[ga] Re: [ PRIVACY Forum ] ICANN touts DNSSEC as tool to fight "Internet Criminals"

["Jeffrey A. Williams" <jwkckid1@xxxxxxxxxxxxx>]

Lauren and all,

  Rod is fairly accurate in his statement, and DNSSEC is
a small step in a positive direction.  DNScurve and stronger
encryption would have been far better adjunct to DNSSEC, but
NIST decided that 256k or Sha-2 is good enough even though
1024k has already been broken.  Next thing that needs to be done
and should have already been is security hardening SRS, a strictly
ICANN function, and requiring the implimentation of IPSEC for all
registries and registrars and centeralizing Whois as well as securing
some of the records there unto pertaining.  But I doubt that ICANN 
nor the 'Accredited' registries or registrars will be very willing to  
do any of these anytime soon.  


-----Original Message-----
>From: privacy@xxxxxxxxxx
>Sent: Jul 28, 2010 9:02 PM
>To: privacy-list@xxxxxxxxxx
>Subject: [ PRIVACY Forum ] ICANN touts DNSSEC as tool to fight "Internet       
>Criminals"
>
>
>
>ICANN touts DNSSEC as tool to fight "Internet Criminals"
>
>    ICANN said the DNSSEC would eventually allow Internet users to know
>    "with certainty" that they have been directed to the Web site they
>    sought.  "This upgrade will help disrupt the plans of criminals around
>    the world who hope to exploit this crucial part of the Internet
>    infrastructure to steal from unsuspecting people," ICANN President and
>    CEO Rod Beckstrom said in a statement."
>
>http://bit.ly/aQ4Vmr  (Tech Daily Dose)
>
> - - -
>
>While the implementation of DNSSEC is certainly important, and the
>avoidance of DNS cache poisoning attacks is clearly very useful,
>ICANN's "Dragnet-esque" pronouncements about fighting crime strike me
>as highly ironic.
>
>The simple fact is that "Internet criminals" have a vast array of tools
>in their arsenal to misdirect users, and few of these depend on cache
>poisoning or DNS manipulation.
>
>Much of the crime is enabled by the fundamental design of the domain name
>registry/registrars ecosystem, which enables crooks to easily create and
>abandon completely valid "disposable" domains that are only used for short
>periods of time and cannot be reasonable tracked to their owners.  
>
>In fact, through their plans to unleash vast numbers of new Top Level
>Domains (TLDs) on the Internet -- perhaps hundreds in the first 
>year -- ICANN will only be increasing the confusion of consumers and
>providing fresh juice for criminal operations.  Most Internet users
>aren't calling for new TLDs -- they mainly think in terms of dot-com
>and that's unlikely to change any time soon.  The main push for new
>TLDs is from would-be registry operators and their registrar cohorts,
>who see the promise of big bucks from the rush of purely defensive
>domain registrations that occur when every new TLD opens.
>
>So as far as I'm concerned, ICANN isn't winning the "Joe Friday"
>crime-fighter award any time soon.
>
>--Lauren--
>Lauren Weinstein (lauren@xxxxxxxxxx)
>http://www.vortex.com/lauren
>Tel: +1 (818) 225-2800
>Co-Founder, PFIR (People For Internet Responsibility): http://www.pfir.org
>Co-Founder, NNSquad (Network Neutrality Squad): http://www.nnsquad.org
>Founder, GCTIP (Global Coalition for Transparent Internet Performance): 
>   http://www.gctip.org
>Founder, PRIVACY Forum: http://www.vortex.com
>Member, ACM Committee on Computers and Public Policy
>Lauren's Blog: http://lauren.vortex.com
>Twitter: https://twitter.com/laurenweinstein
>Google Buzz: http://bit.ly/lauren-buzz
>
>_______________________________________________
>privacy mailing list
>http://lists.vortex.com/mailman/listinfo/privacy

Regards,

Jeffrey A. Williams
Spokesman for INEGroup LLA. - (Over 294k members/stakeholders and growing, 
strong!)
"Obedience of the law is the greatest freedom" -
   Abraham Lincoln

"Credit should go with the performance of duty and not with what is very
often the accident of glory" - Theodore Roosevelt

"If the probability be called P; the injury, L; and the burden, B; liability
depends upon whether B is less than L multiplied by
P: i.e., whether B is less than PL."
United States v. Carroll Towing  (159 F.2d 169 [2d Cir. 1947]
===============================================================
Updated 1/26/04
CSO/DIR. Internet Network Eng. SR. Eng. Network data security IDNS. div. of
Information Network Eng.  INEG. INC.
ABA member in good standing member ID 01257402 E-Mail jwkckid1@xxxxxxxxxxxxx
Phone: 214-244-4827