In the latest M3AAWG5 video, our panel dives into the EU's NIS2 Directive, particularly Article 28, which addresses concerns around redacted WHOIS records. M3AAWG5 is a series that brings together international cybersecurity experts to discuss pressing topics, moderated by Dennis Dayman, Co-Chair of M3AAWG’s Public Policy and Program Committees, with panelists Margie Milam and Laurin Weissinger.
The EU’s GDPR in 2018 led to redactions in WHOIS data, limiting public access to some domain ownership details. However, WHOIS data remains essential for investigating and preventing cybercrime. NIS2 introduces requirements for critical infrastructure and digital service providers to collect and verify complete and accurate WHOIS contact information, addressing the balance between privacy and transparency.
As experts in cybersecurity, M3AAWG submitted feedback to the EU supporting enhanced WHOIS access. This discussion celebrates the inclusion of many M3AAWG recommendations in Article 28’s implementation guidelines, exploring how improved WHOIS transparency could aid cybercrime investigations.
Key Takeaways:
- WHOIS Relevance: Why WHOIS data is essential in combating online abuse.
- Policy Impact: How M3AAWG’s advocacy shaped NIS2 guidelines.
- NIS2’s Future Implications: What stronger WHOIS disclosure means for EU cybersecurity.
Catch the full discussion in the latest M3AAWG5 video to learn more about the impact of NIS2 on online security and abuse prevention.