to the latest Verisign Domain Name Industry Brief, .br is the seventh largest country code top level domain (ccTLD). Verisign already had .br at 4 million domain name registrations at the end of 30 June, probably through rounding, up in this case, to the nearest hundred thousand. China’s ccTLD was the largest with 22.7 million followed by Tokelau’s free .tk (21.5m), Germany’s .de (16.3m), the United Kingdom’s .uk (12.0m), Russia’s .ru (5.9m), the Netherlands’ .nl (5.8m). Following .br is the European Union’s .eu (3.8m), France’s .fr (3.2m) and rounding out the top 10 is Italy’s .it (3.1m).

Revenues from .br registrations allow NIC.br to, in addition to providing and maintaining the infrastructure behind .br, invest in a series of actions and projects that generate benefits and improvements to the internet infrastructure in Brazil. These include the operation of internet traffic exchange points, which promote the interconnection of networks that form the Internet in Brazil, reducing distances and costs; the handling security incidents and tracking internet statistics.

Nic.br notes that other advantages of registering .br domain names include additional security features, such as token and encryption, that strengthen both the accounts of Registro.br users, and their respective domains. There is another recent feature: a redirection feature that lets you point a .br domain to any URL, whether it’s on a website or the preferred channel on social networks, keeping identities and active tags on the Internet permanently. Servers distributed by Brazil and other regions of the world guarantee speed and reliability in the resolution of .br and a team exclusively dedicated to meet and assist users in their doubts complete the description.

After 21 Years, ICANN Going Back to Germany

For the first time in 21 years, ICANN will hold a public meeting in Germany in October 2020 the global domain name overseer announced at its public meeting in Panama last week.

DENIC, the .de ccTLD registry, and eco, the German Association of the Internet Industry will be joint hosts of ICANN’s 69th public meeting to be held in Hamburg from 17 to 22 October 2020. The previous meeting held in Germany was ICANN’s second, held in Berlin in May 1999.

Back in 1999, the meeting details available on the ICANN website reflect an organisation in the making with issues much different from facing it today, although some remain the same such as budgetary issues. Back then issues discussed were the development of many of the committees and groups that are either still in existence today or were in their infancy and have evolved into other bodies.

“After Berlin in 1999, this is the first time in 20 years that we have brought an ICANN conference to Germany,” says Oliver Süme, Chair of the Board of eco – Association of the Internet Industry. “With eco, DENIC, and the City of Hamburg, strong partners from industry and politics have joined to achieve this goal.”

“An open, free, and secure Internet is a strategic priority for DENIC. The commitment of the German Internet Community has been honoured with the decision to bring the ICANN meeting to Hamburg. This will offer a good opportunity to put the German and European perspectives to the table at an even broader level,” says DENIC Board Member Dr. Jörg Schweiger. DENIC operates Germany‘s top-level domain .DE, which currently – with close to 16.3m domains under management – is the second-largest country-targeted namespace on the Internet.

Alongside the country-targeted ones, there are also generic domain suffixes, including – on offer for several years now – ones with a clear regional focus. The City of Hamburg actively supported the registration of the new top-level domain .hamburg, so that, for example, the Hamburg police website can now be reached at www.polizei.hamburg.

The organisers expect around 2,500 to 3,500 attendees to participate in this conference from academia, the tech community, politics, industry, and civil society: “Hamburg is smart and innovative, and is therefore a suitable setting for such an important conference of the international Internet community,” says Hamburg’s Senator of Economic Affairs, Frank Horch.

The hosting partners had submitted their application to ICANN in November 2016, under the coordination of the Hamburg Convention Bureau.

DENIC Restricts Publicly Available Registrant Data Following GDPR Introduction

DENIC have introduced significant changes to the publicly available data available through Whois requests for .de domain names that will see registrant data drastically restricted and only available to law enforcement bodies as a result of the European Union’s General Data Protection Regulation (GDPR) that came into effect on 25 May.

The changes in data publicly available for the German country code top level domain (ccTLD) will see that next to the contact details of the domain name registrant, such as name, email and postal address, DENIC will only record two additional email addresses for contact purposes as well as the technical data of the domain name.

The two email addresses recorded in addition to the registrant data will be non-personalised. They will be under the registrar’s responsibility and will serve as points of contact for general and technical requests as well as for enquiries or notifications about a possible unlawful or improper use of the domain. Also, DENIC will continue to record such technical data, including name server or DNS key information, that is needed to establish the functionality of the domain.

In addition to the domain status data (“registered”/”unregistered”), as of 25 May, only the domain name’s technical data and the two email addresses for the specified contact purposes (General Request and Abuse) will be available via the Domain Query. Those data relating to the technical contact and zone administrator (Tech-C, Zone-C) as well as to the administrative contact (Admin-C) previously output here will no longer be recorded and consequently not displayed anymore.

DENIC will still provide registrant data where legally required to public authorities acting within the framework of their public powers (including law enforcement, hazard prevention or seizing orders). DENIC will also disclose registrant data, on the basis of case-by-case assessments and upon submission of evidence of a legitimate interest, to such parties who own a right to a name or trademark that may be violated by the domain, or to such claimants who have obtained an enforceable title against the domain registrant and seek judicial seizure of the registrant’s claims defined in the domain contract, under civil law. In all other cases, DENIC will provide no information on the registrant.

For evaluating the legitimate interest of enquiries and for the subsequent provision of the relevant data, DENIC will use both automated and non-automated processes.

DENIC’s amended policies as laid down in the DENIC Domain Terms and Conditions and DENIC Domain Guidelines are published on the DENIC website.

ICANN Finally Approves Temporary Specification To Comply With EU’s GDPR, With 7 Days To Spare

It was adopted on 14 April 2016 and after a 2-year transition period it becomes enforceable on 25 May 2018. Yet despite this timeframe, ICANN only approved a Temporary Specification for gTLD Registration Data to comply with the European Union’s General Data Protection Regulation on 17 May, with a draft published on 11 May. But it only gives registries and registrars 7 days to finalise and implement changes to their systems, or 14 days if they started when the draft was published. That is if they waited for ICANN’s snail-like process to take place.

The GDPR has been developed by the European Commission to give individuals more control over their data that businesses hold, including domain name Registries and Registrars. It also applies to businesses outside of the EU that hold data on citizens and residents of the EU. It’s impact is far-reaching and penalties for breaches are severe – fines of up to €20 million or up to 4% of the annual worldwide turnover, whichever is greater.

ICANN’s approval of a Temporary Specification [pdf] is the result of 12 months of consultation with the community and “is an important step towards bringing ICANN and its contracted parties into compliance with GDPR,” said ICANN’s Chair Cherine Chalaby. “While there are elements remaining to be finalised, the adoption of this Temporary Specification sets us on the right path to maintaining WHOIS in the public interest, while complying with GDPR before its 25 May enforcement deadline.”

One can’t help but feel it’s an extraordinary failure by ICANN and the community given the time they’ve had to develop a solution. The Temporary Specification will be revisited by the ICANN Board in 90 days, if required, to reaffirm its adoption. And whether the Temporary Specification meets European Commission’s requirements remains to be seen. In early April the EC’s Article 29 Data Protection Working Party wrote to ICANN [pdf] noting they weren’t satisfied with what ICANN had then proposed.

So what will happen on 25 May? Registry Operators and Registrars will still be required to collect all WHOIS information for generic top level domains (gTLDs). However, WHOIS queries will only receive “Thin” data in return, which includes only technical data sufficient to identify the sponsoring Registrar, status of the registration, and creation and expiration dates for each registration, but not personal data. For third parties with legitimate interests in gaining access to the non-public data held by the Registry Operator or Registrar, there are still ways to access that data. Queries can be made through the sponsoring Registrar and they are obligated to respond in a reasonable time. If a response is not received, ICANN will have a complaint mechanism available. If it is thought individual parties are not complying with their obligations under these temporary specifications or their agreements with ICANN, ICANN’s Contractual Compliance Department can be contacted to file a complaint.

The changes are not unlike those being implemented by several European country code top level domain (ccTLD) registries. And while quite a few Registries and Registrars will have been waiting (or rather sweating) on ICANN’s announcement this week, some decided they couldn’t wait and have been developing solutions on what they believed ICANN’s response would have been.

Within Europe, some ccTLDs, such as the Austrian registry nic.at have implemented a “thin” model for individuals registering domain names, but legal entities or businesses will continue to have “thick” WHOIS data published. Others such as DENIC, the German ccTLD registry, will only record the contact details of the domain name registrant, two additional email addresses as contact points for abuse reports and general and technical requests as well as the usual technical domain data, which is similar to the ICANN model.

Registrars are frustrated. One, the German EPAG, which is part of the Tucows group, spoke of their frustrations to Domain Pulse at the Domain Pulse conference (unrelated) in Munich in February.

“We wish that ICANN had started work on this a year ago,” said Ashley La Bolle, Managing Director of EPAG Domainservices GmbH. “Of course, we will try to accommodate changes, but in absence of new consensus policies, we have to develop solutions that we believe will ensure our own compliance with the law.”

“The domain industry has been really late to the game on GDPR implementation,” La Bolle went on to say. She noted how frustrating it was that the entire industry was slow to develop solutions and that solutions were only beginning to be finalised back then. The changes require significant resources to be thrown at implementing changes. In an industry that operates on razor-thin margins, it’s not an ideal situation.

“The GDPR requires contracts to be revised, additional staff training, and customer education. Our approach has been to change our systems and processes to handle as much of the impact of the GDPR as possible so that our customers can continue to use our services as they always have.”

It has also been claimed that the changes will be a boon for cybercriminals. While Krebs on Security admit that while “cybercriminals don’t use their real information in WHOIS registrations … ANY information they provide — and especially information that they re-use across multiple domains and cybercrime campaigns — is invaluable to both grouping cybercriminal operations and in ultimately identifying who’s responsible for these activities.” And while some cybercriminals do take advantage of privacy protection services, “based on countless investigations I have conducted using WHOIS to uncover cybercrime businesses and operators, I’d wager that cybercrooks more often do not use these services.”

Krebs also notes that while “it is true that the European privacy regulations as they relate to WHOIS records do not apply to businesses registering domain names … the domain registrar industry — … operates on razor-thin profit margins and which has long sought to be free from any WHOIS requirements or accountability whatsoever. Krebs believes they “won’t exactly be tripping over themselves to add more complexity to their WHOIS efforts just to make a distinction between businesses and individuals.”

“As a result, registrars simply won’t make that distinction because there is no mandate that they must. They’ll just adopt the same WHOIS data collection and display polices across the board, regardless of whether the WHOIS details for a given domain suggest that the registrant is a business or an individual.”

ICANN Announces DENIC eG as New ICANN-Designated Agent to Support Registrar Data Escrow Services

ICANN today (15 May) announced it has entered into an agreement with DENIC eG as an ICANN-designated agent to support Registrar Data Escrow (RDE) services on the ICANN organization’s behalf. DENIC eG is a not-for-profit cooperative headquartered in Frankfurt, Germany and is the operator of the ccTLD .DE.

ICANN selected DENIC through a competitive Request for Proposal initiated in August 2017, following requests from the registrar community to expand the RDE program, in part to meet regional challenges such as the European Union’s General Data Protection Regulation.

Background

The Registrar Data Escrow program is intended to protect registrants in the event of registrar failure or termination of a Registrar Accreditation Agreement (RAA). Ensuring the successful transfer of a domain name sponsorship aligns with the ICANN org’s objective to support a healthy, stable, and resilient unique identifier ecosystem and is consistent with its Mission and Bylaws (Section 1.1) that states, “ICANN coordinates the allocation and assignment of names in the root zone of the Domain Name System (DNS) and coordinates the development and implementation of policies concerning the registration of second-level domain names in generic top-level domains (gTLDs).”

The 2013 Registrar Accreditation Agreement requires registrars to deposit a copy of gTLD registration data with either the ICANN org or with an ICANN-approved RDE agent at its own expense. Since 2007, Iron Mountain has acted as the sole ICANN-designated RDE agent, which has accepted and processed the registrar escrow deposits on behalf of ICANN org. DENIC eG is the second ICANN-designated RDE agent available to registrars. Registrars may also utilize Third Party Providers approved by both ICANN and the registrar; for more information on the Registrar Data Escrow Program and other Third Party Providers see: https://www.icann.org/resources/pages/registrar-data-escrow-2015-12-01-en.

This ICANN announcement was sourced from:
https://www.icann.org/news/announcement-3-2018-05-15-en

DENIC Splits Non-Member Operations From Core .DE Registry

The German ccTLD registry DENIC is to split its non-member business areas from its core business of running the .de registry, the organisation announced last Friday. The change is happening because its non-member complementary business does not comply with its statutory Cooperative assignment – the management and operation of the .de top level domain. Continue reading DENIC Splits Non-Member Operations From Core .DE Registry

SIDN Signs Up For nic.at Anycast Network RcodeZero In More Industry Consolidation

The Dutch and Austrian ccTLD managers, SIDN and nic.at, have signed a cooperation agreement under which all domains managed by SIDN will additionally be hosted on the nic.at anycast network RcodeZero DNS. The agreement was announced by SIDN’s CEO Roelof Meijer and nic.at CEO Richard Wein on the sidelines of the ICANN meeting in San Juan, Puerto Rico.

“We are very happy and proud to offer our technical services to the third largest European ccTLD,” says Richard Wein, CEO of nic.at. The agreement covers the almost 6 million domains registered under .nl, .amsterdam, .aw and .politie and sees SIDN becoming the biggest customer of the RcodeZero TLD DNS network. A network which already hosts twelve different TLDs at thirteen highly available redundant locations all over the world.

Roelof Meijer, SIDN’s CEO, explains the reasons why they decided for RcodeZero DNS: “First of all, it was important for us to have a partner under EU jurisdiction and data protection law. Secondly, we were impressed by nic.at’s technical know-how and flexibility, as well as their readiness to develop their product further based on our needs.” In recent years, SIDN has constantly been improving and optimising its DNS infrastructure with anycast partners to guarantee the best possible availability of .nl domains.

RcodeZero DNS will soon be expanded with additional nodes in Australia and South America to provide better performance and lower latency for customers in those areas, too. However, RcodeZero DNS, had other attractions for a technician, as confirmed by Marc Groeneweg, Coordinator of DNS Ops Team at SIDN: “It’s important for us to have comprehensive statistics and real-time DNS traffic information to further analyse our infrastructure, as a basis for continued improvement of our infrastructure.“

The technical work of integrating all Dutch domains into the network has just been completed and the set-up is now ready for public production.

The agreement is a sign of further consolidation and expansion within the top level domain registry industry, using their experiences in areas such as security among others. In the security area, a big issue for business worldwide, the domain name business is one of the leading providers of online security solutions. Some registries, such as nic.at and SWITCH, the Swiss registry operator, also run CERTs.

Others, such as CIRA, the Canadian ccTLD manager, has been active in recent months signing agreements with Uniregistry, DNS.PT (Portugal’s .pt) and InternetNZ (New Zealand’s .nz) to provide global domain name system services. SIDN itself has acquired a controlling stake in Connectis, one of the Netherlands' leading suppliers of secure log-in solutions and redesigned SPIN, their open-source system for protecting the internet and end-users against insecure IoT devices in home networks. And DENIC, the German (.de) ccTLD manager, has been approved as an authorised New gTLD Data Escrow Agent to offer both to ICANN-accredited registrars and registries an escrow service which fully complies with the European legal framework.