APNIC is a signatory to the Montevideo Statement, a declaration from members of the Internet technical community about the current state of Internet technical coordination, cooperation and governance. The statement conveys in particular an agreement on "the need for ongoing effort to address Internet Governance challenges", and a commitment to "catalyze community-wide efforts towards the evolution of global multi-stakeholder Internet cooperation". Last week during ICANN 48 in Buenos Aires, there were numerous discussions about the Montevideo Statement... more
ICANN should reconsider its decision to quarantine .DOCTOR, given that it's not even sick. In an utterly surprising move, ICANN staff and the Board's New gTLD Program Committee ("NGPC") recently informed the applicants for .DOCTOR that it has singled out the gTLD as a test case for controlling content and limiting speech on the Internet. In the epitome of top-down policy making, ICANN issued an edict that it will implement nearly year-old advice from the Government Advisory Committee ("GAC") differently from all other similarly situated gTLDs and in contravention of subsequent GAC advice. more
I was talking to my good friend Verner Entwhistle the other day when he suddenly turned to me and said "I don't think we need DNSSEC". Sharp intake of breath. Transpired after a long and involved discussion his case boiled down to four points: 1. SSL provides known and trusted security, DNSSEC is superfluous, 2. DNSSEC is complex and potentially prone to errors, 3. DNSSEC makes DoS attacks worse, 4. DNSSEC does not solve the last mile problem. Let's take them one at a time... more
Two weeks ago, the US government announced it would transition its role in the IANA functions to the global Internet community. It tasked ICANN with the job of arriving at a transition plan and noted that the current contract runs out in 18 months' time, 30 September 2015. This week, ICANN started that process at its meeting in Singapore. And on the ground were the two key US government officials behind the decision. more
In many ways, the emotionally charged debate on Network Neutrality (NN) has been a lot like hunting Unicorns. While hunting the mythical horse could be filled with adrenalin, emotion, and likely be quite entertaining, the prize would ultimately prove to be elusive. As a myth, entertaining; but when myths become reality, then all bets are off. The Network Neutrality public and private debate has been filled with more emotion than rational discussion, and in its wake a number of myths have become accepted as reality. Unfortunately, public policy, consumer broadband services, and service provider business survival hang in the balance. more
In the prior issue of CircleID, I described registrations by John Zuccarini. Many of Zuccarini's registrations are typographic variations on well-known domain names, and Zuccarini typically redirects users to sexually-explicit content and pop-up advertisements. Despite scores of UDRP claims and ACPA suits, plus a major case brought by the Federal Trade Commission, Zuccarini's registrations remain in effect -- more than 5,000 strong, in my research. more
Many online businesses use affiliates to drum up business. The affiliate finds a lead somewhere, passes it to the business, and gets a commission if the lead turns into a sale. Web based affiliates are relatively uncontroversial, but affiliates who advertise by e-mail are a chronic problem due to their propensity to send spam, both spam as normally defined and as defined by CAN SPAM. Is it possible to do legitimate e-mail affiliate marketing? Maybe... more
Mozilla Foundation has announced changes to Firefox concerning Internationalized Domain Names (IDN) to deal with homograph spoofing attacks. According to the organization, "Mozilla Foundation products now only display IDNs in a whitelist of TLDs, which have policies stating what characters are permitted, and procedures for making sure that no homographic domains are registered to two different entities." Following is a statement explaining the current status of the Mozilla changes to Firefox regarding IDN... more
The Internet Corporation for Assigned Names and Numbers (ICANN) has released an "Advisory" concerning VeriSign's deployment of DNS wildcard (Site Finder) service: "Since the deployment, ICANN has been monitoring community reaction, including analysis of the technical effects of the wildcard, and is carefully reviewing the terms of the .com and .net Registry Agreements. In response to widespread expressions of concern from the Internet community about the effects of the introduction of the wildcard..." more
One of the consistent chants we've always heard from ICANN is that there has to be a single DNS root, so everyone sees the same set of names on the net, a sentiment with which I agree. Unfortunately, I discovered at this week's ICANN meeting that due to ICANN's inaction, it's already too late. Among the topics that ICANN has been grinding away at is Internationalized Domain Names (IDNs) that contain characters outside the traditional English ASCII character set. more
I am often asked how to get a ccTLD by folks just coming in to the domain industry. There is RFC1591 as a start for reading material on the subject matter, and then there is ICP-1. I defer them to IANA, who defers to ICANN, who in turn defers to ISO and the ISO3166-1 list being the definitive list, and then you have to factor in some of the "reserved code elements" from their decoding table to normalize 3166 against the list of IANA Country Codes for ccTLD delegations like .EU. How does one get their ccTLD into the ISO list? The ISO in turn (likely due to the masses that contact them hoping to list their country) defer the criteria for what it is to be a 'country' for being on the 3166-1 list, and partially defer to the United Nations. more
It is difficult to explain RFC 3743 or commonly known as the Joint Engineering Team (JET) Guidelines without some lesson on Chinese, Japanese and Korean (CJK), particularly how it relates to Internationalized Domain Names (IDN). Luckily, an Internet-Draft we wrote back in 2001 discusses the issues quite neatly in this context. In brief, Chinese characters (Hanzi) or Han ideographs are evolved from pictographs (writing made up of pictures) across thousands of years. Unlike other writing systems, Han Ideographs are constantly evolving. more
The Intellectual Property Constituency, meeting at the ICANN conference in Vancouver, was interested in increasing ICANN's budget not because they thought they deserved it, but because they wanted ICANN to actually enforce the rules on the books about fake registrations. Now there's some evidence about how prevalent that is. If there's any surprise here, it's that the numbers are so low. more
I'm in the camp that ICANN Top-Level Domains (TLDs) are businesses that should be allowed to evolve from their original charter to increase their viability in the marketplace. It was announced today that VeriSign is proposing to allow telephone numbers and other numeric identifiers in the .NAME top-level domain. This could be the Killer App that ENUM has been waiting for. more
There are some real problems in DNS, related to the general absence of Source Address Validation (SAV) on many networks connected to the Internet. The core of the Internet is aware of destinations but blind to sources. If an attacker on ISP A wants to forge the source IP address of someone at University B when transmitting a packet toward Company C, that packet is likely be delivered complete and intact, including its forged IP source address. Many otherwise sensible people spend a lot of time and airline miles trying to improve this situation... The problems created for the Domain Name System (DNS) by the general lack of SAV are simply hellish. more
Sponsored byIPv4.Global
Sponsored byVerisign
Sponsored byRadix
Sponsored byWhoisXML API
Sponsored byVerisign
Sponsored byCSC
Sponsored byDNIB.com
A World-Renowned Source for Internet Developments. Serving Since 2002.