Inside ICANNWatch  
Submit Story
Lost Password
Site Messages
Top 10 Lists
Latest Comments
Search by topic

Our Mission
ICANN for Beginners
About Us
How To Use This Site
Slash Tech Info
Link to Us
Write to Us

  Useful ICANN sites  
  • ICANN itself
  • Bret Fausett's ICANN Blog
  • Internet Governance Project
  • UN Working Group on Internet Governance
  • Karl Auerbach web site
  • Müller-Maguhn home
  • UDRPinfo.com;
  • UDRPlaw.net;
  • CircleID;
  • LatinoamerICANN Project
  • ICB Tollfree News

  •   At Large Membership and Civil Society Participation in ICANN  
  • icannatlarge.com;
  • Noncommercial Users Constituency of ICANN
  • NAIS Project
  • ICANN At Large Study Committee Final Report
  • ICANN (non)Members page
  • ICANN Membership Election site

  • ICANN-Related Reading
    Browse ICANNWatch by Subject

    Ted Byfied
    - ICANN: Defending Our Precious Bodily Fluids
    - Ushering in Banality
    - ICANN! No U CANN't!
    - roving_reporter
    - DNS: A Short History and a Short Future

    David Farber
    - Overcoming ICANN (PFIR statement)

    A. Michael Froomkin
    - When We Say US™, We Mean It!
    - ICANN 2.0: Meet The New Boss
    - Habermas@ discourse.net: Toward a Critical Theory of Cyberspace
    - ICANN and Anti-Trust (with Mark Lemley)
    - Wrong Turn in Cyberspace: Using ICANN to Route Around the APA & the Constitution (html)
    - Form and Substance in Cyberspace
    - ICANN's "Uniform Dispute Resolution Policy"-- Causes and (Partial) Cures

    Milton Mueller
    - Ruling the Root
    - Success by Default: A New Profile of Domain Name Trademark Disputes under ICANN's UDRP
    - Dancing the Quango: ICANN as International Regulatory Regime
    - Goverments and Country Names: ICANN's Transformation into an Intergovernmental Regime
    - Competing DNS Roots: Creative Destruction or Just Plain Destruction?
    - Rough Justice: A Statistical Assessment of the UDRP
    - ICANN and Internet Governance

    David Post
    - Governing Cyberspace, or Where is James Madison When We Need Him?
    - The 'Unsettled Paradox': The Internet, the State, and the Consent of the Governed

    Jonathan Weinberg
    - Sitefinder and Internet Governance
    - ICANN, Internet Stability, and New Top Level Domains
    - Geeks and Greeks
    - ICANN and the Problem of Legitimacy

    Highlights of the ICANNWatch Archive
    (June 1999 - March 2001)

    Laugh (or Cry) gTLD proposal to limit Internet fraud
    posted by jon on Monday July 04 2005, @11:00AM

    "[Emboldened by the ICANN Board's approval of .XXX, an anonymous reader submitted to us this proposal to limit Internet fraud. The payoff is in section three. -- jtw]

    A gTLD proposal to limit Internet fraud

    1. Problem Statement

    There is a growing and serious problem with fraudulent activity on the Internet, directed principally at consumers. The highest-profile of these is the fraud known as 'phishing', in which large volumes of unsolicited email - 'spam' - are sent to Internet users, purporting to come from financial organisations with whom some proportion of those users have an existing commercial relationship. These emails direct the unsuspecting user to a website which has the 'look and feel' of the impersonated organisation's website; through a variety of technical means, however, the computer which the consumer is directed to is in fact operated by a fraudster. In the most typical case, the user is fooled into supplying their account credentials - typically, a username and password - which allow the fraudster to subsequently impersonate the user, transferring money or other assets to the fraudster's benefit. The victim of the fraud may also have malicious software loaded onto their computer as a result of interacting with the fraudulent website; this malicious software may go on to copy to the fraudster the credentials needed to operate other accounts previously under the sole control of the victim.

    Frequently, the victim of these 'phishing' frauds is enticed to the fraudster's website by the use of a 'URL' - a web-page address - which looks very similar to that of the legitimate site, but differs from it in some crucial way. Earlier phishing frauds used relatively crude methods - for example, using the digit 1 in place of the letter l (el), which in many typefaces are difficult to distinguish at a glance. Later versions use increasingly sophisticated means to disguise the true web address of the fraudulent computer.

    2. Previous solution proposals

    There have been numerous proposals to reduce the likelihood of these frauds succeeding. Some have been technical, such as adding features to the 'browser' software used by consumers to more clearly indicate a difference between the apparent and actual destination of 'hyperlinks'. Others have been focused primarily on user education, attempting to reach out to the population at large with such messaging as 'your real bank will never address you without using your proper forename and surname, and will never solicit you to enter your username and password at a website whose address is given to you in an email'. To date, neither the technical means nor the user-education drives have succeeded in reducing the growth of this novel form of e-enabled wealth redistribution.

    3. A free-market resolution

    In line with the dominant economic philosophy of our times, and the specific policy direction of ICANN (the Internet Corporation for Assigned Names and Numbers), we propose a free-market solution to this problem. Entrepreneurial wealth-transfer schemes described above as 'frauds' should be given their own gTLD (global top-level domain). To maximise the attractiveness of the new gTLD, and preserve its fit with the established business model of the interested community, we suggest that the most obvious gTLD to allocate is .con. This corrals the activlty into a known and regulable zone, which bears the requisite similarity to existing domain-name structures. It increases the efficiency of the wealth-transfer mechanisms, simplifying both the technical activities of those characterised as 'scammers' (who need no longer resort to increasingly obscure technical means to disguise the true address of their websites), allows a valuable new income stream for the succesful registrar applicants, and allows vendors of end-user internet-safety software to add a simple pop-up to warn users that they are visiting a .con domain - a warning which will be no less effective than the convoluted technical mechanisms currently in use.

    uN-altered REPRODUCTION and DISSEMINATION of this IMPORTANT information is ENCOURAGED. "

      ICANNWatch Login  


    [ Don't have an account yet? Please create one. It's not required, but as a registered user you can customize the site, post comments with your name, and accumulate reputation points ("karma") that will make your comments more visible. ]

      Related Links  
    · ICANN
    · More Laugh (or Cry) stories
    · Also by jon
    This discussion has been archived. No new comments can be posted.
    gTLD proposal to limit Internet fraud | Log in/Create an Account | Top | 2 comments | Search Discussion
    Click this button to post a comment to this story
    The options below will change how the comments display
    Check box to change your default comment view
    The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
    by KarlAuerbach on Monday July 04 2005, @11:36AM (#15704)
    User #3243 Info | http://www.cavebear.com/
    And .con nicely balances .pro.
    [ Reply to This | Parent ]
    • 1 reply beneath your current threshold.

    Search ICANNWatch.org:

    Privacy Policy: We will not knowingly give out your personal data -- other than identifying your postings in the way you direct by setting your configuration options -- without a court order. All logos and trademarks in this site are property of their respective owner. The comments are property of their posters, all the rest © 2001, 2002, 2003, 2004, 2005, 2006, 2007, 2008 by ICANNWatch.Org. This web site was made with Slashcode, a web portal system written in perl. Slashcode is Free Software released under the GNU/GPL license.
    You can syndicate our headlines in .rdf, .rss, or .xml. Domain registration services donated by DomainRegistry.com