I am often asked how to get a ccTLD by folks just coming in to the domain industry. There is RFC1591 as a start for reading material on the subject matter, and then there is ICP-1. I defer them to IANA, who defers to ICANN, who in turn defers to ISO and the ISO3166-1 list being the definitive list, and then you have to factor in some of the "reserved code elements" from their decoding table to normalize 3166 against the list of IANA Country Codes for ccTLD delegations like .EU. How does one get their ccTLD into the ISO list? The ISO in turn (likely due to the masses that contact them hoping to list their country) defer the criteria for what it is to be a 'country' for being on the 3166-1 list, and partially defer to the United Nations. more
Black Frog -- a new effort to continue the SO-CALLED Blue Security fight against spammers. A botnet, a crime, a stupid idea that I wish would have worked -- News items on Black Frog. Blue Frog by Blue Security was a good effort. Why? Because they wanted to "get spammers back". They withstood tremendous DDoS attacks and abuse reports, getting kicked from ISP after ISP. ...The road to hell is filled with good intentions. Theirs was golden, but they got to hell, quite literally, non-the-less. ...When Blue Security went down, some of us made a bet as to when two bored guys sitting and planning their millions in some café would show up, with Blue Security's business plan minus the DDoS factor. Well -- they just did. more
Is contextual advertising helping or hurting the web? It basically started with Google Adsense even though the concept wasn't new. It had never been done on the scale that Google did it. Now we have Yahoo Publisher. MSN is building their version. We have Konterra and a whole lot of other companies scrambling to cash in on the contextual ad craze. Initially contextual advertising seems like a good idea. Ads based on the content of your website that might benefit your readers or visitors. Ads that are related to the content you produce that will also help you make a little money for your efforts. However greed ruins all good things. Now there are probably millions of webpages online that are built for the sole purpose of cashing in on contextual advertising. ...To make money with contextual advertising you want your content to be bad. Yes, you want it to be bad. more
In a move that flies in the face of established international guidelines, the New York Senate is pushing through a bill that would forbid registering the name of a living person with the purpose of selling the domain to that person. The New York Senate's bill is called "domain names cyber piracy protections act" and is championed by State Senator Betty Little (S2306). Generally speaking, registering a person's name solely to sell the domain to that person is a losing cause in UDRP arbitrations. But the New York bill is scary for a few reasons... more
The DNSSEC is a security protocol for providing cryptographic assurance (i.e. using the public key cryptography digital signature technology) to the data retrieved from the DNS distributed database (RFC4033). DNSSEC deployment at the root is said to be subject to politics, but there is seldom detailed discussion about this "DNS root signing" politics. Actually, DNSSEC deployment requires more than signing the DNS root zone data; it also involves secure delegations from the root to the TLDs, and DNSSEC deployment by TLD administrations (I omit other participants involvement as my focus is policy around the DNS root). There is a dose of naivety in the idea of detailing the political aspects of the DNS root, but I volunteer! My perspective is an interested observer. more
The following provides and introduction to a study by Venugopalan Ramasubramanian and Emin Gun Sirer, called "Perils of Transitive Trust in the Domain Name System". The paper presents results from a large scale survey of DNS, illustrating how complex and subtle dependencies between names and nameservers lead to a highly insecure naming system... "It is well-known that nameservers in the Domain Name System are vulnerable to a wide range of attacks. We recently performed a large scale survey to answer some basic questions about the legacy DNS." more
The XXX drama isn't over. Today ICM Registry announced that it would file a reconsideration request with ICANN and a judicial appeal to challenge redactions and omissions from the internal US government documents released to it under a Freedom of Information Act (FOIA) request. These could prove to be opening moves in a more extended round of litigation. In connection with its judicial appeal, ICM Registry released 88 pages of internal US Commerce Department documents obtained under the FOIA showing how the U.S. handled its application. more
Message to ICANN: Let those who want to create a TLD, simply register it with ICANN. If the TLD is not already taken, if they have the technical capability to mange the TLD, and they have the desire to market domain names on that TLD, then let them do so. ...Do you present a businesss plan to the city you live in before they allow you a business license? Does the city ask you to prove you are financially stable before issuing you a business license? If you apply for a business license to open a clothing store, does the city ask how you will run your clothing store or if you have the necessary expertise to run a clothing store? Does the city think you will hurt them economically if your clothing store goes out of business? No, it's none of their business... more
The amount of time one spends actually working for ICANN is enormous. And that limits the people who can actually work for ICANN as directors. I say "work", but you should know that this is not a paid work. Nope. It's being performed for free -- we dedicate our time and skills to ICANN free of charge. Many people ask me "What is it like to be on the Board of ICANN?" Here is my response, with some astonishing data. more
The success of a proposal by AT&T and Verizon to end net neutrality does not threaten the Internet. The broadband customers of AT&T and Verizon will just no longer have access to the Internet. The development appropriately creates alarm among AT&T and Verizon's customers, but the combined customer bases of these companies represent less than 2% of the billion or so users of the Internet. The fact that access to the Internet requires net neutrality does not depend on laws passed by the US Congress or enforced by the FCC. Neutrality arises as a technical and business imperative facilitating the interconnection 250,000 independent networks that choose to participate in the Internet. more
By now, you should have read elsewhere that the ICANN board has rejected the ICM application to create a .XXX TLD. It still comes as a surprise to some. Frankly, this was the prognosis I made to Stuart Lawley two years ago, for the very reasons mentioned by the European Commission. I mentioned in a previous blog entry that 6000 complaints from US citizens would have more weight on the conservative US administration than any other consideration... more
I had hoped to take a longer break from the theme of Net Neutrality, but a piece on Om Malik's blog by Daniel Berninger seems to be screaming for a reply. Berninger hails from Tier 1 Research; his credentials show a close association with Jeff Pulver's Free World Dialup, and hence a piece that is sympathetic to the 'Save the Internet' movement. His legalistically styled piece attempts to suggest that, in the absence of conformance to network neutrality principles, telephone companies will lose their common carrier status and therefore should lose their access to low cost rights-of-way. Good try, Dan... more
In What's Driving the Next Telecom Law, David Isenberg writes about the incumbents desire to preserve "Rational Competition"... Rational competition is the idea that corporations, knowing their own costs, and their competition's pricing, will price their products to maximize profits. It is tied up in the language of predatory pricing. Some economists argue that predatory pricing is rare, because it is, in fact, irrational... The flaw in the incumbent's argument is twofold... more
One of the best sources of information about sites on the web is the Whois database. A trio of patent applications from Go Daddy, published last week at the US Patent and Trademark Office, explores whether adding additional information to the Whois database might help reduce spam, phishing, and other fraudulent practices and improve search engine results. The patent filings from Go Daddy would add reputation information to the published Whois data to let others use it for a number of reasons, including enabling search engines incorporate it into their ranking mechanisms. ...The patent application from Google focuses upon fighting web spam using a wide range of data, including that associated with domain names. ...We can't really be certain that Google is presently using this information, but there are some indications that they may be... more
The latest post on DearAOL's blog, by EFF activist coordinator Danny O'Brien, is titled "The Shakedown Begins". In short, Danny receives email from overstock.com on an AOL mailbox -- email that he apparently paid overstock $29.95 to receive. And that email arrives with Goodmail certification that AOL recognizes and flags as such. Danny seems to think this is not the sort of email that should be certified by Goodmail, and that AOL should not suddenly turn on Goodmail certification. Suddenly? more
Sponsored byWhoisXML API
Sponsored byCSC
Sponsored byIPv4.Global
Sponsored byVerisign
Sponsored byVerisign
Sponsored byRadix
Sponsored byDNIB.com