Internet Domain Name Management Rules (Opinion-seeking Revision Draft)
Chapter I: General Principles
Article 1: In order to standardize Internet domain name service activities, protect users’ lawful rights and interests, guarantee the security and reliable operation of the Internet domain name system, promote the development and application of Chinese-language domain names and national top-level domains, and stimulate the healthy development of China’s Internet, on the basis of the “Administrative Licensing Law of the People’s Republic of China” and the “State Council Decision concerning Establishing Administrative Licensing for Administrative Examination and Approval Matters that Need to Be Preserved” and other such provisions, and with reference to international Internet domain name management norms, these Rules are formulated.
Article 2: These Rules shall be respected when engaging in Internet domain name services and corresponding activities within the borders of the People’s Republic of China.
Internet domain name services (hereafter simply named domain name services) as mentioned in these Rules refer to activities including domain name root server operations and management, top-level domain name operations and management, domain name registration, domain name resolution, etc.
Article 3: The Ministry of Industry and Information Technology carries out supervision and management over domain name services nationwide, its main tasks are:
(1) formulating Internet domain name management rules and policies;
(2) formulating development plants for the Internet domain name system and domain name resources;
(3) managing domestic domain name root server-running bodies and domain name registration and management bodies;
(4) being responsible for the network and information security management of the domain name system;
(5) protecting users’ personal information and lawful rights and interests according to the law;
(6) being responsible for international coordination concerning domain names;
(7) managing domestic domain name resolution services;
(8) managing other activities concerning domain name services.
Article 4: All provincial, autonomous region and municipal telecommunications management bureaus are responsible for domain name services supervision and management within their own administrative areas, their main tasks are:
(1) Implementing and enforcing domain name management laws, administrative regulations, rules and policies;
(2) managing domain name registration service bodies within their administrative areas;
(3) assisting the Ministry of Industry and Information Technology in conducting management over domain name root server-running bodies and domain name registration and management bodies within their administrative areas;
(4) being responsible for network and information security management of the domain name system within their administrative area;)
(5) protecting users’ personal information and lawful rights and interests according to the law;
(6) managing domain name resolution services within their administrative areas;
(7) managing other activities concerning domain name services within their administrative areas.
Article 5: The Internet domain name system is proclaimed by the Ministry of Industry and Information Technology. On the basis of the real situation of domain name development, the Ministry of Industry and Information Technology may regulate the Internet domain name system.
Article 6: “.cn” and “.中国” are China’s national top-level domains.
Chinese language domain names are an important component part of the Internet domain name system. The State encourages and supports technological research and expanding the application of the Chinese-language domain name system.
Article 7: The provision of domain name services shall abide by relevant State laws and regulations, and conform to corresponding technological norms and standards.
Article 8: No organization or individual may impede the safe and stable operation of the Internet domain name system.
Chapter II: Domain name management
Article 9: For the domestic establishment of a domain name root server or domain name root server-running body, a domain name registration management body or a domain name registration service body, permission from the Ministry of Industry and Information Technology or provincial, autonomous region or municipal telecommunications management departments (hereafter jointly named telecommunications management bodies) shall be obtained.
Article 10: Those applying to establish a domain name root server or domain name root server-running body, shall meet the following conditions:
(1) the domain name root server is to be set up within the borders, and shall conform to corresponding Internet development plans and the requirements of the safe and stable operation of the domain name system;
(2) [they shall] be legal persons lawfully established within the borders, the said legal person and their main investors, main operational and management personnel are to have good credit records;
(3) having the premises, finance, environment, specialist personnel and technological capability to guarantee the safe and reliable operation of the root server, as well as information management systems conform to telecommunications management body requirements;
(4) having complete network and information security management measures, including management personnel, network and information security management structures, emergency response processing plans and corresponding technological and management measures;
(5) having the capability to protect users’ personal information, the capability to provide long-term services and complete service withdrawal mechanisms;
(6) other conditions provided in laws and administrative regulations.
Article 11: Those applying to establish a domain name registration and management body shall meet the following conditions:
(1) the top-level domain name management system is to be set up within the borders, and the top-level domain manes they hold are to conform to relevant laws and regulations as well as the requirements of the safe and stable operation of the domain name system;
(2) [they shall] be legal persons lawfully established within the borders, the said legal person and their main investors, and main operational and management personnel shall have good credit records;
(3) having perfect professional development plans and technological plans, as well as premises, finance and specialist personnel suited to engaging in top-level domain name operations and management, as well as information management systems conforming to telecommunications management body requirements;
(4) having complete network and information security protection measures, including management personnel, network and information security management structures, emergency response processing plans and corresponding technological and management measures, etc.’
(5) having the capability to engage in real identity information verification and users’ personal information protection, the capability to provide long-term services as well as complete service withdrawal processing mechanisms;
(6) having complete domain name registration service management structures and supervision mechanisms for domain name registration service bodies;
(7) other conditions provided in laws and administrative regulations.
Article 12: Those applying to establish a domain name registration service body, shall meet the following conditions:
(1) the domain name registration service system, registration database and resolution systems are to be set up within the borders;
(2) [they shall] be legal persons lawfully established within the territory, the said legal person and its main investors and main operational and management personnel shall have good credit records;
(3) having premises, finance and specialist personnel suited to engaging in domain name registration services, as well as information management systems conform to telecommunications management body requirements;
(4) having the capability to engage in real identity information verification and users’ personal information protection, the capability to provide long-term services and complete service withdrawal mechanism;
(5) having complete domain name registration service management structures and supervision mechanisms for domain name registration agency bodies;
(6) having complete network and information security protection measures, including management personnel, network and information security management structures, emergency response processing plans and corresponding technological and management measures.
(7) other conditions provided in laws and regulations.
Article 13: Those applying to establish a domain name root server and root server-running body, or domain name registration management body shall submit application materials to the Ministry of Industry and Information Technology. Those applying to establish a domain name registration service body shall submit application materials to the local provincial, autonomous region or municipal telecommunications management department.
The application materials shall include:
(1) the basic circumstances of the applying work unit
(2) certification materials for the effective management of domain name services, including certification materials for relevant systems and premises, as well as service capabilities, management structures as well as agreements concluded with other bodies;
(3) network and information security protection structures and measures;
(4) materials certifying the reputation of the applying work unit;
(5) a letter of commitment, signed by the legal representative, to do business sincerely and according to the law.
Article 14: Where application materials are complete and conform to the statutory form, telecommunications management bodies shall send a letter confirming receipt of the application to the applying work unit; where the application materials are not complete or do not conform to statutory form, telecommunications management bodies shall on the spot or within five working days notify the applying work unit once about the complete content that needs to be supplemented; to those not accepted, a notification letter of non-acceptance will be sent and the reasons explained.
Article 15: Telecommunications management bodies shall complete examination within 20 working days of receiving the application, and make a decision on granting or not granting permission. Where a decision cannot be reached within 20 working days, with the permission of the telecommunications management body, the period may be extended with 10 working days, and the reason for the extension is to be notified to the applying work unit. Where it is necessary to organize expert elucidation, the time of that elucidation is not calculated within the examination time.
To those granted permission, corresponding licensing documents shall be sent; where permission is not granted, the applying work unit shall be notified in writing and the reasons explained.
Article 16: Licences for domain name root server-running bodies, domain name registration management bodies and domain name registration service bodies have a period of validity of five years.
Article 17: Where a change occurs in the name, address, legal representative or other such information of domain name root server-running bodies, domain name registration management bodies and domain name registration service bodies, they shall carry out modification formalities with the original licence-issuing body within 20 days.
Article 18: Where domain name root server-running bodies, domain name registration management bodies or domain name registration service bodies intend to terminate corresponding services within the licence’s period, they shall notify users, put forward feasible plans to deal with the aftermath, and submit a written application to the original licence-issuing body.
After the original licence-issuing body receives the application, they shall announce it to society for 30 days. Within 60 days after the conclusion the period of announcement, the original licence-issuing body shall complete examination work and make a decision of approval or non-approval.
Article 19: Where the period of validity of a licence is expiring, and it is necessary to continue to engage in domain name services, [applicants] shall apply for an extension within 90 days in advance, with the original licence-issuing body; where domain name services will not be continued, it shall be reported within 90 days in advance to the original licence-issuing body, and aftermath work shall be completed.
Article 20: Where domain name registration service bodies entrust domain name registration agency bodies with conducting market retail and other such work, they shall supervise and manage the work of the said domain name registration agency bodies.
In the process of work, including entrusted market retail, domain name registration agency bodies shall actively indicate their agency relationship, and indicate the name of and agency relationship with the corresponding domain name registration service bodies in the domain name registration service contract.
Article 21: Domain name registration management bodies and domain name registration service bodies shall establish corresponding emergency response back-up systems and emergency response mechanisms within the borders, and regularly create back-ups of domain name registration data within the borders.
Article 22: Domain name root server-running bodies, domain name registration management bodies and domain name registration service bodies shall, in a clear position on the front page of their websites and in their business premises, indicate their licencing information. Domain name registration management bodies shall also indicate a name list of the domain name registration service bodies with which they cooperate.
Domain name registration service bodies shall require domain name registration agency bodies to indicate the name of the domain name registration service body in a clear position on the front page of their website and their business premises.
Chapter II: Domain name services
Article 23: Domain name root server-running bodies, domain name registration management bodies and domain name registration service bodies shall provide secure, convenient and stable services to users.
Article 24: Domain name registration management bodies shall, on the basis of these Rules, formulate domain name registration implementation rules and publish them to society.
Article 25: Domain name registration management bodies shall carry out domain name registration services through domain name registration service bodies approved by telecommunications management bodies.
Domain name registration service bodies shall provide services according to their licenced domain name registration service clauses, they may not provide domain name registration services for domain name registration management bodies that have not been licenced.
Article 26: In principle, “the first to apply is the first to register” in domain name registration services, where implementation regulations for corresponding top-level domain mane registration provide otherwise, those provisions are to be followed.
Article 27: In order to safeguard the national interest and the interests of the social public, domain name registration management bodies shall establish a reserved domain name registration character structure.
Article 28: Domain name registration service bodies may not provide services to any organization or individual for domain names containing the following content:
(1) content violating the basic principles determined in the Constitution;
(2) content endangering national security, divulging State secrets, subverting the national regime, and destroying national unity;
(3) content harming the national honour and interests;
(4) content inciting ethnic hatred or ethnic discrimination, or destroying ethnic unity;
(5) content destroying State religious policies or propagating heresy and feudal superstition;
(6) content disseminating rumours, upsetting social order or destroying social stability;
(7) content disseminating obscenity, sex, gambling, violence, murder, terror or instigating crime;
(8) content insulting or defaming others, or harming others’ lawful rights and interests;
(9) other content prohibited by laws or administrative regulations.
Article 29: Domain name registration service bodies may not adopt fraudulent, coercive or other such improper means to demand other persons to register domain names.
Article 30: Domain name registration service bodies shall demand domain name registration applicants to submit true, accurate and complete identity information of the domain name holder and other such domain name registration information.
Domain name registration management bodies and domain name registration service bodies shall examine the veracity and completeness of domain name registration information.
Where domain name applicants submit domain name registration information that is inaccurate or incomplete, domain name registration service bodies shall demand their correction. Where applicants do not correct this or submit inaccurate domain name registration information, domain name registration service bodies may not provide domain name services to them.
Article 31: Domain name registration service bodies shall make public the content, time limits and fees of domain name registration services, ensure service quality, and provide public inquiry services for domain name registration information.
Article 32: Domain name registration management bodies and domain name registration service bodies shall protect users’ personal information according to the law. Except for providing public inquiry services for domain name registration information, or where laws or regulations provide otherwise, without user agreement, it is not permitted to provide users’ personal information to others.
Article 33: Where change occurs in domain name holders’ contact method and other such information, they shall carry out domain name registration information modification formalities with the domain name registration service body within 30 days.
Where domain name holders transfer a domain name to another person, the latter shall abide by the corresponding domain name registration requirements.
Article 34: Domain name holders may choose and change their domain name registration service body. Where they change of domain name registration service body, the former domain name registration service body shall cooperate with the domain name holder to transfer corresponding domain name registration information.
Without proper reason, domain name registration service bodies may not impede domain name holders to change domain name registration service body.
Domain names of which the telecommunications management body demands cessation of the resolution may not be subject to change of domain name registration service body or transferred to other persons, except where laws or administrative regulations provide otherwise.
Article 35: Domain name registration management bodies and domain name registration service bodies shall establish complaints acceptance mechanisms, and announce complaints acceptance methods in a clear location on the front page of their website and their business premises.
Domain name registration management bodies and domain name registration service bodies shall timely deal with complaints; where it is impossible to deal with them in a timely manner, they shall explain the reason and the processing time.
Article 36: For provision of domain name resolution services, [providers] shall possess corresponding technological, service and network and information security protection capabilities, conform to relevant laws, regulations as well as technological norms and standards, implement network and information security protection measures, record and preserve daily domain name resolution records and modification records, and guarantee resolution service quality and the security of the resolution system. Where telecommunications operations are involved, they shall obtain a telecommunications business licence according to the law.
Article 37: Domain names that connect to the network from within the borders shall have services provided by domestic domain name registration service bodies, and domestic domain name registration management bodies shall carry out operational management.
For domain names that connect to the network from within the borders, but which are not managed by domestic domain name registration service bodies, Internet access service providers may not provide network access services.
Article 38: In the provision of domain name resolution services, resolution information may not be distorted without authorization. Without permission from another person , it is not permitted to redirect domain name resolution towards [that] other person’s IP address.
Article 39: In the provision of domain name resolution services, it is not permitted to provide domain name forwarding for unlawful online information services.
Article 40: Domain name registration management bodies and domain name registration service bodies shall collaborate with relevant State departments in launching relevant investigation work according to the law, and deal with domain names where unlawful activities occur according to the requirements of telecommunications management bodies.
Article 41: Domain name root server-running bodies, domain name registration management bodies and domain name registration service bodies shall respect relevant State laws and regulations, and technical standards and norms, implement network and information security protection measures, allocate the necessary network telecommunications emergency response equipment, formulate network telecommunications protection emergency response plans, and establish and complete network and information security monitoring technology measures and emergency response structures. When network or information security incidents occur in domain name systems, they shall timely be reported to telecommunications management bodies.
When necessary due to national security or to deal with emergency incidents, domain name root server-running bodies, domain name registration management bodies and domain name registration service bodies shall obey the unified command and coordination of telecommunications management bodies, and respect the management requirements of telecommunications management bodies.
Article 42: Where one of the following circumstances occurs with an already-registered domain name, domain name registration service bodies shall cancel it, and notify the domain name holder:
(1) where the domain name holder applies to cancel the domain name;
(2) where the domain name submits false domain name registration information;
(3) where it should be cancelled on the basis of a verdict from a People’s Court, arbitration body or domain name dispute resolution body;
(4) where relevant State departments make a decision of domain name cancellation according to the law;
(5) other circumstances where laws or administrative regulations provide for cancellation.
Chapter IV: Supervision and inspection
Article 43: Telecommunications management bodies shall strengthen supervision and inspection of domain name services. Domain name root server-running bodies, domain name registration management bodies and domain name registration service bodies shall accept and cooperate with the supervision and inspection by telecommunications management bodies.
The Ministry of Industry and Information Technology encourages the launch of self-disciplinary activities in the domain name sector, and encourages the public to supervise domain name services.
Article 44: Domain name root server-running bodies, domain name registration management bodies and domain name registration service bodies shall, according to telecommunications management body requirements, regularly report their professional circumstances, operational security circumstances, and complaints and disputes circumstances.
Article 45. When telecommunications management bodies carry out supervision and inspection according to the law, they shall comprehensively examine and verify the materials submitted by domain name root server-running bodies, domain name registration management bodies and domain name registration service bodies, they shall also inspect their business subjects, business activities and service quality, network and information security, and their implementation of relevant State and telecommunications management body provisions.
Telecommunications management bodies may entrust specialist bodies to carry out supervision and inspection activities.
Article 46: Telecommunications management bodies shall establish credit record structures for domain name root server-running bodies, domain name registration management bodies and domain name registration service bodies, and shall enter their violations of these Rules, as well as the administrative punishment they receive, into the credit file.
Article 47: When telecommunications management bodies carry out supervision and inspection, they may not obstruct the regular operations and service activities of domain name root-server-running bodies, domain name registration management bodies and domain name registration service bodies, they may not accept any fee, and may not divulge the domain name registration information they acquire.
Chapter V: Punishment
Article 48: Where, in violation of the provisions of Article 9 of these Rules, an unauthorized domain name root server or domain name root server-running body, domain name registration management body or domain name registration service body is established without a licence, telecommunications management bodies shall, according to the provision of Article 81 of the “Administrative Licensing Law of the People’s Republic of China”, adopt measures to cease this, and in view of the gravity of the circumstances, impose a fine of 10.000 Yuan or more but less than 30.000 Yuan.
Article 49: Where, in violation of the provisions of these Rules, one of the following circumstances occurs in domain name registration management bodies or domain name registration service bodies, the telecommunications management bodies, on the basis of their powers, order rectification within a limited time, and in view of the gravity of the circumstances, impose a fine of 10.000 Yuan or more but less than 30.000 Yuan, and publish the matter to society:
(1) where unlicensed domain name registration management bodies provide domain name registration services, or where domain name registration services are offered through unlicensed domain name registration service bodies;
(2) where domain name registration services are not provided according to the clauses of the licence;
(3) where services are provided to others who register or use domain names with unlawful content;
(4) where the veracity and completeness of domain name registration information is not verified;
(5) where domain name holders are impeded from changing their domain name registration service body without proper reason.
Article 50: Where, in violation of the provisions of these Rules, one of the following acts is committed in the provision of domain name resolution services, telecommunications management bodies order rectification within a limited time, and may, in view of the gravity of the circumstances, additionally impose a fine of 10.000 Yuan or more but less than 30.000 Yuan, and publish the matter to society:
(1) where domain name resolution information is distorted without authorization or domain name resolution is redirected to another person’s IP address;
(2) where domain name forwarding is offered to unlawful online information serve ices;
(3) where network and information security protection measures are not implemented;
(4) where domain name resolution records or modification records are not recorded or preserved;
(5) where domain names involved in unlawful activities are not handled according to requirement.
Article 51: Where Article 17, Article 18 Paragraph I, Article 21, Article 22, Article 29, Article 31, Article 32, Article 35 Paragraph I, Article 37 Paragraph II, or Article 41 of these Rules are violated, the telecommunications management body shall, on the basis of its powers, order rectification within a limited time, and may also additionally impose a fine of 10.000 Yuan or more but less than 30.000 Yuan, and publish the matter to society.
Article 52: Where any organization or individual, in violation of the provisions of Article 28 of these Rules, registers or uses a domain name in a manner constituting a crime, criminal liability will be prosecuted according to the law; where it does not yet constitute a crime, relevant State bodies will impose punishment according to the law.
Chapter VI: Supplementary provisions
Article 53: The meaning of the following terms used in these Rules is:
(1) Domain name: refers to a digital indicator that is used on the Internet to distinguish and orient the hierarchical structure of computers, and corresponds to the computer’s Internet protocol (IP) address.
(2) Chinese-language domain name: refers to domain names in Chinese language characters.
(3) Top-level domain name: refers to the domain naming at the first level under the root node in the domain name system.
(4) Domain name root server: refers to the server tasked with root node functions in the domain name system (including mirror servers).
(5) Domain name root server-running body: refers to bodies that have obtained permission according to the law, and undertake running, maintaining and management of domain name root servers.
(6) Domain name registration management body: refers to bodies that have obtained permission according to the law, and undertake top-level domain name operations and management work.
(7) Domain name registration service body: refers to bodies that have obtained permission according to the law, which accept domain name registration applications and complete registration of domain names in the top-level domain database.
(8) Domain name registration agency body: refers to bodies that, on entrustment of domain name registration service bodies, accept domain name registration applications and indirectly complete registration of domain names in the top-level domain database.
(9) Top-level domain name management system: refers to the main information systems of domain name registration management bodies that are required to run top-level domain name operations and management within the borders, including registration management systems, registration databases, domain name resolution systems, domain name information inquiry systems, identity information verification systems, etc.
(10) Domain name forwarding: refers to a situation where an inquiry to a certain domain name is forwarded to a bound domain name or is redirected to another domain name, IP address or online information service, etc.
Article 54: The time periods provided in these Rules, except where working days are indicated, refer to natural days.
Article 55: Those who haven’t obtained corresponding licences but engage in domain name services before these Rules took effect shall, within six months of these Rules taking effect, carry out licencing formalities according to the provisions of these Rules. For domain name root server-running bodies, domain name registration management bodies and domain name registration service bodies that had already obtained licences when these Rules took effect, the provisions of Article 16 of these Rules apply to the period of validity of their licences, and the period of validity will be calculated from the date of these Rules taking effect.
Article 56: These Rules take effect on (day, month, year). The “Chinese Internet Domain Name Management Rules” (former Ministry of Information Industry Decree No. 30) promulgated on 5 November 2004 will be abolished at the same time.
互联网域名管理办法
(修订征求意见稿)
第一章 总则
第一条 为了规范互联网域名服务活动,保护用户合法权益,保障互联网域名系统安全、可靠运行,推动中文域名和国家顶级域名发展和应用,促进中国互联网健康发展,根据《中华人民共和国行政许可法》、《国务院对确需保留的行政审批项目设定行政许可的决定》等规定,参照国际上互联网域名管理准则,制定本办法。
第二条 在中华人民共和国境内从事互联网域名服务及相关活动,应当遵守本办法。
本办法所称互联网域名服务(以下简称域名服务),是指从事域名根服务器运行和管理、顶级域名运行和管理、域名注册、域名解析等活动。
第三条 工业和信息化部对全国的域名服务实施监督管理,主要职责是:
(一)制定互联网域名管理规章及政策;
(二)制定互联网域名体系、域名资源发展规划;
(三)管理境内的域名根服务器运行机构和域名注册管理机构;
(四)负责域名体系的网络与信息安全管理;
(五)依法保护用户个人信息和合法权益;
(六)负责与域名有关的国际协调;
(七)管理境内的域名解析服务;
(八)管理其他与域名服务相关的活动。
第四条 各省、自治区、直辖市通信管理局负责对本行政区域内的域名服务实施监督管理,主要职责是:
(一)贯彻执行域名管理法律、行政法规、规章和政策;
(二)管理本行政区域内的域名注册服务机构;
(三)协助工业和信息化部对本行政区域内的域名根服务器运行机构和域名注册管理机构进行管理;
(四)负责本行政区域内域名系统的网络与信息安全管理;
(五)依法保护用户个人信息和合法权益;
(六)管理本行政区域内的域名解析服务;
(七)管理本行政区域内其他与域名服务相关的活动。
第五条 互联网域名体系由工业和信息化部予以公告。根据域名发展的实际情况,工业和信息化部可以对互联网域名体系进行调整。
第六条 “.CN”和“.中国”是中国的国家顶级域名。
中文域名是互联网域名体系的重要组成部分。国家鼓励和支持中文域名系统的技术研究和推广应用。
第七条 提供域名服务,应当遵守国家相关法律法规,符合相关技术规范和标准。
第八条 任何组织和个人不得妨碍互联网域名系统的安全和稳定运行。
第二章 域名管理
第九条 在境内设立域名根服务器及域名根服务器运行机构、域名注册管理机构和域名注册服务机构的,应当取得工业和信息化部或者省、自治区、直辖市通信管理局(以下统称电信管理机构)的相应许可。
第十条 申请设立域名根服务器及域名根服务器运行机构的,应当具备以下条件:
(一)域名根服务器设置在境内,并且符合互联网发展相关规划及域名系统安全稳定运行要求;
(二)是在境内依法设立的法人,该法人及其主要出资者、主要经营管理人员具有良好的信用记录;
(三)具有保障域名根服务器安全可靠运行的场地、资金、环境、专业人员和技术能力以及符合电信管理机构要求的信息管理系统;
(四)具有健全的网络与信息安全保障措施,包括管理人员、网络与信息安全管理制度、应急处置预案和相关技术、管理措施等;
(五)具有用户个人信息保护能力、提供长期服务的能力及健全的服务退出机制;
(六)法律、行政法规规定的其他条件。
第十一条 申请设立域名注册管理机构的,应当具备以下条件:
(一)顶级域名管理系统设置在境内,并且持有的顶级域名符合相关法律法规及域名系统安全稳定运行要求;
(二)是在境内依法设立的法人,该法人及其主要出资者、主要经营管理人员具有良好的信用记录;
(三)具有完善的业务发展计划和技术方案以及与从事顶级域名运行管理相适应的场地、资金、专业人员以及符合电信管理机构要求的信息管理系统;
(四)具有健全的网络与信息安全保障措施,包括管理人员、网络与信息安全管理制度、应急处置预案和相关技术、管理措施等;
(五)具有进行真实身份信息核验和用户个人信息保护的能力、提供长期服务的能力及健全的服务退出处理机制;
(六)具有健全的域名注册服务管理制度和对域名注册服务机构的监督机制;
(七)法律、行政法规规定的其他条件。
第十二条 申请设立域名注册服务机构的,应当具备下列条件:
(一)域名注册服务系统、注册数据库和解析系统设置在境内;
(二)是在境内依法设立的法人,该法人及其主要出资者、主要经营管理人员具有良好的信用记录;
(三)具有与从事域名注册服务相适应的场地、资金和专业人员以及符合电信管理机构要求的信息管理系统;
(四)具有进行真实身份信息核验和用户个人信息保护的能力、提供长期服务的能力及健全的服务退出机制;
(五)具有健全的域名注册服务管理制度和对域名注册代理机构的监督机制;
(六)具有健全的网络与信息安全保障措施,包括管理人员、网络与信息安全管理制度、应急处置预案和相关技术、管理措施等;
(七)法律、行政法规规定的其他条件。
第十三条 申请设立域名根服务器及域名根服务器运行机构、域名注册管理机构的,应当向工业和信息化部提交申请材料。申请设立域名注册服务机构的,应当向住所地省、自治区、直辖市通信管理局提交申请材料。
申请材料应当包括:
(一)申请单位的基本情况;
(二)对域名服务实施有效管理的证明材料,包括相关系统及场所、服务能力的证明材料、管理制度、与其他机构签订的协议等;
(三)网络与信息安全保障制度及措施;
(四)证明申请单位信誉的材料;
(五)法定代表人签署的依法诚信经营承诺书。
第十四条 申请材料齐全、符合法定形式的,电信管理机构应当向申请单位出具受理申请通知书;申请材料不齐全或者不符合法定形式的,电信管理机构应当场或在5个工作日内一次性书面告知申请单位需要补正的全部内容;不予受理的,应当出具不予受理通知书并说明理由。
第十五条 电信管理机构应当自受理之日起20个工作日内完成审查,作出予以许可或者不予许可的决定。20个工作日内不能作出决定的,经电信管理机构负责人批准,可以延长10个工作日,并将延长期限的理由告知申请单位。需要组织专家论证的,论证时间不计入审查期限。
予以许可的,应当颁发相应的许可文件;不予许可的,应当书面通知申请单位并说明理由。
第十六条 域名根服务器运行机构、域名注册管理机构和域名注册服务机构的许可有效期为5年。
第十七条 域名根服务器运行机构、域名注册管理机构和域名注册服务机构的名称、住所、法定代表人等信息发生变更的,应当自变更之日起20日内向原发证机关办理变更手续。
第十八条 在许可有效期内,域名根服务器运行机构、域名注册管理机构、域名注册服务机构拟终止相关服务的,应当通知用户,提出可行的善后处理方案,并向原发证机关提交书面申请。
原发证机关收到申请后,应当向社会公示30日。公示期结束60日内,原发证机关应当完成审查工作,做出予以批准或者不予批准的决定。
第十九条 许可有效期届满需要继续从事域名服务的,应当提前90日向原发证机关申请延续;不再继续从事域名服务的,应当提前90日向原发证机关报告并做好善后工作。
第二十条 域名注册服务机构委托域名注册代理机构开展市场销售等工作的,应当对域名注册代理机构的工作进行监督和管理。
域名注册代理机构在开展委托的市场销售等工作过程中,应当主动表明代理关系,并在域名注册服务合同中明示相关域名注册服务机构名称及代理关系。
第二十一条 域名注册管理机构、域名注册服务机构应当在境内设立相应的应急备份系统和应急机制,定期将域名注册数据在境内进行备份。
第二十二条 域名根服务器运行机构、域名注册管理机构、域名注册服务机构应当在其网站首页和经营场所显著位置标明其许可相关信息。域名注册管理机构还应当标明与其合作的域名注册服务机构名单。
域名注册服务机构应当要求域名注册代理机构在其网站首页和经营场所显著位置标明域名注册服务机构名称。
第三章 域名服务
第二十三条 域名根服务器运行机构、域名注册管理机构和域名注册服务机构应当向用户提供安全、方便、稳定的服务。
第二十四条 域名注册管理机构应当根据本办法制定域名注册实施细则并向社会公开。
第二十五条 域名注册管理机构应当通过电信管理机构许可的域名注册服务机构开展域名注册服务。
域名注册服务机构应当按照许可的域名注册服务项目提供服务,不得为未经许可的域名注册管理机构提供域名注册服务。
第二十六条 域名注册服务原则上实行“先申请先注册”,相应顶级域域名注册实施细则另有规定的,从其规定。
第二十七条 为维护国家利益和社会公众利益,域名注册管理机构应当建立域名注册保留字制度。
第二十八条 域名注册服务机构不得为任何组织或者个人注册、使用含有下列内容的域名提供服务:
(一)反对宪法所确定的基本原则的;
(二)危害国家安全,泄露国家秘密,颠覆国家政权,破坏国家统一的;
(三)损害国家荣誉和利益的;
(四)煽动民族仇恨、民族歧视,破坏民族团结的;
(五)破坏国家宗教政策,宣扬邪教和封建迷信的;
(六)散布谣言,扰乱社会秩序,破坏社会稳定的;
(七)散布淫秽、色情、赌博、暴力、凶杀、恐怖或者教唆犯罪的;
(八)侮辱或者诽谤他人,侵害他人合法权益的;
(九)含有法律、行政法规禁止的其他内容的。
第二十九条 域名注册服务机构不得采用欺诈、胁迫等不正当手段要求他人注册域名。
第三十条 域名注册服务机构应当要求域名注册申请者提交域名持有者的真实、准确、完整的身份信息等域名注册信息。
域名注册管理机构和域名注册服务机构应当对域名注册信息的真实性、完整性进行核验。
域名注册申请者提交的域名注册信息不准确、不完整的,域名注册服务机构应当要求其予以补正。申请者不补正或者提交不真实的域名注册信息的,域名注册服务机构不得为其提供域名注册服务。
第三十一条 域名注册服务机构应当公布域名注册服务的内容、时限、费用,保证服务质量,提供域名注册信息的公共查询服务。
第三十二条 域名注册管理机构、域名注册服务机构应当依法保护用户个人信息。除用于提供域名注册信息的公共查询服务或法律、法规另有规定外,未经用户同意,不得将用户个人信息提供给他人。
第三十三条 域名持有者的联系方式等信息发生变更的,应当在变更后30日内向域名注册服务机构办理域名注册信息变更手续。
域名持有者将域名转让给他人的,后者应当遵守域名注册的相关要求。
第三十四条 域名持有者可以选择、变更域名注册服务机构。变更域名注册服务机构的,原域名注册服务机构应当配合域名持有者转移域名注册相关信息。
无正当理由,域名注册服务机构不得阻止域名持有者变更域名注册服务机构。
电信管理机构要求停止解析的域名,不得变更域名注册服务机构或转让给他人,但法律、行政法规另有规定的除外。
第三十五条 域名注册管理机构和域名注册服务机构应当设立投诉受理机制,并在其网站首页和经营场所显著位置公布投诉受理方式。
域名注册管理机构和域名注册服务机构应当及时处理投诉;不能及时处理的,应当说明理由和处理时限。
第三十六条 提供域名解析服务,应当具备相应的技术、服务和网络与信息安全保障能力,符合有关法律、法规以及技术规范、标准,落实网络与信息安全保障措施,记录并留存域名解析维护日志和变更记录,保障解析服务质量和解析系统安全。涉及经营电信业务的,应当依法取得电信业务经营许可。
第三十七条 在境内进行网络接入的域名应当由境内域名注册服务机构提供服务,并由境内域名注册管理机构运行管理。
在境内进行网络接入、但不属于境内域名注册服务机构管理的域名,互联网接入服务提供者不得为其提供网络接入服务。
第三十八条 提供域名解析服务,不得擅自篡改解析信息。未经他人同意,不得将域名解析指向他人的IP地址。
第三十九条 提供域名解析服务,不得为违法网络信息服务提供域名跳转。
第四十条 域名注册管理机构、域名注册服务机构应当配合国家有关部门依法开展的相关检查工作,并按照电信管理机构的要求对存在违法行为的域名进行处置。
第四十一条 域名根服务器运行机构、域名注册管理机构和域名注册服务机构应当遵守国家相关法律、法规和技术规范、标准,落实网络与信息安全保障措施,配置必要的网络通信应急设备,制定网络通信保障应急预案,建立健全网络与信息安全监测技术手段和应急制度。域名系统出现网络与信息安全事故时,应当及时向电信管理机构报告。
因国家安全和处置紧急事件的需要,域名根服务器运行机构、域名注册管理机构和域名注册服务机构应当服从电信管理机构的统一指挥与协调,遵守电信管理机构的管理要求。
第四十二条 已注册的域名出现下列情形之一的,域名注册服务机构应当予以注销,并通知域名持有者:
(一)域名持有者申请注销域名的;
(二)域名持有者提交虚假域名注册信息的;
(三)依据人民法院、仲裁机构或域名争议解决机构作出的裁判,应当注销的;
(四)国家有关部门依法作出域名注销决定的;
(五)法律、行政法规规定予以注销的其他情形。
第四章 监督检查
第四十三条 电信管理机构应当加强对域名服务进行监督检查。域名根服务器运行机构、域名注册管理机构、域名注册服务机构应当接受、配合电信管理机构的监督检查。
工业和信息化部鼓励开展域名服务行业自律活动,鼓励公众监督域名服务。
第四十四条 域名根服务器运行机构、域名注册管理机构、域名注册服务机构应当按照电信管理机构的要求,定期报送业务开展情况、安全运行情况、投诉和争议处理情况等信息。
第四十五条 电信管理机构实施监督检查时,应当对域名根服务器运行机构、域名注册管理机构和域名注册服务机构报送的材料进行全面审核,并对其经营主体、经营行为和服务质量、网络与信息安全、执行国家和电信管理机构有关规定的情况等进行检查。
电信管理机构可以委托专业机构开展有关监督检查活动。
第四十六条 电信管理机构应当建立域名根服务器运行机构、域名注册管理机构和域名注册服务机构的信用记录制度,将其违反本办法并受到行政处罚的行为记入信用档案。
第四十七条 电信管理机构开展监督检查,不得妨碍域名根服务器运行机构、域名注册管理机构和域名注册服务机构正常的经营和服务活动,不得收取任何费用,不得泄露所知悉的域名注册信息。
第五章 罚则
第四十八条 违反本办法第九条规定,未经许可擅自设立域名根服务器及域名根服务器运行机构、域名注册管理机构、域名注册服务机构的,电信管理机构应当根据《中华人民共和国行政许可法》第八十一条的规定,采取措施予以制止,并视情节轻重,予以警告或者处一万元以上三万元以下罚款。
第四十九条 违反本办法规定,域名注册管理机构或者域名注册服务机构有下列行为之一的,由电信管理机构依据职权责令限期改正,并视情节轻重,处一万元以上三万元以下罚款,向社会公告:
(一)为未经许可的域名注册管理机构提供域名注册服务,或者通过未经许可的域名注册服务机构开展域名注册服务的;
(二)未按照许可的域名注册服务项目提供服务的;
(三)为他人注册、使用含有违法内容的域名提供服务的;
(四)未对域名注册信息的真实性、完整性进行核验的;
(五)无正当理由阻止域名持有者变更域名注册服务机构的;
第五十条 违反本办法规定,提供域名解析服务,有下列行为之一的,由电信管理机构责令限期改正,可以视情节轻重并处一万元以上三万元以下的罚款,向社会公告:
(一)擅自篡改域名解析信息或者将域名解析指向他人IP地址的;
(二)为违法网络信息服务提供域名跳转的;
(三)未落实网络与信息安全保障措施的;
(四)未记录并留存域名解析维护日志和变更记录的;
(五)未按要求对存在违法行为的域名进行处置的。
第五十一条 违反本办法第十七条、第十八条第一款、第二十一条、第二十二条、第二十九条、第三十一条、第三十二条、第三十五条第一款、第三十七条第二款、第四十一条规定的,由电信管理机构依据职权责令限期改正,可以并处一万元以上三万元以下罚款,向社会公告。
第五十二条 任何组织或个人违反本办法第二十八条规定注册、使用域名,构成犯罪的,依法追究刑事责任;尚不构成犯罪的,由国家有关机关依法予以处罚。
第六章 附则
第五十三条 本办法下列用语的含义是:
(一)域名:指互联网上识别和定位计算机的层次结构式的字符标识,与该计算机的互联网协议(IP)地址相对应。
(二)中文域名:指含有中文文字的域名。
(三)顶级域名:指域名体系中根节点下的第一级域的名称。
(四)域名根服务器:是指承担域名体系中根节点功能的服务器(含镜像服务器)。
(五)域名根服务器运行机构:指依法获得许可并承担域名根服务器运行、维护和管理工作的机构。
(六)域名注册管理机构:指依法获得许可并承担顶级域名运行和管理工作的机构。
(七)域名注册服务机构:指依法获得许可并受理域名注册申请并完成域名在顶级域名数据库中注册的机构。
(八)域名注册代理机构:指受域名注册服务机构的委托,受理域名注册申请,间接完成域名在顶级域名数据库中注册的机构。
(九)顶级域名管理系统:指域名注册管理机构在境内开展顶级域名运行和管理所需的主要信息系统,包括注册管理系统、注册数据库、域名解析系统、域名信息查询系统、身份信息核验系统等。
(十)域名跳转:指对某一域名的访问跳转至该域名绑定或指向的其他域名、IP地址或者网络信息服务等。
第五十四条 本办法中规定的日期,除明确为工作日的以外,均为自然日。
第五十五条 在本办法施行前未取得相应许可开展域名服务的,应当自本办法施行之日起六个月内,按照本办法规定办理许可手续。
在本办法施行前已取得许可的域名根服务器运行机构、域名注册管理机构和域名注册服务机构,其许可有效期适用本办法第十六条的规定,有效期自本办法施行之日起计算。
第五十六条 本办法自 年 月 日起施行。2004年11月5日公布的《中国互联网络域名管理办法》(原信息产业部令第30号)同时废止。
This entry was posted in Enforcement, Examination Procedure, Foreign-Related and Import, Hardware, Internet, MII.
China Copyright and Media 