[NCSG-PC] law enforcement authentication and RDRS

Kathy Kleiman Kathy at KathyKleiman.com
Thu May 1 22:18:34 EEST 2025 

Agreed Julf, and tx Farzi.  But do we have to educate ICANN or the 
registrars on spoofing - and how easily something appears to be coming 
from one email and it's coming from another?

Best, Kathy

On 5/1/2025 10:36 AM, Johan Helsingius via NCSG-PC wrote:
> I think it is an OK idea as long as it is really only "an additional
>  data point".
>
>     Julf
>
> On 01/05/2025 16:15, farzaneh badii wrote:
>> Hi all,
>>
>> I am one of your reps on RDRS, the triage system for disclosure of 
>> domain name private, sensitive data requests. Law enforcement is 
>> asking if they can submit domain names to ICANN so that if registrars 
>> receive requests from RDRS that information can be accompanied by it 
>> as well. I think this is a better approach than what we have now that 
>> anybody can say I am law enforcement. But we have to be careful and 
>> have accountability mechanisms in place later on. Here is what Gabe 
>> from FBI requested:
>>
>> During the RDRS meeting, Gabe noted that he’s working with the Public 
>> Safety Working Group on both short-term and long-term approaches to 
>> support ICANN community efforts around law enforcement 
>> authentication. As part of the short-term solution, they are 
>> exploring a mechanism that involves compiling a list of domain names 
>> tied to known law enforcement agencies. The idea is that these domain 
>> names could be shared with ICANN technical staff to integrate into 
>> the RDRS.
>>
>> If someone submits a disclosure request via RDRS and the request 
>> comes from an email address associated with a verified law 
>> enforcement domain, that information could serve as an additional 
>> data point. This data point could then be shared with registrars to 
>> help inform their disclosure decisions, particularly in the context 
>> of rights balancing.
>>
>> Gabe emphasized that this would involve minimal technical work and is 
>> still exploratory. He’s asking the committee if there are any 
>> objections to him passing these verified law enforcement domains to 
>> the RDRS staff, with the goal of continuing this short-term work. He 
>> acknowledged this might not need to be formally documented in the 
>> RDRS report, but raised it in case there were concerns or feedback 
>> from the group.
>>
>>
>> Farzaneh
>>
>> _______________________________________________
>> NCSG-PC mailing list
>> NCSG-PC at lists.ncsg.is
>> https://lists.ncsg.is/mailman/listinfo/ncsg-pc
>
> _______________________________________________
> NCSG-PC mailing list
> NCSG-PC at lists.ncsg.is
> https://lists.ncsg.is/mailman/listinfo/ncsg-pc

More information about the NCSG-PC mailing list