False Whois

False Whois refers to providing incorrect or inaccurate data to the Whois database. Whois data is publicly available and includes information about a domain's registrant, such as "contact information (e.g., mailing address, phone number and e-mail address), administrative and technical contacts, and other information." This information is collected by the registrar and is meant to provide a means of contacting a website's registrant if there are technical difficulties with the site or if illegal activity has occurred. However, it can also be used by unscrupulous people trying to steal the registrant's personal information. A recent study released by Carnegie Mellon University found that "there is a statistically significant occurrence of WHOIS misuse affecting Registrants’ email addresses, postal addresses, and phone numbers" with 44% of registrants experiencing these types of Whois misuse.

Public Perception
Public perception on using false Whois information is mixed. People tend to be skeptical of how and who uses Whois data, especially with the risk of identity theft. Additionally, there is concern that Whois data could compromise people's safety by requiring a physical address. As for paying for a privacy or a proxy service, it can be expensive when compared to simply using false data. The dark side of false Whois information, such as using false credentials to engage in illegal or criminal activity, also remains a large concern. People want the Internet to be an open and public forum but they do not want to be taken advantage of or put at risk.

Outcome
The outcome of false whois data is that it conceals the identity of registrants and makes it difficult to contact the registrant if problems occur. Motivations for this activity may be criminal or completely innocuous.

Historical Use

 * False Whois data can be used for a number of reasons, namely to conceal the identity or contact information of a registrant without using a registrar's privacy policy or a proxy service. The reasoning behind this misinformation varies. Sometimes people seek to conceal their information because their website is involved in illegal activity while others are concerned that their public Whois data compromises their private identity and will be used by spammers, scammers, or phishers. To address the concern of improper Whois use, ICANN and the GNSO are currently sponsoring and conducting research on how the Whois database is being used. The Whois database is believed to contribute to phishing, spam, domain slamming, and fake renewal notices.

ICANN Policy

 * Whois Restored Names Accuracy Policy: this policy, enacted in 2004 states that once a name is deleted because of false or inaccurate "contact data, or there was no response to requests for information, the name must remain on hold until the registrant provides updated and accurate WHOIS data."


 * Whois Data Reminder Policy (WDRP): this policy, enacted by ICANN in 2003 requires that once a year registrars send out WDRP notices that ask for changes or updates to the registrant's current Whois information. This policy is aimed at having correct and up-to-date Whois data; if there are no changes in Whois information, no response is required.
 * View a Sample WDRP Notice


 * 2013 Registrar Accreditation Agreement (RAA): in the new RAA, registrars are required to validate a large amount of the personal information supplied by registrants in addition to actively verifying their phone number or email address. Falsifying the Whois information provided to registrars results in a 15 day period where the registrant is asked to correct the errors; if the registrant does not respond, it can "constitute a material breach of the Registered Name Holder-registrar contract and be a basis for cancellation of the Registered Name registration"
 * Some limitations associated with these ICANN policies are that registrars possibly have disincentives to delete registrations even if deadlines are missed and that different registrars may have individual policies when it comes to privacy or proxy services and dealing with Whois complaints.


 * ICANN released a Draft Implementation Plan that would create a Whois program to report the accuracy of Whois information. The report is available for public comment until April 1. The next step in implementing this program is an ICANN request for an official proposal.
 * This plan is based on an experimental study performed by NORC and SSAC recommendations.
 * ICANN would sample Whois information in gTLDs rating them on this scale: "No Failure, Minimal Failure, Limited Failure, Substantial Failure, and Complete Failure."
 * Whois entries would be judged in three major categories: syntactic accuracy, operational accuracy, and identity. Syntactic accuracy would involve validating that all the fields are filled out and in the correct format. Operational accuracy would address whether or not the information is "applicable," and the identity category refers to validating that the Whois information "can be used to confirm the identity of the registrant."
 * ICANN would also notify registrars with false or inaccurate Whois information.


 * An Expert Working Group (EWG) is also working on a proposal to replace the current Whois system with the Registration Directory System (RDS). The RDS would hopefully better protect registrant data and could possibly lead to less inaccurate registrations.

Legislation

 * There is currently no legislation that directly addresses false Whois information.


 * In 2004, the Fraudulent Online Identity Sanctions Act (FOISA) was introduced in Congress. The act would have increased penalties for people who used false Whois information in order to facilitate criminal activity on the Internet, such as trademark violations like cybersquatting or typosquatting. FOISA would have amended the Trademark Act of 1946; however, it was never passed.

DNS Awards
Awardees actively investigate false Whois data reports and are in compliance with current ICANN Whois policy in regard to validating, verifying, and checking the Whois data provided by customers.

Additional Resources

 * Report false Whois data using a Whois Inaccuracy Complaint Form
 * Read Whois Use Reports and Studies
 * Look into the Specific Elements of Whois Data
 * Read ICANN's Draft Implementation Plan

Relating Articles

 * Whois Audits and Verification
 * Whois Misuse