An Energetic View of DNS Security
Date: Saturday September 29 2001, @12:36PM
Topic: ICANN Meetings

Richard Forno, NSI's Chief Security Officer from 1998-2001, has an interesting rant on Dave Farber's Interesting People list in response to ICANN's hijack of the LA meeting agenda. He's somewhat scathing of the idea that ICANN is competent to address security issues: "I can safely say," he writes, "that the only security most of ICANN's Board is interested (or qualified) to address is job security. The same could be said for many of the commercial root operators, too." It's sufficiently strong to make Karl Auerbach defend ICANN. Now we've seen everything?

UPDATE (10/1)John Gilmore weighs in. (Sample: "ICANN is only using 9/11 as an excuse for delaying on its REAL work, which is to create real competition and protect free expression in the domain name space. But since it's structured to be dominated by people who profit from the lack of real competition, and who use trademark claims to censor free expression, any excuse for further delay will do. ICANN is only using 9/11 as an excuse for delaying on its REAL work, which is to create real competition and protect free expression in the domain name space. But since it's structured to be dominated by people who profit from the lack of real competition, and who use trademark claims to censor free expression, any excuse for further delay will do.")

Auerbach argues that,

What we're going to be doing is looking at many non-technical protections, like making sure that there are sufficient backups and procedures so that DNS infrastructure can be repaired. This involves some rather low-tech things, like good off-site backups/escrows. It also involves things that ICANN is merely in a truly coordinating role - like trying to work with those those involved in the routing decisions of the Internet (the ISP community) in hopes that they will be willing and able to shift packet routing should it be necessary to reestablish root DNS servers at new physical locations.

To my way of thinking, this kind of technical review of DNS and pragmatic managment of the technologies that have been given us by the IETF and others is exactly the kind of thing that ICANN ought to have been doing all along.

Well, fine, I'd say, but shouldn't that be done offline first, whithout chewing up a whole 3-day meeting?

This discussion has been archived. No new comments can be posted.
An Energetic View of DNS Security | Log in/Create an Account | Top | 10 comments | Search Discussion
Click this button to post a comment to this story
The options below will change how the comments display
Threshold:
Check box to change your default comment view
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
Re: An Energetic View of DNS Security
by fnord (groy2kNO@SPAMyahoo.com) on Monday October 01 2001, @06:57PM (#2670)
User #2810 Info
GA Chair Danny Younger has sent a rather stinging email to M. Stuart Lynn. -g
[ Reply to This | Parent ]
Re: An Energetic View of DNS Security
by dtobias (dan@tobias.name) on Saturday September 29 2001, @05:04PM (#2639)
User #2967 Info | http://domains.dan.info/
Is there a point to all of these questions?
[ Reply to This | Parent ]
  • 3 replies beneath your current threshold.




  • This article comes from ICANNWatch
    http://www.icannwatch.org/

    The URL for this story is:
    http://www.icannwatch.org/article.pl?sid=01/09/29/163654