Internet Engineering Task Force W. Tan Internet-Draft Cloud Registry Intended status: Standards Track G. Brown Expires: February 11, 2013 CentralNic Ltd J. Gould VeriSign, Inc. August 10, 2012 Launch Phase Mapping for the Extensible Provisioning Protocol (EPP) draft-tan-epp-launchphase-02 Abstract This document describes an Extensible Provisioning Protocol (EPP) extension mapping for the provisioning and management of domain names during the launch phase of a domain name registry. Status of this Memo This Internet-Draft is submitted in full conformance with the provisions of BCP 78 and BCP 79. Internet-Drafts are working documents of the Internet Engineering Task Force (IETF). Note that other groups may also distribute working documents as Internet-Drafts. The list of current Internet- Drafts is at http://datatracker.ietf.org/drafts/current/. Internet-Drafts are draft documents valid for a maximum of six months and may be updated, replaced, or obsoleted by other documents at any time. It is inappropriate to use Internet-Drafts as reference material or to cite them other than as "work in progress." This Internet-Draft will expire on February 11, 2013. Copyright Notice Copyright (c) 2012 IETF Trust and the persons identified as the document authors. All rights reserved. This document is subject to BCP 78 and the IETF Trust's Legal Provisions Relating to IETF Documents (http://trustee.ietf.org/license-info) in effect on the date of publication of this document. Please review these documents carefully, as they describe your rights and restrictions with respect to this document. Code Components extracted from this document must include Simplified BSD License text as described in Section 4.e of the Trust Legal Provisions and are provided without warranty as Tan, et al. Expires February 11, 2013 [Page 1] Internet-Draft Launch Phase Mapping for EPP August 2012 described in the Simplified BSD License. Table of Contents 1. Introduction . . . . . . . . . . . . . . . . . . . . . . . . . 3 1.1. Conventions Used in This Document . . . . . . . . . . . . 3 2. Object Attributes . . . . . . . . . . . . . . . . . . . . . . 3 2.1. Application Identifiers . . . . . . . . . . . . . . . . . 4 2.2. Launch Phases . . . . . . . . . . . . . . . . . . . . . . 4 2.3. Status Values . . . . . . . . . . . . . . . . . . . . . . 4 2.3.1. State Transition . . . . . . . . . . . . . . . . . . . 5 2.4. Claim Validation Models . . . . . . . . . . . . . . . . . 6 2.4.1. element . . . . . . . . . . . . . . 6 2.5. Claim . . . . . . . . . . . . . . . . . . . . . . . . . . 7 2.6. Contact . . . . . . . . . . . . . . . . . . . . . . . . . 8 2.7. Digital Signature . . . . . . . . . . . . . . . . . . . . 9 2.7.1. element . . . . . . . . . . . . . 9 2.7.2. element . . . . . . . . . . . . 11 3. EPP Command Mapping . . . . . . . . . . . . . . . . . . . . . 12 3.1. EPP Command . . . . . . . . . . . . . . . . . . . 13 3.2. EPP Command . . . . . . . . . . . . . . . . . . . . 13 3.2.1. Sunrise Info Form . . . . . . . . . . . . . . . . . . 13 3.2.2. Claims Info Form . . . . . . . . . . . . . . . . . . . 20 3.3. EPP Command . . . . . . . . . . . . . . . . . . . 24 3.3.1. Sunrise Create Form . . . . . . . . . . . . . . . . . 25 3.3.2. Claims Create Form . . . . . . . . . . . . . . . . . . 31 3.4. EPP Command . . . . . . . . . . . . . . . . . . . 34 3.5. EPP Command . . . . . . . . . . . . . . . . . . . 36 3.6. EPP Command . . . . . . . . . . . . . . . . . . . 37 3.7. EPP Command . . . . . . . . . . . . . . . . . . 38 4. Formal Syntax . . . . . . . . . . . . . . . . . . . . . . . . 38 5. Acknowledgements . . . . . . . . . . . . . . . . . . . . . . . 46 6. IANA Considerations . . . . . . . . . . . . . . . . . . . . . 46 7. Security Considerations . . . . . . . . . . . . . . . . . . . 47 8. Normative References . . . . . . . . . . . . . . . . . . . . . 47 Authors' Addresses . . . . . . . . . . . . . . . . . . . . . . . . 48 Tan, et al. Expires February 11, 2013 [Page 2] Internet-Draft Launch Phase Mapping for EPP August 2012 1. Introduction This document describes an extension mapping for version 1.0 of the Extensible Provisioning Protocol (EPP) [RFC5730]. This EPP mapping specifies a flexible schema that can be used to implement several common use cases related to the provisioning and management of launch phase extension in a domain name registry. It is typical for domain registries to operate in special modes within certain periods of time to facilitate allocation of domain names for a subset of the zone namespace that becomes available. This document uses the term "launch phase" and the shorter form "launch" to refer to such a period. The EPP domain name mapping [RFC5731] is designed for the steady state operation of a registry. During the launch, the interface used at each phase of the launch could be different from what is defined in EPP domain name mapping [RFC5731]. for example, registries typically accept multiple applications for a given domain name during the "sunrise" launch phase. In addition, the Trademark Clearinghouse Draft Implementation Model [1] defines a registry interface for the Trademark Claims or "claims" launch phase that includes support for presenting a Trademark Claims Notice to the Registrant. This document proposes an extension to the domain name extension in order to unambiguously manage the various launch phases known. 1.1. Conventions Used in This Document The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this document are to be interpreted as described in RFC 2119 [RFC2119]. XML is case sensitive. Unless stated otherwise, XML specifications and examples provided in this document MUST be interpreted in the character case presented in order to develop a conforming implementation. "launch-1.0" is used as an abbreviation for "urn:ietf:params:xml:ns:launch-1.0". The XML namespace prefix "launch" is used, but implementations MUST NOT depend on it and instead employ a proper namespace-aware XML parser and serializer to interpret and output the XML documents. 2. Object Attributes This extension adds additional elements to the EPP domain name mapping [RFC5731]. Only those new elements are described here. Tan, et al. Expires February 11, 2013 [Page 3] Internet-Draft Launch Phase Mapping for EPP August 2012 2.1. Application Identifiers Servers MAY allow multiple applications of a given domain name during its launch phase operations. Upon receiving a request to create a domain name, the server creates an application object corresponding to the request and assigns an application identifier for the application and returns it to the client with the element. In order to facilitate correlation, all subsequent launch operations on the application object MUST be qualified by the previously assigned application identifier using the element. 2.2. Launch Phases The server MAY support multiple launch phases sequentially or simultaneously. The element MUST be included by the client to define the target launch phase of the command. The following launch phase values are defined: sunrise Phase when trademark holders can submit registration applications with trademark information that can be validated by the server. landrush Post sunrise phase when non-trademark holders are allowed to register domain names. claims Trademark claims phase as defined by Trademark Clearinghouse Draft Implementation Model [1]. open Post launch phase that is also referred to as "steady state". Servers MAY require additional trademark protection with this phase. custom A custom server launch phase that is defined using the "name" attribute. For extensibility the element includes an OPTIONAL "name" attribute that can define a sub-phase or the full name of the phase when the element has the "custom" value. 2.3. Status Values A launch application object MAY have a status value. The element is used to convey extended status pertaining to the application object, beyond what is specified in the object mapping for this application object. The following status values are defined: Tan, et al. Expires February 11, 2013 [Page 4] Internet-Draft Launch Phase Mapping for EPP August 2012 pending: the initial state of a newly-created application object. validated: the application meets relevant registry rules. invalid: the application does not validate according to registry rules allocated: one of two possible end states of an application object; the object corresponding to the application has been provisioned rejected: the other possible end state; the object was not provisioned Certain status values MAY be combined. For example, an application can be invalid and rejected. Additionally certain statuses MAY be skipped. For example, an application can immediately start at the allocated status. If a processes a request synchronously without the use of an intermediate application, than an Application Identifier (Section 2.1) is not needed along with the application status. 2.3.1. State Transition | request v +---------+ | pending | +----+----+ | | +--------------+-----+-----------+--------------+ | | | | v v v v +-----------+ +---------+ +-------+ +-------+ | | | | / \ / \ | validated | | invalid +----->| rejected | | allocated | | | | | \ / \ / +----+------+ +----+----+ +-------+ +-------+ | | ^ ^ | | | | | +-----------------+ | | | | +---------------------------------+ | | | +------------------------------------------------+ Figure 1 Tan, et al. Expires February 11, 2013 [Page 5] Internet-Draft Launch Phase Mapping for EPP August 2012 2.4. Claim Validation Models A server MUST support one of four models for validating the trademark claim information: code Use of a claim code by itself to validate that the claim matches the domain name. The code is the "sunrise code" as defined in Trademark Clearinghouse Draft Implementation Model [1] that is validated by the server using its local sunrise code data. This model is supported using the element with just the element. claim The claim information is passed without any other validation element. The server will use some custom form of validation to validate that the claim information is authentic. This model is supported using the element with just the element. code with claim: A code is used along with the claim information by the server to validate the claim utilizing an external party like a Trademark Clearinghouse. The code represents some form of secret that matches the claims information passed. This model is supported using the element with both the and the element. signed claim: The claim information is digitally signed as described in the Digital Signature (Section 2.7) section. The digital signature can be directly validated by the server using the public key of the external party that created the signed claim. This model is supported using the (Section 2.7.1) and (Section 2.7.2) elements. More than one element or more than one element MAY be specified. The maximum number of claims per domain name is up to server policy. 2.4.1. element The element that is used by the "code", "claim", and "code with claim" validation models has the following child elements: : OPTIONAL claim code used to validate the information or to directly validate the claim against the domain name. The claim code can be a claim specific secret value that the server can verify against a third party or can be directly combined with the domain name to verify against a server code file. Tan, et al. Expires February 11, 2013 [Page 6] Internet-Draft Launch Phase Mapping for EPP August 2012 : OPTIONAL claim information with child elements defined in the Claim (Section 2.5) section. The following is an example element with both a and a element. 49FD46E6C4B45C55D4AC Example One example-one exampleone IP Clearinghouse GE 3933232 REG-TM-WORD owner 2011-09-09 2013-09-09 AU VIC Example Inc. John Doe Example Inc. 123 Example Dr. Suite 100 Reston VA 20190 US +1.7035555555 +1.7035555556 jdoe@example.tld 2.5. Claim A element describes an applicant's prior right to a given domain name. The child elements of the element include: Tan, et al. Expires February 11, 2013 [Page 7] Internet-Draft Launch Phase Mapping for EPP August 2012 : an identifier for the claim. This identifier MUST be unique among all claims associated with an application object. : The registered trademark text string. This value is free-form text that MAY be mapped to one or more values. : Zero or more domain name labels that corresponds to the . Each can match directly to the domain name after adding the parent zone. : name of the authority which issued the right (trademark clearinghouse, trademark office, company registration bureau, etc.) : the registration number of the right (trademark number, company registration number, etc.) : indicates the type of claim being made (trademark, symbol, combined mark, company name, etc.) : indicates the applicant's entitlement to the claim (owner, licensee, etc.) : the date of registration of the claim : the date of expiration of the claim : indicates the country in which the claim is valid. This may be a two-character code from [WIPO.ST3] : indicates the name of a city, state, province or other geographic region in which the claim is valid. : Owner information using the Contact (Section 2.6) elements. : Contact for the owner using the Contact (Section 2.6) element. All of the child elements are OPTIONAL. Server policy may place additional constraints on the format and requirements of such elements. 2.6. Contact The contact information contained within the Claim (Section 2.5) cannot be defined via a contact identifier as defined in the EPP contact mapping [RFC5733] since it is contact information defined outside of the server. Some of the contact elements defined in EPP contact mapping [RFC5733] are replicated in this extension. The child elements of a contact using either the or elements include: : identifier of contact that MUST be unique among all contacts of the external third party. Tan, et al. Expires February 11, 2013 [Page 8] Internet-Draft Launch Phase Mapping for EPP August 2012 : name of the individual or role represented by the contact. : name of the organization with which the contact is affiliated. : address information associated with the contact. the element contains the following child elements: one, two, or three elements that contain the contact's street address. contact's city contact's state or province contact's country code : contact's voice telephone number : contact's facsimile telephone number : contact's email address All of the child elements are OPTIONAL. Server policy may place additional constraints on the format and requirements of such elements. 2.7. Digital Signature Digital signatures can be used by the server to validate either the claims information, when using the signed claim model with the element, or the claims notice with the element. The digital signatures are handled using an XML Signature [2] around the entire or elements. Once the digital signature is validated using the appropriate public key, the server can trust all of the information included in the or elements. It's up to server policy how the public key is transferred. To have the digital signature cover all of the elements of the and elements, the XML Signature [2] Reference URI is set to "#pointer(..)" and the Transform "http://www.w3.org/2000/09/xmldsig#enveloped-signature" is used. Both of these has the digital signature cover the parent element of the Signature element and to specify that the Signature element is embedded in the parent element. 2.7.1. element The child elements of the element include: Tan, et al. Expires February 11, 2013 [Page 9] Internet-Draft Launch Phase Mapping for EPP August 2012 : Signature serial number that that can be compared with a revocation list by the server. : Zero or more DNS zones the can be used with. No element indicates that the can be used within any DNS zone. : OPTIONAL date and time that the expires. The server MUST NOT accept a that has expired. No element indicates that there is no expiry. : Claim information as defined in the Claim (Section 2.5) section. : XML Signature [2] for the The following is an example using the XML Signature [2] to sign all of the elements of element. 123456 newtld 2012-08-16T09:00:00.0Z Example One example-one exampleone IP Clearinghouse GE 3933232 REG-TM-WORD owner 2011-09-09 2013-09-09 AU VIC Example Inc. John Doe Example Inc. 123 Example Dr. Suite 100 Reston VA 20190 US +1.7035555555 Tan, et al. Expires February 11, 2013 [Page 10] Internet-Draft Launch Phase Mapping for EPP August 2012 +1.7035555556 jdoe@example.tld j6lwx3rvEPO0vKtMup4NbeVu8nk= cID8yqvR60QYQVhOpBDUmPiIxplV/fM7lj9RKF+fswSjJAklUrgf2w== 2.7.2. element The child elements of the element include: : Unique notice identifier generated by the third party. The can be compared with a revocation list by the server. : OPTIONAL date and time that the expires. The server MUST NOT accept a that has expired. No element indicates that there is no expiry. : XML Signature [2] for the Tan, et al. Expires February 11, 2013 [Page 11] Internet-Draft Launch Phase Mapping for EPP August 2012 The following is an example using the XML Signature [2] to sign all of the elements of element. 49FD46E6C4B45C55D4AC 2012-08-16T09:00:00.0Z j6lwx3rvEPO0vKtMup4NbeVu8nk= cID8yqvR60QYQVhOpBDUmPiIxplV/fM7lj9RKF+fswSjJAklUrgf2w== 3. EPP Command Mapping A detailed description of the EPP syntax and semantics can be found in the EPP core protocol specification [RFC5730]. The command mappings described here are specifically for use in the Launch Phase Extension. This mapping is designed to be flexible, requiring only a minimum set of required elements. While it is meant to serve several use cases, it does not prescribe any interpretation by the client or server. Such processing is typically highly policy-dependent and therefore specific to implementations. Operations on application objects are done via one or more of the Tan, et al. Expires February 11, 2013 [Page 12] Internet-Draft Launch Phase Mapping for EPP August 2012 existing EPP verbs defined in the EPP domain name mapping [RFC5731]. Registries may choose to support a subset of the operations. 3.1. EPP Command This extension does not define any extension to the EPP command or response described in the EPP domain name mapping [RFC5731]. 3.2. EPP Command This extension defines additional elements to extend the EPP command and response to be used in conjunction with the EPP domain name mapping [RFC5731]. There are two forms of the extension to the EPP command that are dependent on the supported launch phases (Section 2.2) as defined below: sunrise The EPP command with the "sunrise" phase is used to retrieve information for a specific "sunrise" application based on an Application Identifier (Section 2.1). This form of the EPP extension is referred to as the Sunrise Info Form and is defined in the Sunrise Info Form (Section 3.2.1) section. landrush The EPP command with the "landrush" phase is undefined but the form supported is up to server policy. claims The EPP command with the "claims" phase is used to retrieve the trademark claims information associated with a non- existing domain name that is referred to as the Claims Info Command. The response to the Claims Info Command does not extend the Domain Info Response as defined in EPP domain name mapping [RFC5731]. This form of the EPP extension is referred to as the Claims Info Form and defined in the Claims Info Form (Section 3.2.2) section. open The EPP command with the "open" phase is undefined but the form supported is up to server policy. custom The EPP command with the "custom" phase is undefined but the form supported is up to server policy. 3.2.1. Sunrise Info Form The Sunrise Info Form of the extension to the EPP domain name mapping [RFC5731] gets information on an application created with the using the Application Identifier (Section 2.1) returned in the element of the Create Response (Section 3.3). A element is sent along with the regular domain command. The element contains the following child elements: Tan, et al. Expires February 11, 2013 [Page 13] Internet-Draft Launch Phase Mapping for EPP August 2012 The phase during which the application was submitted or is associated with. Server policy defines what phases that are supported for the Sunrise Info Form. the application identifier of the application. Example domain command with the Sunrise Info Form extension. example.tld sunrise abc123 ABC-12345 If the query was successful, the server replies with an element along with the regular EPP . The contains the following child elements: the phase during which the application was submitted or is associated with. the application identifier of the returned application. status of the application using one of the supported status values (Section 2.3). or zero or more elements. The child elements are defined in the element (Section 2.4.1) section. Tan, et al. Expires February 11, 2013 [Page 14] Internet-Draft Launch Phase Mapping for EPP August 2012 zero or more elements. The child elements are defined in the element (Section 2.7.1) section. Example domain response using the Sunrise Info Form extension with multiple codes. Tan, et al. Expires February 11, 2013 [Page 15] Internet-Draft Launch Phase Mapping for EPP August 2012 Command completed successfully example.tld EXAMPLE1-REP jd1234 sh8013 sh8013 ClientX ClientY 2012-04-03T22:00:00.0Z 2fooBAR sunrise abc123 49FD46E6C4B45C55D4AC 49FD46E6C4B45C55D4AD 49FD46E6C4B45C55D4AE ABC-12345 54322-XYZ Tan, et al. Expires February 11, 2013 [Page 16] Internet-Draft Launch Phase Mapping for EPP August 2012 Example domain response using the Sunrise Info Form extension with code and claim information. Command completed successfully exampleone.tld EXAMPLE1-REP jd1234 sh8013 sh8013 ClientX ClientY 2012-04-03T22:00:00.0Z 2fooBAR sunrise abc123 49FD46E6C4B45C55D4AC Example One example-one exampleone IP Clearinghouse GE 3933232 REG-TM-WORD owner 2011-09-09 2013-09-09 AU VIC Tan, et al. Expires February 11, 2013 [Page 17] Internet-Draft Launch Phase Mapping for EPP August 2012 Example Inc. John Doe Example Inc. 123 Example Dr. Suite 100 Reston VA 20190 US +1.7035555555 +1.7035555556 jdoe@example.tld ABC-12345 54322-XYZ Example domain response using the Sunrise Info Form extension signed claim information. Command completed successfully exampleone.tld EXAMPLE1-REP jd1234 sh8013 sh8013 ClientX Tan, et al. Expires February 11, 2013 [Page 18] Internet-Draft Launch Phase Mapping for EPP August 2012 ClientY 2012-04-03T22:00:00.0Z 2fooBAR sunrise abc123 123456 newtld 2012-08-16T09:00:00.0Z Example One example-one exampleone IP Clearinghouse GE 3933232 REG-TM-WORD owner 2011-09-09 2013-09-09 AU VIC Example Inc. John Doe Example Inc. 123 Example Dr. Suite 100 Reston VA 20190 US +1.7035555555 +1.7035555556 jdoe@example.tld Tan, et al. Expires February 11, 2013 [Page 19] Internet-Draft Launch Phase Mapping for EPP August 2012 j6lwx3rvEPO0vKtMup4NbeVu8nk= cID8yqvR60QYQVhOpBDUmPiIxplV/fM7lj9RKF+fswSjJAklUrgf2w== ABC-12345 54322-XYZ 3.2.2. Claims Info Form The Claims Info Form of the extension to the EPP domain name mapping [RFC5731] gets trademark claims information for a non-existing domain name that is referred to as a Claims Info Command. The element contains the following child elements: The phase with the value of "claims" to indicate that this is a Claims Info Command. Tan, et al. Expires February 11, 2013 [Page 20] Internet-Draft Launch Phase Mapping for EPP August 2012 Example Claims Info Command using the domain command and the Claims Info Form extension. example.tld claims ABC-12345 If the query was successful, the server replies with an element containing the trademark claims information expected to be used by the client to generate the claims notice. The has the following child elements: the phase with a value of "claims". The information used for the trademark claims notice. The element has the following child elements: The domain name that the claim notice information is associated with. OPTIONAL element included if there are no trademark claims associated with the OPTIONAL server generated identifier for the claims notice that is passed in the extension of the Create Command (Section 3.3). This MUST be included if there is at least one trademark claim associated with the element. Zero or more elements containing the trademark claims information as defined in the Claim (Section 2.5) section. Tan, et al. Expires February 11, 2013 [Page 21] Internet-Draft Launch Phase Mapping for EPP August 2012 Example Claims Info Response when no matching trademark claims are found for the domain name example.tld. Command completed successfully claims example.tld ABC-12345 54322-XYZ Example Claims Info Response when two matching trademark claims are found for the domain name exampleone.tld. Command completed successfully claims exampleone.tld 49FD46E6C4B45C55D4AC Example One example-one exampleone Tan, et al. Expires February 11, 2013 [Page 22] Internet-Draft Launch Phase Mapping for EPP August 2012 IP Clearinghouse GE 3933232 REG-TM-WORD owner 2011-09-09 2013-09-09 AU VIC Example Inc. John Doe Example Inc. 123 Example Dr. Suite 100 Reston VA 20190 US +1.7035555555 +1.7035555556 jdoe@example.tld Example Two example-two exampletwo IP Clearinghouse GE 3933233 REG-TM-WORD owner 2011-09-09 2013-09-09 AU VIC Example Inc. John Doe Example Inc. 123 Example Dr. Suite 100 Tan, et al. Expires February 11, 2013 [Page 23] Internet-Draft Launch Phase Mapping for EPP August 2012 Reston VA 20190 US +1.7035555555 +1.7035555556 jdoe@example.tld ABC-12345 54322-XYZ 3.3. EPP Command There are two forms of the extension to the EPP command that are dependent on the supported launch phases (Section 2.2) as defined below: sunrise The EPP command with the "sunrise" phase is used to submit an application with trademark information that can be verified by the server with the value. The Sunrise Create Form (Section 3.3.1) is used for the "sunrise" phase. Optionally, the server can support multiple overlapping applications that are chosen asynchronously with a server generated Application Identifier (Section 2.1) for later reference. landrush The EPP command with the "landrush" phase is undefined but the form supported is up to server policy. claims The EPP command with the "claims" phase is used to pass the information that can be used to validate that the claims notice information was retrieved via the Claims Info Command and was accepted by the registrant. The Claims Create Form (Section 3.3.2) is used for the "claims" phase. open The EPP command with the "open" phase is undefined but the form supported is up to server policy. custom The EPP command with the "custom" phase is undefined but the form supported is up to server policy. Tan, et al. Expires February 11, 2013 [Page 24] Internet-Draft Launch Phase Mapping for EPP August 2012 3.3.1. Sunrise Create Form The Sunrise Create Form of the extension to the EPP domain name mapping [RFC5731] includes the verifiable trademark information that the server uses to match against the domain name to authorize the domain create. A server MUST support one of four models in Claim Validation Models (Section 2.4) for the verifiable trademark information passed by the client. A element is sent along with the regular domain command. The element contains the following child elements: The phase the application is associated with. or zero or more elements. The child elements are defined in the element (Section 2.4.1) section. zero or more elements. The child elements are defined in the element (Section 2.7.1) section. Tan, et al. Expires February 11, 2013 [Page 25] Internet-Draft Launch Phase Mapping for EPP August 2012 Following is an example domain command using the extension with multiple sunrise codes. example.tld jd1234 sh8013 sh8013 2fooBAR sunrise 49FD46E6C4B45C55D4AC 49FD46E6C4B45C55D4AD 49FD46E6C4B45C55D4AE ABC-12345 Following is an example domain command using the extension with a code and claim information. Tan, et al. Expires February 11, 2013 [Page 26] Internet-Draft Launch Phase Mapping for EPP August 2012 exampleone.tld jd1234 sh8013 sh8013 2fooBAR sunrise 49FD46E6C4B45C55D4AC Example One example-one exampleone IP Clearinghouse GE 3933232 REG-TM-WORD owner 2011-09-09 2013-09-09 AU VIC Example Inc. John Doe Example Inc. 123 Example Dr. Suite 100 Reston VA 20190 US +1.7035555555 +1.7035555556 jdoe@example.tld Tan, et al. Expires February 11, 2013 [Page 27] Internet-Draft Launch Phase Mapping for EPP August 2012 ABC-12345 Following is an example domain command using the extension with signed claim information. example.tld jd1234 sh8013 sh8013 2fooBAR sunrise 123456 newtld example-and-example example Hello IP Clearinghouse GE 3933232 REG-TM-WORD owner 2011-09-09 2013-09-09 AU Tan, et al. Expires February 11, 2013 [Page 28] Internet-Draft Launch Phase Mapping for EPP August 2012 VIC Example Inc. John Doe Example Inc. 123 Example Dr. Suite 100 Reston VA 20190 US +1.7035555555 +1.7035555556 jdoe@example.tld j6lwx3rvEPO0vKtMup4NbeVu8nk= cID8yqvR60QYQVhOpBDUmPiIxplV/fM7lj9RKF+fswSjJAklUrgf2w== ABC-12345 Tan, et al. Expires February 11, 2013 [Page 29] Internet-Draft Launch Phase Mapping for EPP August 2012 If the create was successful, the server MAY reply with the element along with the regular EPP to indicate the server generated Application Identifier (Section 2.1) when multiple applications of a given domain name is supported; otherwise no extension is included with the regular EPP . The element contains the following child elements: The phase of the application that mirrors the element included in the . the application identifier of the application. An example response when multiple overlapping applications are supported by the server. Command completed successfully example.tld 2010-08-10T15:38:26.623854Z 2012-08-10T15:38:26.623854Z sunrise 2393-9323-E08C-03B1 example:epp:239332 server-8551292e23b Tan, et al. Expires February 11, 2013 [Page 30] Internet-Draft Launch Phase Mapping for EPP August 2012 3.3.2. Claims Create Form The Claims Create Form of the extension to the EPP domain name mapping [RFC5731] includes the information related to the acceptance of the claims notice that is based on the contents of the Claims Info Response defined in the Claims Info Form (Section 3.2.2) section or is based on a signed notice by a trusted third party like the Trademark Clearinghouse (TMCH). A element is sent along with the regular domain command. The element contains the following child elements: Must contain the value of "claims" to indicate it is the Claims Create Form or Reference to claims notice information using a server generated notice identifier. The element has the following child elements: Server generated identifier for the claim notice information returned in the element. The server MUST validate the noticeID either matches the exact claims information returned in the or the current claims information associated with the domain name. The method of validation is up to server policy. If the launchID does not pass the validation the server MUST return an EPP error result code of 2202. Contains the date and time that the claims notice was accepted. Contains the client IP address of the client that accepted the claims notice. Signed claims notice reference information generated by a trusted third party like the Trademark Clearinghouse (TMCH). The child elements of are defined in the element (Section 2.7.2) section. Tan, et al. Expires February 11, 2013 [Page 31] Internet-Draft Launch Phase Mapping for EPP August 2012 Following is an example domain command using the extension with the trademark claims notice reference information. example.tld jd1234 sh8013 sh8013 2fooBAR claims 49FD46E6C4B45C55D4AC 2012-06-19T09:00:00.0Z 192.0.2.29 ABC-12345 Following is an example domain command using the extension with the signed notice reference information. example.tld jd1234 sh8013 sh8013 2fooBAR claims 49FD46E6C4B45C55D4AC j6lwx3rvEPO0vKtMup4NbeVu8nk= cID8yqvR60QYQVhOpBDUmPiIxplV/fM7lj9RKF+fswSjJAklUrgf2w== ABC-12345 Tan, et al. Expires February 11, 2013 [Page 33] Internet-Draft Launch Phase Mapping for EPP August 2012 3.4. EPP Command This extension defines additional elements to extend the EPP command to be used in conjunction with the domain name mapping. A server that does not support allow multiple applications of a given domain name with a Application Identifier (Section 2.1) during its launch phase operations MUST return an EPP error result code of 2102. Registry policies permitting, clients may update an application object by submitting an EPP command along with an element to indicate the application object to be updated. The element contains the following child elements: the phase during which the application was submitted or is associated with. the application identifier for which the client wishes to update. This extension does not define any extension to the response of an domain command. After processing the command, the server replies with a standard EPP response as defined in the EPP domain mapping. Tan, et al. Expires February 11, 2013 [Page 34] Internet-Draft Launch Phase Mapping for EPP August 2012 Following is an example domain command with the extension to add and remove a name server of a sunrise application with the application identifier "abc123". example.tld ns2.example.tld ns1.example.tld sunrise abc123 ABC-12345 Tan, et al. Expires February 11, 2013 [Page 35] Internet-Draft Launch Phase Mapping for EPP August 2012 An example response that corresponds to the above command. Command completed successfully example:epp:239333 server-8551292e23c 3.5. EPP Command This extension defines additional elements to extend the EPP command to be used in conjunction with the domain name mapping. A server that does not support allow multiple applications of a given domain name with a Application Identifier (Section 2.1) during its launch phase operations MUST return an EPP error result code of 2102. Registry policies permitting, clients MAY withdraw an application by submitting an EPP command along with an element to indicate the application object to be deleted. The element contains the following child elements: the phase during which the application was submitted or is associated with. the application identifier for which the client wishes to delete. This extension does not define any extension to the response of an domain command. After processing the command, the server replies with a standard EPP response as defined in the EPP domain mapping. Tan, et al. Expires February 11, 2013 [Page 36] Internet-Draft Launch Phase Mapping for EPP August 2012 Following is an example domain command with the extension. example.tld sunrise abc123 ABC-12345 An example response that corresponds to the above command. Command completed successfully example:epp:239334 server-8551292e23d 3.6. EPP Command This extension does not define any extension to the EPP command or response described in the EPP domain name mapping [RFC5731]. Tan, et al. Expires February 11, 2013 [Page 37] Internet-Draft Launch Phase Mapping for EPP August 2012 3.7. EPP Command This extension does not define any extension to the EPP command or response described in the EPP domain name mapping [RFC5731]. 4. Formal Syntax An EPP object mapping is specified in XML Schema notation. The formal syntax presented here is a complete schema representation of the object mapping suitable for automated validation of EPP XML instances. The BEGIN and END tags are not part of the schema; they are used to note the beginning and ending of the schema for URI registration purposes. Copyright (c) 2012 IETF Trust and the persons identified as authors of the code. All rights reserved. Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met: o Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer. o Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution. o Neither the name of Internet Society, IETF or IETF Trust, nor the names of specific contributors, may be used to endorse or promote products derived from this software without specific prior written permission. THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. BEGIN Tan, et al. Expires February 11, 2013 [Page 38] Internet-Draft Launch Phase Mapping for EPP August 2012 Extensible Provisioning Protocol v1.0 domain name extension schema for the launch phase processing. Tan, et al. Expires February 11, 2013 [Page 39] Internet-Draft Launch Phase Mapping for EPP August 2012 Tan, et al. Expires February 11, 2013 [Page 40] Internet-Draft Launch Phase Mapping for EPP August 2012 Tan, et al. Expires February 11, 2013 [Page 41] Internet-Draft Launch Phase Mapping for EPP August 2012 Tan, et al. Expires February 11, 2013 [Page 43] Internet-Draft Launch Phase Mapping for EPP August 2012 Tan, et al. Expires February 11, 2013 [Page 44] Internet-Draft Launch Phase Mapping for EPP August 2012 END 5. Acknowledgements [to be filled in] 6. IANA Considerations This document uses URNs to describe XML namespaces and XML schemas conforming to a registry mechanism described in [RFC3688]. Registration request for the extension namespace: URI: urn:ietf:params:xml:ns:launch-1.0 Registrant Contact: IESG Tan, et al. Expires February 11, 2013 [Page 46] Internet-Draft Launch Phase Mapping for EPP August 2012 XML: None. Namespace URIs do not represent an XML specification. Registration request for the extension XML schema: URI: urn:ietf:params:xml:schema:launch-1.0 7. Security Considerations The mapping extensions described in this document do not provide any security services beyond those described by EPP [RFC5730], the EPP domain name mapping [RFC5731], and protocol layers used by EPP. The security considerations described in these other specifications apply to this specification as well. Updates to, and deletion of an application object must be restricted to clients authorized to perform the said operation on the object. As information contained within an application, or even the mere fact that an application exists may be confidential. Any attempt to operate on an application object by an unauthorized client MUST be rejected with an EPP 2303 (object does not exist) or an appropriate auhorization error. Server policy may allow operation with filtered output by clients other than the sponsoring client, in which case the and response SHOULD be filtered to include only fields that are publicly accessible. 8. Normative References [RFC2119] Bradner, S., "Key words for use in RFCs to Indicate Requirement Levels", BCP 14, RFC 2119, March 1997. [RFC3688] Mealling, M., "The IETF XML Registry", BCP 81, RFC 3688, January 2004. [RFC5730] Hollenbeck, S., "Extensible Provisioning Protocol (EPP)", STD 69, RFC 5730, August 2009. [RFC5731] Hollenbeck, S., "Extensible Provisioning Protocol (EPP) Domain Name Mapping", STD 69, RFC 5731, August 2009. [RFC5733] Hollenbeck, S., "Extensible Provisioning Protocol (EPP) Contact Mapping", STD 69, RFC 5733, August 2009. [WIPO.ST3] WIPO, "Recommended standard on two-letter codes for the representation of states, other entities and Tan, et al. Expires February 11, 2013 [Page 47] Internet-Draft Launch Phase Mapping for EPP August 2012 intergovernmental organizations", March 2007. [1] [2] Authors' Addresses Wil Tan Cloud Registry Suite 32 Seabridge House 377 Kent St Sydney, NSW 2000 AU Phone: +61 414 710899 Email: wil@cloudregistry.net URI: http://www.cloudregistry.net Gavin Brown CentralNic Ltd 35-39 Mooregate London, England EC2R 6AR GB Phone: +44 8700 170 900 Email: gavin.brown@centralnic.com URI: http://www.centralnic.com James Gould VeriSign, Inc. 12061 Bluemont Way Reston, VA 20190 US Email: jgould@verisign.com URI: http://www.verisigninc.com Tan, et al. Expires February 11, 2013 [Page 48]