In order to provide more security for the Domain Name System (DNS), a group of large domain-name registries and registrars has got together with IT security providers and government agencies to launch a new workgroup: the "Registry Internet Safety Group" (RISG). The announcement was made by the Public Internet Registry, which operates the .org domain, and its backend provider Afilias. more
During a conference, "Internet of Things," in France, the U.S. Department of Commerce made the announcement that it will hold a public consultation on the different proposals to cryptographically sign the DNS root zone file, and determine who will hold the root zone trust anchor for global DNSSEC implementation, says Milton Mueller on the Internet Governance Forum blog. The blog, titled "Commerce Department asks the world to comment on its plans to retain control of the root," continues... more
Together with Thorsten Holz, I recently published a paper on fast flux botnet behaviors, "As the Net Churns: Fast-Flux Botnet Observations," based on data we gathered in our ATLAS platform. Fast flux service networks utilize botnets to distribute the web servers to the infected PCs... One of the most well known fast flux botnets has been the Storm Worm botnet, which uses the zombies to spam, send out new enticements to infect users, and to host the malicious website which delivers the malcode. more
A decade has passed since Jon Postel left our midst. It seems timely to look back beyond that decade and to look forward beyond a decade hence. It seems ironic that a man who took special joy in natural surroundings, who hiked the Muir Trail and spent precious time in the high Sierras was also deeply involved in that most artificial of enterprises, the Internet. more
According to news reports, the governor of Kentucky has filed a suit in state court to seize 141 gambling domain names. His claimed authority is a 1974 law against "gambling devices", on the theory that a domain is a "device", and online gambling is taking money away from in-state horse racing and the lottery. The judge sensibly has said that he doesn't understand all the issues, and has given all sides a week to submit briefs. more
Mention ICANN in Internet circles and you will always find a multitude of views of what the organization should do, needs to do, and should have done; how it has to change, and why; and what it needs to focus on. Well, the time has come to make those views known and to try to persuade the rest of the community that they represent the best step forward. more
I was expecting something that would discuss the unique properties, if any, of the domain name market, and the types of inventory theoretically available to allocate, and the expected outcomes for the various types of auctions, and some showing that for some desired policy goals, whether greatest gain to seller or lowest loss to buyer, or something entirely different, the expected outcomes. This would assist the better informed, bottom-up, stakeholder-driven, consensus policy making. Is the domain name market indistinguishable from the spectrum market? If name spaces are distinguishable from units of spectrum... more
I was surprised by ICANN's "Economic Case for Auctions in New gTLDs" paper especially with view to the latest presentation on the new generic Top-Level Domain (gTLD) implementation process in Paris. That Paris presentation highlighted the protection of community interests such as religious organisations, geographically based communities or indigenous groups and suggested a preference of bona fide community-based applicants against pure generic applications for the same string. Contrary to this the only text passage in the current paper where ICANN considered the community-based applicants is "a 25% bidding credit could be offered to community-based bidders whose community is located primarily in least-developed countries". This reminds me of the discussion on discounts for HIV medicine... more
ICANN has recently published a number of updates to the implementation program for new gTLDs. One of these updates is a paper by ICANN's "auction design consultant PowerAuctions LLC". The document makes a case for an auction to be held for the "resolution of contention among competing new gTLD applicants for identical or similar strings." In other words, two (or more) applicants for ".bank", or applicants for ".bank" and ".banks."... more
I have been thinking a lot lately on the topic of the free flow of information on the internet -- what kinds of tools are available now and in the future for governments (especially repressive ones) to control content, isolate their people and keep any contrary viewpoints censored. I had an interesting conversation with a Practice Lead from IFTF.org. The Institute for the Future (IFTF) is a California based independent, nonprofit research group with 40 years of experience in identifying emerging trends that will transform global society... Turns out they are quite concerned about the fragmentation and control of the Internet as well. But will it be an inevitability? more
ICANN recently commissioned a report from Power Auctions LLC to investigate the merits of auctioning new Top-Level Domains (TLDs). Below I outline some of the issues related to stakeholder interests and mechanism design... Successfully managing the design of an allocation mechanism for new TLDs will entail coordinating functions across various competencies. To rely on a standard auction mechanism for the allocations would be a historic setback for the domain name industry, as successful allocation design is all in the details. more
In a recent letter, the US Department of Commerce NTIA strongly denied being engaged in discussions about a "root zone transition" from VeriSign to ICANN. The community, ICANN President Strategic Committee (PSC), and perhaps ICANN and IANA staff are suddenly informed that no transition of root zone management is going to occur. What happened? With the touted ICANN transparency and accountability principles, why such a shift in (perceived) ICANN strategic directions coming from its overseeing government department? more
In a letter sent by bureau of the U.S. Department of Commerce, National Telecommunications and Information Administration (NTIA) to ICANN, the department has made it clear that despite recent discussions in Paris meetings, the U.S. department intends to remain in full authority over the Internet root zone. more
So I wrote earlier that I though it was good stuff when ICANN released a paper on DNS Security. Yes, I think it was good this paper was released, and yes it points out correctly how important DNSSEC is. But, now when reading it in detail, I find two things that troubles me. And it has to do with management of .ARPA. A top level domain that is used for infrastructural purposes. Like IP-addresses and E.164 numbers... more
Today ICANN releases a paper with the title "DNSSEC @ ICANN - Signing the root zone: A way forward toward operational readiness". The paper explains in more detail than earlier documents what ICANN view on signing of the root zone is. I think the key points mentioned in this paper are true, and in general, I think this document is a good read. It is not long, and summarizes what I would call the current view is. more
A World-Renowned Source for Internet Developments. Serving Since 2002.