Reliable, consistent, and predictable access to domain name registration data (via Registration Data Directory Services, or RDDS) is essential for a variety of legitimate purposes, especially the identification and mitigation of various types of Internet abuse and technical problems. In recent years, access to the data by those who have a legitimate need for it has been diminished, and availability is more constrained and more restricted than ever. This has happened for two main reasons: new legal and policy developments, and an operational practice known as rate limiting. These developments represent a shift in the abuse detection and mitigation landscape. The ability of security practitioners and law enforcement to detect and mitigate cybercrime and DNS abuse has been negatively affected, and the current situation is imposing greater operational and administrative burdens on those defenders. This in turn impairs the general usability and trustworthiness of the Domain Name System (DNS) and the Internet. This document describes the results of SSAC’s extended deliberation on RDDS access issues and offers recommendations for how to move forward.
We maintain a portfolio of research projects, providing individuals and teams the freedom to emphasize specific types of work
