Welcome:
Login
|
Sign Up
|
About CircleID
Follow:
|
|
|
Two principles in computer security that help bound the impact of a security compromise are the principle of least privilege and the principle of minimum disclosure or need-to-know. As described by Jerome Saltzer in a July 1974 Communications of the ACM article, Protection and the Control of Information Sharing in Multics, the principle of least privilege states, "Every program and every privileged user should operate using the least amount of privilege necessary to complete the job." more
"No, the new gTLD program isn't ready!" ... "Yes, I was wrong on the Trademark Clearinghouse!" Fadi Chehadé showed some strong leadership qualities during last week's ICANN regional registry and registrar meeting in Amsterdam. Honesty and courage... What started out as a speech soon turned into a heart to heart. As he responded to questions, Chehadé made some surprisingly honest comments. more
Wikileaks is still accessible -- via Google. Does that change anything? For many Internet users IP addresses as well as domain names are completely transparent. Further, Google (and other search engines) and often the first stop when these users wants to find a service, or a web site. Thus, many of us discussed over the years the eventual viability of Google (... and other search engines) as "DNS" (note the "'s). Now, don't jump at my throat quite yet... more
Gary Elliot, chairman of the Association of National Advertisers and vice president of global marketing at Hewlett-Packard, wrote a column in Advertising Age titled "ICANN's Promises Aren't Simply Speculation, They're Outright Fantasy." His arguments opposing ICANN gTLDs are similar to the other heads of various advertising associations around the world. While the main powerbrokers of the global advertising sector are mum, their association heads are using the same circulated message of cyber-squatting fears without any solid proof. Here is my analysis and an open challenge to the trade. more
This past week brought word that the first nine Latin / ASCII "new Generic Top Level Domains (newgTLDs)" were delegated by ICANN and are now found in the root of DNS. This means that the registries behind these newgTLDS can now start the process of making "second-level domains" (the ones we normally register) available in each of these TLDs. more
I'd like to continue on in my review of the book Spam Kings (read part 1) and make some more comments, particularly regarding the antispammers. One thing that I really liked about the book is learning the history of some of the spam tools. I was never a participant on NANAE (news.admin.net-abuse.email; a USENET newsgroup which discusses e-mail spamming), that was before my antispam time. But I was intrigued by its history. People would gather together and discuss spammers and tools for stopping them, and sometimes spammers would stop by and the flame wars would ensue. more
There's a new site on the web - nTLDstats.com - that has a ton of valuable information about the new gTLD program. It shows numbers of registrations by registry, registrar, registry service provides - all the "Rs" in the domain name industry. It has quickly become the place where people go to measure how the industry, and the competitors in it, are doing. There's only one problem - not all domain registrations are created equal. more
Two US Government contractors and the National Institute of Science and Technology have released a white paper, "Statement of Needed Internet Capability," detailing possible alternatives and considerations for a Trust Anchor Repository (TAR) to support DNSSEC deployment. The document was released through the DNSSEC-Deployment Group this week with a request that it be circulated as widely as possible to gather feedback. A Trust Anchor Repository (TAR) refers to the concept of a DNS resource record store that contains secure entry point keys... more
The World Intellectual Property Organization (WIPO) has sent to ICANN a letter proposing Paperless Uniform Domain Name Dispute Resolution Policy (UDRP)... This would save considerable amounts of paper, reduce courier charges (as the notice weighs far less than the full complaint), and thus would be good for the environment. more
In the first part of this trilogy, I discussed the importance of automatically provisioned second generation DNS in connection with Software Defined Networking (SDN) and Software Defined Data Centre (SDDC). In the second post, I talked about IP addressing, private enterprise networks, and how DHCP does not meet the requirements of multitenant Infrastructure-as-a-Service (IaaS) cloud environments. I will now wrap up this trilogy by putting these two thesis into real-life context. more
We need to protect the power that allows us to connect our collective intelligence, as described a few weeks ago in my blog on connected minds. I argued that in order to address some of our global challenges we have to start looking at a radically new way to address them. The events in Egypt brought home the fact that if it comes to the crunch any government can disconnect us simply by bringing the Internet and other communications systems down at will... more
Please pardon me if I start this story by telling about an incident that happened to me at the Madrid airport while flying to the ICANN meetings in Rio.
It was about midnight when, after flying in from Turin, my hometown, I had to go through the passport control to reach my gate for the flight to Rio. The war between the US/UK and Iraq had started two days before, and even if the Spanish government was among its supporters, security checks were apparently proceeding as usual. Passport controls inside the EU for EU citizens usually take a few seconds, and the line ahead of me was proceeding quickly. more
This post was prompted by questions I was asked to address when I participated in a panel discussion of cybersecurity. Here are the relevant questions: "Should we reconsider the notion that companies under attack are prohibited from investigating the attackers and trying to locate them? We allow private investigators to conduct some activities that usually only the police are allowed to do; should we accredit private cyber investigators?" ...The one I found more interesting is the second question: whether we should accredit private cyber investigators. more
Every TLD has domain name registrants who use their domain name either as their primary site, the basis of their online identity, or as a navigational aid to direct traffic to other sites. The dominant purpose determines the long-term financial wellbeing of the registry. The choice to use a domain as a simple pointer to another site versus creating a branded identity online does not just happen. It is almost always the direct result of the registry's own efforts and focus. How does the registry define their customer? more
The bring-your-own-device (BYOD) trend continues to make corporate inroads. According to Security Intelligence, more than 60 percent of enterprises now allow or "tolerate" employee mobile device use in the workplace. But companies still have significant security concerns, especially when it comes to the specter of lost data. Here are seven tips to boost BYOD security in 2015. more
Sponsored byDNIB.com
Sponsored byRadix
Sponsored byCSC
Sponsored byVerisign
Sponsored byWhoisXML API
Sponsored byVerisign
Sponsored byIPv4.Global
A World-Renowned Source for Internet Developments. Serving Since 2002.