23 Provide name and full description of all the Registry Services to be provided
|gTLD||Full Legal Name||E-mail suffix||Detail|
As we mention in other part of this registration questionnaire, we are planning to outsource the technical operation of gTLD to our partner company Gransy s.r.o. This company is ICANN accredited registrar and is fully prepared for this operation. Our future co-operation is affirmed in the Letter of Confirmation, which is attached to this questionnaire just as reference to the Gransy company.
We would also like to point out that we plan to operate the gLTD for corporate purposes and we do not assume to open registrations to the public or to the other registrars.
The answers for the Technical Questions (Q23 - Q44) are derived from the technical documentation of the Gransy company.
Registry is purely EPP based, the only way to perform mutable registry request is using the EPP interface. We use self-developed and tested EPP server, which is in compliance with RFC standards as stated later. Security is enforced by using SSL protocol with mandatory certificate validation, IP address filtering and username⁄password authentication. Such information is exchanged with registrars using offline authentication. EPP server itself is equipped with mechanisms to limit number of registrar request per minute, if the traffic is unbalanced.
We provide DNSSEC capable DNS services on four geographically distinct nameservers. BIND software is used as the server itself and meets RFC standards as well. These nameservers are enough for our planned number of domains and a lot more.
Whois service is running on port 43 as standard Whois server using our own server application. It is highly configurable and for gTLD we use the format stated in Specification 4. Whois requests are limited per source IP address, it is only possible to successfully perform from 10 to 100 requests per minute from single IP address, depending on current server loads.
Web based Whois has the same limitation as the standard port 43 Whois, there is no captcha, but the same per-IP limitation, it is fairly adequate to keep the load stable. Client gets exactly the same information from web Whois as is in standard Whois, however there are added hyperlinks and simple html formatting to make output more readable and accessible.
Since all production servers are doubled, there is virtually no risk of hardware failure, in such case the other machine will handle the requests and the third spare server will be connected. All services run on dedicated servers under two independent and geographically distinct connection providers. When all servers are doubled, one of them is always connected to first provider, and the second to another provider. We are not fully dependent on one particular housing provider and it is possible to recover from full disconnection from one of them, this was carefully tested.
Concerning data safety, database servers are only accessible by our diagnostics servers, whois servers and EPP servers. Only EPP server has full right to modify data there, and EPP server was developed with care for security and robustness. It is not possible for registrars to get information about domains they do not manage. Our diagnostic server also verifies log files and checks the permissions.
All servers are running only the respective services and are protected by firewall.
We are also prepared to provide FTP or SFTP server for zone file dissemination.
Our software is IDN capable and we are prepared to use that feature in the future. At this moment we support Czech alphabet only.
Similar gTLD applications: (0)
|gTLD||Full Legal Name||E-mail suffix||z||Detail|