Effective April 5, 2024, an amendment to the 2013 Registrar Accreditation Agreement mandates new responsibilities for registrars concerning the handling of DNS Abuse for gTLD domains. This amendment specifies the obligations of registrars to act upon receiving credible evidence of abuse, aiming to bolster domain name system integrity and protect intellectual property rights. Registrars are cautioned that failing to comply with these provisions could lead to the loss of their ICANN accreditation, underscoring the importance of this update in the ongoing effort to combat domain abuse.
Cybersecurity experts and brand owners frequently express frustration over the sluggish pace at which Registrars address evident instances of domain name misuse. It is anticipated that the recent policy updates will foster an environment that motivates Registrars to act more decisively.
Under clause 3.18.2 of Global Amendment to the Registrar Accreditation Agreements, “when (a) Registrar has actionable evidence that a Registered Name sponsored by Registrar is being used for DNS Abuse, (the) Registrar must promptly take the appropriate mitigation action(s) that are reasonably necessary to stop, or otherwise disrupt, the Registered Name from being used for DNS Abuse. Action(s) may vary depending on the circumstances, taking into account the cause and severity of the harm from the DNS Abuse and the possibility of associated collateral damage”.
(A) Registrar must promptly take the appropriate mitigation action(s) that are reasonably necessary to stop, or otherwise disrupt, the Registered Name from being used for DNS Abuse.
Global Amendment to the Registrar Accreditation Agreement Tweet
Upon receiving an abuse complaint, Registrars are now required to act swiftly in response. This entails immediate suspension in instances of blatant abuse, and in less clear-cut cases, collaborating with the Registrant to ensure a prompt and effective resolution. Registrars must verify that the Registrant has been notified of the complaint and has undertaken suitable measures to cease or lessen the abusive activity, when required. Should a Registrar fail in this follow-up duty, their ICANN accreditation could be at risk. Consequently, both Registrars and Registrants are subjected to an increased compliance obligation, accelerating the resolution process for abuse cases.
Brandsec monitors the resolution timelines for abuse complaints submitted to Registrars and intends to provide updates on any enhancements observed as a result of this policy shift. It is anticipated that this will encourage Registrars to enhance their response efforts to abuse incidents.
About brandsec
brandsec is a team of highly experienced domain name management and online brand protection experts. We provide corporate domain name management and brand enforcement services, helping brands eliminate phishing platforms across the internet. Supporting some of the largest brands in the region, we offer innovative solutions to combat threats across multiple industries.