Security is at the centre of everything CentralNic does: millions of businesses and internet users rely on the secure and stable operation of CentralNic's registry services. As a result CentralNic's business systems are certified against the ISO 27001 (Information Security Management) and ISO 22301 (Business Continuity Management) and CentralNic has implemented a programme of continuous enhancement of the security and business continuity capabilities of its registry system.
CentralNic recognises that no technology is perfect. Therefore, CentralNic works with skilled security researchers across the globe to identify weaknesses in its technology. If you believe you've found a security issue in any of CentralNic's products or services, please notify us. CentralNic will work with you to resolve the issue promptly.
To show its appreciation of responsible security researchers, CentralNic offers a monetary bounty for reports of qualifying security vulnerabilities. Reward amounts will vary based upon the severity of the reported vulnerability, and eligibility is at CentralNic's discretion.
CentralNic's Bug Bounty program is managed through HackerOne. At this time, the program is not public, but security researchers interested in participating can request an invitation by getting in touch. CentralNic will review your H1 profile to see if you are eligible and will then invite you to join the program.