The Canadian Internet Registration Authority this week launched Registry Lock to “ensure .CA remains at the leading edge of domain security.”
According to CIRA, Registry Lock is a method for providing an additional layer of security for any website. It is of particular value to high-traffic, high-transaction websites, such as e-commerce or financial services sites, that regularly deal with large volumes of personal and confidential consumer information, says the organization.
With Registry Lock, a domain name is locked at the registry level. Any request to have the domain name redirected, its information altered, or its ownership transferred to another party cannot proceed without verification through the domain’s sponsoring Registrar and CIRA. In order to perform updates to a locked .CA domain name, a series of specific person-to-person authentication and verification protocols must be followed.
According to CIRA, this is the ideal way to protect a domain from malicious activities known as domain hijacking, in which hijackers pose as the rightful owners of the domain (usually using illegally acquired account information) to make changes or transfer ownership so they can seize control of the domain name.
“Imagine a bank, a government agency or other trusted organization losing control of their domain, even if only for a short time,” explains Byron Holland, President and CEO of CIRA. “The impact on these businesses and all their users is significant. Registry Lock is the single best way for domain holders to protect themselves, and their customers, from this kind of malicious activity.”