Privacy and Accuracy Issues in Network Information Center Databases (RFC1355)
Original Publication Date: 1992-Aug-01
Included in the Prior Art Database: 2019-Feb-11
Internet Society Requests For Comment (RFCs)
J. Curran: AUTHOR [+1]
This document provides a set of guidelines for the administration and operation of public Network Information Center (NIC) databases. This memo provides information for the Internet community. It does not specify an Internet standard.
Network Working Group J. Curran Request for Comments: 1355 NNSC FYI: 15 A. Marine SRI August 1992
Privacy and Accuracy Issues in Network Information Center Databases
Status of This Memo
This memo provides information for the Internet community. It does not specify an Internet standard. Distribution of this memo is unlimited.
This document provides a set of guidelines for the administration and operation of public Network Information Center (NIC) databases. The purpose is to formalize procedures for the responsible handling of the personal and organizational information maintained by NICs in publically accessible databases, and to improve the accuracy and accessibility of such data where appropriate.
This document is based upon the work of the Network Information Services Infrastructure (NISI) working group in the User Services Area of the IETF. Thanks are due to the members of this working group who contributed ideas and comments, especially to Glee Cady (University of Michigan) for her significant contributions. Special thanks are also extended to Steve Crocker (TIS) for his guidance in this area. Due to the natural overlap between NIC databases and public user directories, this document also references concepts contained in the North American Directory Forum’s (NADF) "User Bill of Rights for Entries and Listings in the Public Directory" (RFC 1295).
The purpose of this document is to consider the privacy and accuracy issues that result from many NIC databases being publicly accessible. This document considers only generic concerns about such systems; it intentionally does not make recommendations for specific databases on the Internet. Clearly, it is the responsibility of each NIC to determine what procedures should apply for each of its databases. The document discusses the obligations a NIC that maintains such a
Curran & Marine [Page 1]
RFC 1355 Privacy and Accuracy in NIC Databases August 1992
database has towards those about whom data appears in the database. These obligations apply to database entries that contain information that is publically accessible to Internet users.
2. Background and Organization
In fulfilling the functions of a Network Information Center, each NIC needs to collect and distribute a variety of information about the network it serves. Much of the information handled by a NIC is "directory" information that provides pointers to people, organizations, and resources throughout a network. The use of publically accessible databases to disseminate such data is seen as beneficial to the Internet because it allows efficient information retrieval by users, Network Operation Centers (NOCs), and other NICs.
This document is organized into two parts. The first part contains recommendations for preventing unauthorized disclosure of information in NIC databases. The second part recommends formal accuracy guidelines for NIC databases.
3. NIC Database Privacy
The existence of publically accessi...