Two More Crypto Holes

If you work in computer security, your Twitter feed and/or Inbox has just exploded with stories about not just one but two new holes in cryptographic protcols. One affects WiFi; the other affects RSA key pair generation by certain chips. How serious are these? I'm not going to go through the technical details. For KRACK, Matthew Green did an excellent blog post; for the other, full details are not yet available. There are also good articles on each of them. What's more interesting are the implications. more

New Zealand Releases Revamped Three Strikes Proposal

The New Zealand government has released a revamped three strikes proposal that incorporates full court hearings and the possibility of financial penalties. A prior proposal, which would have resulted in subscriber access being terminated without court oversight, was dropped earlier this year following public protest. more

Challenges in Measuring DNS Abuse

From the creation of DNSAI Compass ("Compass"), we knew that measuring DNS Abuse1 would be difficult and that it would be beneficial to anticipate the challenges we would encounter. With more than a year of published reports, we are sharing insights into one of the obstacles we have faced. One of our core principles is transparency and we've worked hard to provide this with our methodology. more

M3AAWG Releases Anti-Abuse Best Common Practices for Hosting and Cloud Service Providers

Jointly published by the Internet Infrastructure Coalition (i2C) and the Messaging, Malware and Mobile Anti-Abuse Working Group, the new document outlines proven activities that can help Web hosting services improve their operations and better protect end-users. more

More than 85% of Top 500 Most Highly-Trafficked Websites Vulnerable

Over the last 5 years, hacktivists have continued the practice of redirecting well-known domain names to politically motivated websites utilizing tactics such as SQL injection attacks and social engineering schemes to gain access to domain management accounts -- and that, in and of itself, is not surprising. But what IS surprising is the fact that less than 15% of the 500 most highly trafficked domains in the world are utilizing Registry Locking. more

Does ICANN’s New Proposed Budget Harm Competition?

Despite the stated commitment to meeting their obligations to the government, ICANN's proposed budget may potentially breach the MoU. Specifically, the MoU commits ICANN to "perform as an organization founded on the principles of competition..." However, an alliance of at least 50 Registrars claims that the new Registrar fee structure contained in the proposed budget would significantly harm competition.  more

.Pro Asking for Second-Level Domains (Again)

In a Message from RegistryPro Advisory Board to Tina Dam on 24 October 2003, it is noted that .Pro is, again, asking ICANN to allow for the registration of 2nd level domains. I am, again, of mixed opinion on this. On the one hand, a registry should be able to do what it wants, within reason. This clearly falls into that category. On the other hand, .Pro has been denied once already on the grounds that registering 2nd level domains is not the proposal upon which they were approved in the "testbed" procedure of November 2000. more

In Congressional Hearing, Stakeholders Highlight ICANN’s Failures and Need for Reform

Can we trust ICANN to conduct itself in a predictable, open, transparent, and accountable manner if it takes over governance of the Internet's domain name system from the U.S. government? That was the main question up for discussion Wednesday in the House Judiciary Subcommittee on Courts, Intellectual Property, and the Internet, as lawmakers heard feedback from a diverse group of stakeholders about the National Telecommunications and Information Administration (NTIA) plan to relinquish its historical oversight of key technical Internet functions.  more

What ICANN Can Learn from Humpty Dumpty

I have been an active participant in the ICANN "grand experiment" from the beginning. An experiment in which a private sector led organization was entrusted by the Internet community and governments to be a trustee of a global public resource. However, at no time during my twelve years of participation in ICANN have I been more concerned about the long term viability of this organization than I do now heading into the Singapore meeting. Failure of the ICANN Board to do the right thing in Singapore will have a profound impact on the future of the private sector led model. more

Freedom of Expression Part 1: Hate Speech, Linehan, Trans as a Protected Class in California

Graham Linehan was banned from Twitter last week. Graham Linehan is an Irish writer and creator of Father Ted and Black Books. Twitter closed Graham Linehan's account for tweeting "men aren't women though" which twitter perceived as "hate speech" and offensive to the Trans community. Context always shapes meaning, and so I thought it would be useful to explore how hate speech is interpreted in California and then to see how it is treated in Fiji. more

Only Structural Change Can Save the Mobile Industry

I regularly bring this issue forward, similar to the discussion in relation to the structural separation of the fixed networks, which I began just over a decade ago. What we are seeing in the mobile industry is an infrastructure and a spectrum crunch. The amount of spectrum needed to satisfy people's demand from mobile phones, tablets and soon a range of other smart devices is limitless. Mobile carriers are scrambling for spectrum... more

Are We Attending the Right ICANN Meeting?

I have no idea who wrote that wonderful piece, Time for Reformation of the Internet, posted by Susan Crawford. (It wasn't me - I never use the word "netizen".) Elliot Noss of Tucows wrote a partial rebuttal, I must be attending the wrong ICANN meetings. Elliot's company, Tucows, has been a leader in registrar innovation and competition. And Tucows has constantly been among the most imaginative, progressive, responsible, and socially engaged companies engaged in these debates. ...But the points made by Time for Reformation of the Internet go far beyond registries and registrars. more

Why Brands Need Their Own TLD - The Mulberry-Sale Site that Scammed Me

As a seasoned internet user, even an old 'Domainer', I was there when ICANN launched the first round of New TLDs. I remember the criticism we received from the media back then. We were invited to countless roundtable discussions, press conferences, and local internet events at which we were expected to answer the key media question: "Why are new TLDs necessary?" Dot BIZ, .INFO, and four more were the test bed new TLDs -- I represented .BIZ in EMEA. more

Less is More – The Sales Boom in Short Character Domain Names

Much of the domain industry has seen a huge surge in sales of 2, 3 & 4 character sales. More specifically numeric domain sales are ever increasing mostly driven by Chinese buyers. As such domain marketplaces are utilizing and developing stronger connections in China to foster this growth even further while creating awareness for why this is occurring. When talk turns to economic and trade growth, China is never left out of the conversation. This talk extends to the domain market as well. more

Study Finds Some 4000 Domains Expired After Being Won in Court, Some Disputed Again by Same Company

According to a recent study on trends of disputed domain names, companies could save millions on legal costs by being more proactive about registering the names first. "The results indicate more than $220 million was spent on reclaiming domain names from third parties through the Uniform Domain Name Dispute Resolution Policy (UDRP)," says Corporation Service Company (CSC). "If brand owners had registered these domain names proactively, it would have only cost them $1.1 million (£600K), yielding a cost savings of $219 million." more