DNS

Sponsored
by

DNS / Most Commented

Narcotics Traffic Is Not Part of a Healthy Domain System

A stack contrast is emerging within the DNS between providers who tolerate blatantly illegal domain use and those who do not. Our study, just published here focuses on five U.S.-based providers, their policies, and their response to reports of opioid traffic within their registry or registrar. There are many providers, not covered here, who removed hundreds of domains selling opioids and I applaud their efforts. more

ICANN’s Auction Piggy Bank Just Got Twice As Big

Kieren McCarthy reports in The Register that an obscure Panamanian company paid $30 million for .BLOG in the January 21 domain auction. ICANN's web site confirms that the domain did go to the Panamanian company. It doesn't report the amount, but Kieren's sources are usually correct. If so, the auction proceeds piggy bank just doubled from $30M to $60M dollars, and ICANN still has no idea what to do with it. more

Nameserver Operators Need the Ability to “Disavow” Domains

Yesterday's DDoS attack against DNSimple brought to light a longstanding need for DNS nameserver operators to have an ability to unilaterally repudiate domains from their nameservers. The domains under attack started off on DNSMadeEasy, migrated off to DNSimple and took up residence there for about 12 hours, causing a lot of grief to DNSimple and their downstream customers. more

Secure Unowned Hierarchical Anycast Root Name Service - And an Apologia

In Internet Draft draft-lee-dnsop-scalingroot-00.txt, I described with my coauthors a method of distributing the task of providing DNS Root Name Service both globally and universally. In this article I will explain the sense of the proposal in a voice meant to be understood by a policy-making audience who may in many cases be less technically adept than the IETF DNSOP Working Group for whom the scalingroot-00 draft was crafted. I will also apologize for a controversial observation concerning the addition of new root name servers... more

The Long Gestation and Afterlife of New gTLDs

ICANN continues to flail, pointlessly. The latest in a series of missteps that could easily have been avoided is its recommendations on what to do about a report on the potential for confusion and misaddressing when someone's internal network names match the name for a new gTLD, and they have misconfigured their routers and/or DNS to the extent that someone typing in a new gTLD name might end up in the middle of someone else's network. more

ANA Moves Campaign Against New gTLDs to YouTube, Accuses ICANN of Lying

The Association of National Advertisers (ANA) has shifted its campaign against ICANN's new gTLD program to YouTube with a video from its President accusing the organization of "lying" about having reached a consensus over its plans, reports Kieren McCarthy at .Nxt. "The video ends with a dramatic statement, clearly devised to produce stories such as this one: 'So we'd like to say to ICANN: your claim for consensus it wrong, it is false, it is a lie." more

New gTLDs and the 1%

While Occupy Wall Street and other groups representing the so-called 99% are getting most of the press, the 1% is raising its profile as well, at least when it comes to gTLDs. They are complaining that introducing global choice and competition to the Internet will cost them money. The chief of the Association of National Advertisers (ANA) now says that it has "spent the last few months" considering the new gTLD program, and has found it lacking. They want ICANN to shut the whole thing down. more

Underneath the Hood: Ownership vs. Stewardship of the Internet

As is well known to most CircleID readers - but importantly, not to most other Internet users - in March 2011, ICANN knowingly and purposefully embraced an unprecedented policy that will encourage filtering, blocking, and/or redirecting entire virtual neighborhoods, i.e., "top-level domains" (TLDs). Specifically, ICANN approved the creation of the ".XXX" suffix, intended for pornography websites. Although the owner of the new .XXX TLD deems a designated virtual enclave for morally controversial material to be socially beneficial for the Internet, this claim obfuscates the dangers such a policy creates under the hood. more

Alignment of Interests in DNS Blocking

I've written recently about a general purpose method called DNS Response Policy Zones (DNS RPZ) for publishing and consuming DNS reputation data to enable a market between security companies who can do the research necessary to find out where the Internet's bad stuff is and network operators who don't want their users to be victims of that bad stuff... During an extensive walking tour of the US Capitol last week to discuss a technical whitepaper with members of both parties and both houses of the legislature, I was asked several times why the DNS RPZ technology would not work for implementing something like PROTECT-IP. more

The Internet Community Says Thank You to ICANN for New TLDs

After more than six years of consultation and negotiation regarding the New Top-Level Domain Program, the ICANN Board this week approved the program to the pleasure of many within the Internet community. For this, we say thank you to ICANN on a job well done! The New Top-Level Domain (TLD) Program has been controversial at times and has fuelled many passionate debates within the Internet community. more

New gTLDs: Will Application Developers Be Ready In Time to Secure User Confidence?

Last week I pointed out a potential problem with the user experience, if, as envisioned, a large number of new generic Top-Level Domains (gTLDs) are added to the root at the same time. The problem I was referring to has nothing to do with the new gTLDs themselves. Rather, it's about the lack of any updated procedures and communication campaigns to application and software vendors. The objective would be to alert them in time and equip them to swiftly update their programs... more

Garth Bruen Discussing Whois, DNSSEC and Domain Security

NameSmash has interviewed Garth Bruen, Internet security expert and creator of Knujon, on some key issues under discussion during the recent ICANN meetings in San Francisco. Topics include Whois, DNS Security Extensions (DNSSEC) and generic Top-Level Domains (gTLDs) -- issues of critical importance particularly with ICANN's expected roll-out of thousands of new gTLDs in the coming years. more

GAC New gTLD No Fly Zone

I have struggled over the past couple of weeks to come up with a metaphor to succinctly describe the standoff between the ICANN Board and the ICANN Government Advisory Committee (GAC) over the new generic Top-Level Domain (gTLD) implementation process. So here's my best attempt to explain these dynamics in terms a layperson may be better to understand. I chose the metaphor for its timeliness, without meaning to offend anyone. more

Rod Beckstrom, Twiki and the Foswiki fork - ICANN Must “Get Things Right” on New TLDs

One of the most disastrous things that could happen to the DNS would be for the root to "split", as it would mean that identifiers would no longer be universal. Instead, "Example.com" would have totally different meanings for different users, substantially reducing the benefits of domain names. Can this happen? Important lessons for ICANN can be learned by studying the history of Rod Beckstrom, Twiki and Foswiki. more

U.S. Uses Domain Names As New Way to Regulate the Net

Governments have long sought ways to regulate Internet activity, whether for the purposes of taxation, content regulation, or the application of national laws. Effective regulatory measures have often proven elusive, however, since, unlike the Internet, national laws typically end at the border. Earlier this month, the United States began to move aggressively toward a new way of confronting the Internet's jurisdictional limitations - the domain name system. more