China Internet Network Information Center

China Internet Network Information Center
中国互联网络信息中心
FormationJune 3, 1997; 27 years ago (1997-06-03)
TypePublic institution
HeadquartersZhongguancun, Beijing
Location
Parent organization
Ministry of Industry and Information Technology
Websitecnnic.com.cn Edit this at Wikidata
China Internet Network Information Center
Simplified Chinese中国互联网络信息中心
Traditional Chinese中國互聯網絡信息中心
Transcriptions
Standard Mandarin
Hanyu PinyinZhōngguó Hùlián Wǎngluò Xìnxī Zhōngxīn

The China Internet Network Information Center (CNNIC; 中国互联网络信息中心) is a public institution affiliated with the Ministry of Industry and Information Technology.[1] Founded on 3 June 1997 and based in Zhongguancun, Beijing, the center manages the country code top-level domain name of the People's Republic of China, namely the .cn domain name.[1]

Responsibility areas

[edit]

Domain name registry service

[edit]

CNNIC is responsible for operating and administering China’s domain name registry. CNNIC manages both the ".cn" country code top level domain and the Chinese domain name system (internationalized domain names that contain Chinese characters). As of April 2017, the total number of Chinese domain names was about 21 million.

As of January 2017, CNNIC only opened the CN domain to registered businesses,[2] required supporting documentations for domain registration such as business license or personal ID, and suspended overseas registrars even for domestic registrants.[3] CNNIC denied that it mandated existing personal domain names to be transferred to businesses.[4] Trend Micro suggested this move was still not enough to stop modern security threats from the .cn domain.[5]

IP address and Autonomous System number (AS number) allocation service

[edit]

CNNIC allocates Internet Protocol (IP) addresses and AS Numbers to domestic ISPs and users. CNNIC is a National Internet Registry (NIR) acknowledged by the Asia-Pacific Network Information Center (APNIC). In late 2004 CNNIC launched an “IP Allocation Alliance” which simplified the procedures for obtaining IP addresses.[6]

Catalogue Database Service

[edit]

CNNIC is responsible for the creation and maintenance of the state top-level network catalog database. This database provides information on Internet users, web addresses, domain names, and AS numbers.[citation needed]

Technical research on Internet addressing

[edit]

CNNIC conducts technical research and undertakes state technical projects based on its administrative and practical network technology experience.[citation needed]

Internet survey and statistics

[edit]

CNNIC has conducted, and continues to conduct, surveys of Internet information resources. CNNIC maintains statistics on topics such as Internet bandwidth in China, Domain Name registrations, and Internet Development in China.[7]

International liaison and policy research

[edit]

As the national Network Information Center (NIC), CNNIC maintains cooperative relationships with other International Internet Communities, and works closely with NICs of other countries.[citation needed]

Secretariat of the Internet Policy and Resource Committee, Internet Society of China (ISC)

[edit]

CNNIC serves as the Secretariat of the Internet Society of China’s Internet Policy and Resource Committee. The Policy and Resource committee is in charge of tasks such as providing policy and legislation oriented suggestions to promote the growth of China’s internet, facilitating the development and application of Internet resources and relevant technologies, and actively participating in the research work of domestic Internet development and administration policies.[citation needed]

Secretariat of the Anti-Phishing Alliance of China (APAC)

[edit]

In July 2008, a broad alliance of Chinese online commerce stakeholders, including CNNIC, all major Chinese commercial banks and web hosting companies, founded the Anti-Phishing Alliance of China (APAC) in order to tackle phishing activities that abuse .cn sub-domain names. CNNIC also functions as the secretariat of APAC.[8][9]

Fraudulent certificates

[edit]

In 2015, Google discovered that CNNIC had issued an intermediate CA certificate to an Egypt-based firm that used CNNIC's keys to impersonate Google domains. Google responded by removing CNNIC's root certificate from the certificate store in Google Chrome and all of Google's products.[10]

Mozilla responded to the incident, stating that

"The Mozilla CA team believes that CNNIC’s actions amount to egregious behaviour, and the violations of policy are greater in severity than those in previous incidents. CNNIC’s decision to violate their own Certification Practice Statement is especially serious, and raises concerns that go beyond the immediate scope of the misissued intermediate certificate. After public discussion... we are planning to change Firefox’s certificate validation code such that it refuses to trust any certificate issued by a CNNIC root with a notBefore date on or after 1 April 2015."[11]

References

[edit]
  1. ^ a b "关于我们 – CNNIC". CNNIC. Archived from the original on 2024-09-28. Retrieved 2024-09-27.
  2. ^ Lafraniere, Sharon (17 December 2009). "China Imposes New Internet Controls". The New York Times. Archived from the original on 2015-11-07. Retrieved 2017-02-24.
  3. ^ "CNNIC Suspends New Foreign .CN Registrations Indefinitely". Archived from the original on 2010-01-15. Retrieved 2010-01-07.
  4. ^ "传CN个人域名须转公司名下 CNNIC收紧域名审核". Archived from the original on 2010-01-13. Retrieved 2010-01-07.
  5. ^ "Trend Micro Advisory on CNNIC Domain Registration Requirements". Archived from the original on 2012-09-11. Retrieved 2010-02-01.
  6. ^ "CNNIC to Provide Easier IP Address Allocation Procedures". 23 December 2004. Archived from the original on 2008-10-01. Retrieved 2008-05-11.
  7. ^ CNNIC Internet Statistics Archived 2008-05-16 at the Wayback Machine
  8. ^ ".CN phishing sites to be stopped resolution". Archived from the original on 2008-08-22. Retrieved 2008-07-24. {{cite journal}}: Cite journal requires |journal= (help)
  9. ^ "China forms anti-phishing alliance". Blog.anta.net. 2008-07-24. ISSN 1797-1993. Archived from the original on 2012-12-20. Retrieved 2008-07-24.
  10. ^ "Google Online Security Blog: Maintaining digital certificate security". Googleonlinesecurity.blogspot.se. 2015-03-23. Archived from the original on 2016-03-07. Retrieved 2020-03-01.
  11. ^ The MCS Incident and Its Consequences for CNNIC Archived 2015-04-03 at the Wayback Machine 2.3. Distrusting New CNNIC Certificates Mozilla 1 April 2015, pg 9.
[edit]