That would be real time information involving 'essential' activities. GDPR would not prevent determining the source of an attack. GDPR specifically doesn't protect anyone involved in criminal activity nor contradict any regulatory requirement (which covers cyber attacks). Mack -----Original Message----- From: NANOG [mailto:nanog-bounces@nanog.org] On Behalf Of Johnny Eriksson Sent: Monday, June 04, 2018 12:24 PM To: nanog@nanog.org Subject: Re: ICANN GDPR lawsuit Hank Nussbacher wrote:
The entire whois debacle will only get resolved when some hackers attack www.eugdpr.org, ec.europa.eu and some other key .eu sites. When the response they get will be "sorry, we can't determine who is attacking you since that contravenes GDPR", will the EU light bulb go on that something in GDPR needs to be tweaked.
You seem to assume that said light bulb does in fact exist.
-Hank
--Johnny /\_/\ ( *.* )
^ < E-MAIL CONFIDENTIALITY NOTICE: The contents of this e-mail message and any attachments are intended solely for the addressee(s) and may contain confidential and/or legally privileged information. If you are not the intended recipient of this message or if this message has been addressed to you in error, please immediately alert the sender by reply e-mail and then delete this message and any attachments. If you are not the intended recipient, you are notified that any use, dissemination, distribution, copying, or storage of this message or any attachment is strictly prohibited.