ACSP Consultation: Securing Whois Queries

Consultation Tracking Information

  • Requested By: Staff
  • Status: Closed
  • Comments Opened: Linked to Discussion Archives: 28 March 2018
  • Comments Closed: 30 April 2018
  • Suggestion Number : 2018.3

Subject of Consultation

ARIN has received a suggestion requesting Whois queries made from "http" be automatically redirected to "https" in order to make the queries more secure. It has also been suggested ARIN consider using HSTS for Whois services. These suggestions were made through ARIN's Consultation and Suggestion Process and are documented at the following URL:
https://www.arin.net/participate/acsp/suggestions/2018-3.html

Question:  Should ARIN automatically redirect user Whois queries made  via "http" to "https"?

Question:  If ARIN redirects http to https requests, should ARIN then use HSTS for web-based Whois queries?

The feedback you provide during this consultation will help inform how ARIN will proceed in response to ACSP 2018.3. All messages that have been sent to the arin-consult mailing lists in response to this suggestion prior to the opening of this consultation will be included in our feedback collection resulting from this consultation. Thank you for your participation in the ARIN Consultation and Suggestion Process. 

Please provide comments to arin-consult@arin.net. You can subscribe to this mailing list at: http://lists.arin.net/mailman/listinfo/arin-consult 

Discussion on arin-consult@arin.net will close on 30 April 2018. If you have any questions, please contact us at info@arin.net

Regards, 

John Curran
President and CEO
American Registry for Internet Numbers (ARIN)

ARIN Actions

ARIN thanks those who provided valuable feedback during this consultation that was issued in response to ACSP 2018.3: Automatically Redirect Whois Queries to Secure URL. This important feedback will help inform ARIN's path forward in this area.