Manage your .CA

Protect your .CA domain name

Your .CA domain name should be protected like any other asset. CIRA has developed several security products and initiatives to help .CA holders secure their part of the web. These include:

  • .CA Registry Lock: This service implements locks on your domain name that only CIRA can remove, protecting you from domain name hijacking. This means that no changes to your domain name will be possible unless we receive an authenticated request from your Registrar.
  • Completion of .CA holder contact information: CIRA verifies each .CA holder’s information to safeguard their domain name and protect the .CA registry. It’s important that you keep this information up-to-date through your Registrar.
  • DNSSEC: DNSSEC is a set of extensions used to add an additional layer of security to the Domain Name System.

Tips for a more secure .CA

Always register your domain name yourself

Control your web presence by registering your own Canadian domain names. Never let third parties complete a registration on your behalf. This can become a problem when you part ways and no longer have access to the account managing your domain name.

Select the right Registrant and administrative contacts

CIRA and Registrars only communicate with the Registrant and administrative contacts provided at registration. If these contacts are not accurate, you might not receive information on expiry or renewal notices. These notices are critical to ensuring continued access to your .CA domain name.

Avoid free email services

Avoid using a free email service for your contact information. Typically the level of security you receive when using an email address provided by your ISP or hosting company will exceed that of a free email service such as Yahoo or Hotmail.

Choose a strong password

Use a unique password for your Registrar account to provide an additional layer of security to your domain name. Never provide this information to third parties, including your hosting company. The password should be changed on a regular basis.

Whitelist the domain name for your service providers

Add your Registrars and other service providers to your email whitelist or friends list. This will prevent anti-spam software from filtering important messages regarding your domain name.

Register common variations of your name to protect your brand identity

If your company or product is commonly misspelled, register the alternate domain names and forward them to your primary website. This ensures no one else can register these domain names and protects your brand online.

Remember to renew your domain name

Many Registrars offer auto-renewal to ensure your domain name remains registered and active. Auto-renewal provides your Registrar with authorization to renew your domain name before it expires. If you do not know who your Registrar is, visit CIRA’s WHOIS tool to look it up.