• why do 5 domainname companies control hundreds of resellers

    No, not agents, companies they own but that have a different name and business address and so on and are all registrered with ICANN

    " On paper there are over nine hundred Registrars, but the true number is much smaller. Most accreditations are redundancies held by five companies.

    • eNom (Demand Media): 138 Accreditations
    • Oversee (Moniker/SnapNames): 128 Accreditations
    • NameScout (Momentus): 108 Accreditations
    • Directi (PDR/Answerable): 72 Accreditations
    • DOTSTER: 53 Accreditations

    The annual accreditation fee is $4000 US. This means eNom pays $544,000 - over one half million dollars per year to ICANN, for what advantage? Surely no company voluntarily pays excessive fees. Companies only expend funds if they can make it back three or fourfold. In addition to eNom, Oversee (Moniker) would pay ICANN $512,000 per year, NameScout $432,000 US, $288,000, and DotSter $212,000. In total, these five companies are paying ICANN $1,996,000 annually for no obvious reason. These funds are in addition to and separate from the fees associated with purchasing domain names. In essence, these five companies are supplying ICANN with 3% of its budget beyond the money that comes from domain sales."

    In het session yesterday this question was debated and the answer from one of them was that in the beginning the domainregistrars and agents saw that they were selling domainnames for dollars while the investors and speculators resold them for sometimes millions. So they have set up separate businesses that could crawl their databases of domainnames that were not renewed and resell them at the highest bidder themselves - instead of some speculator from his home computer.

    In other words, the big guys have set up some smokescreen companies to buy themselves all the interesting domainnames before anybody else could and to offer services to some other 'businesses' without being implicated themselves while still collecting the money (follow th emoney, always).

    Question is how this can be transparant and how this could make it easy to wipe out fraud and brandjacking.

  • a day at ICANN brussels

    As I am responsable for security I don't take holidays whenever I want to so I just liberated a day to be at ICANN for ISOC Belgium. As I am only since recently active with ISOC Belgium it was also my first ISOC meeting. And I was strange and fascinating at the same time.

    Imagine. This is the world parliament of the itnernet. This is the place where is decided who may have domainextensions and sell them and who doesn't. This is the place where the central DNS infrastructure (which tells you where the information is based on a name, not an IP Addess (like a telephone number)) is more or less managed and planned. This is where people, governments and stakeholders talk about security, privacy and online democratic rights.

    You see people with totally contradictory interests. You see activists and lobbyists. You see people from all over the world and from all different cultures and also many women who are important and intelligent (and not only bringing coffee and holding papers).

    All those people have the same rights of opinion and questioning about any subject that is dear to them and the community.

    The cynical guy in me says that this is not representative for the online population and that government and big business will do whatever they want to do. Maybe most of those that should be heared aren't here or haven't got the opportunity to express themselves. The satirical guy in me didn't know what to think when he was entering a conference room where everybody was connected to the internet reading the internet and emails while there was in fact a conference and a discussion taking place. How much can you multitaks without missing essential bits of information - which are mostly hidden in the details or things people aren't saying ?

    But this is like democracy the best thing the internet has for the moment and the only alternatives are the breakup or balkanization of the internet or a technocratic supergovernment of the internet which was what the ICANN organisation used to be.

    So even if one can be very cynical about this kind of meetings, it is quite fascinating to see evern for one day. So if anybody is planning to go to such a big ICANN meeting once - you should go once. Just to see how democracy is developing itself before your proper eyes and how a little bit of goodwill from all the different stakeholders can make the big difference and in fact made the internet the place we have become used to.

  • Internet drafts : selection of new ones 29 sept - 15th october

    .draft-ietf-dhc-option-guidelines-03.txt     Guidelines for Creating New DHCP Options    14/10/2008
    .draft-ietf-idnabis-defs-00.txt     Internationalized Domain Names for Applications (IDNA): Definitions and Document Framework    14/10/2008
    ..draft-ietf-isms-tmsm-14.txt     Transport Subsystem for the Simple Network Management Protocol (SNMP)    14/10/2008
    draft-templin-autoconf-dhcp-17.txt     Virtual Enterprise Traversal (VET)    14/10/2008
    .draft-krishnan-ipv6-exthdr-06.txt     An uniform format for IPv6 extension headers    14/10/2008
    .draft-ietf-rohc-hcoipsec-09.txt     Integration of Robust Header Compression (ROHC) over IPsec Security Associations    14/10/2008
    .draft-ietf-rohc-ikev2-extensions-hcoipsec-07.txt     IKEv2 Extensions to Support Robust Header Compression over IPsec (ROHCoIPsec)    14/10/2008
    .draft-ietf-ecrit-location-hiding-req-01.txt     Location Hiding: Problem Statement and Requirements    12/10/2008
    .draft-ietf-ecrit-specifying-holes-01.txt     Specifying Holes in LoST Service Boundaries    12/10/2008
    .draft-ietf-isms-radius-usage-04.txt     Remote Authentication Dial-In User Service (RADIUS) Usage for Simple Network Management Protocol (SNMP) Transport Models    12/10/2008
    .draft-nir-ike-qcd-03.txt     A Quick Crash Detection Method for IKE    12/10/2008
    .draft-arkko-eap-aka-kdf-06.txt     Improved Extensible Authentication Protocol Method for 3rd Generation Authentication and Key Agreement (EAP-AKA')    12/10/2008
    .draft-ietf-krb-wg-anon-10.txt     Anonymity Support for Kerberos    10/10/2008
    .draft-ietf-mext-firewall-admin-00.txt     Guidelines for firewall administrators regarding MIPv6 traffic    10/10/2008
    .draft-ietf-mext-firewall-vendor-00.txt     Guidelines for firewall vendors regarding MIPv6 traffic    10/10/2008
    .draft-irtf-asrg-dnsbl-07.txt     DNS Blacklists and Whitelists    10/10/2008
    .draft-kucherawy-sender-auth-imap-00.txt     IMAP Annotation for Indicating Message Authentication Status    10/10/2008
    .draft-brusilovsky-pak-07.txt     Password-Authenticated Diffie-Hellman Exchange (PAK)    09/10/2008
    .draft-ietf-rserpool-mib-07.txt     Reliable Server Pooling: Management Information Base using SMIv2    09/10/2008
    .draft-freed-sieve-ihave-03.txt     Sieve Email Filtering: Ihave Extension    09/10/2008
    .draft-ietf-smime-ibearch-09.txt     Identity-based Encryption Architecture and Supporting Data Structures    09/10/2008
    draft-ietf-ancp-security-threats-06.txt     Security Threats and Security Requirements for the Access Node Control Protocol (ANCP)    07/10/2008
    draft-ietf-idnabis-rationale-03.txt     Internationalized Domain Names for Applications (IDNA): Definitions,Background and Rationale    07/10/2008
    draft-ietf-isms-secshell-12.txt     Secure Shell Transport Model for SNMP    07/10/2008
    draft-ietf-isms-transport-security-model-09.txt     Transport Security Model for SNMP    07/10/2008
    draft-hajjeh-tls-identity-protection-07.txt     Credential Protection Ciphersuites for Transport Layer Security (TLS)    06/10/2008
    draft-liao-smimeheaderprotect-03.txt     Header Protection for S/MIME    06/10/2008
    draft-ietf-pkix-ta-format-00.txt     Trust Anchor Format    06/10/2008
    draft-ietf-pkix-tamp-00.txt     Trust Anchor Management Protocol (TAMP)    06/10/2008
    draft-ietf-sip-domain-certs-02.txt     Domain Certificates in the Session Initiation Protocol (SIP)    06/10/2008
    draft-ietf-smime-3850bis-08.txt     Secure/Multipurpose Internet Mail Extensions (S/MIME) Version 3.2 Certificate Handling    06/10/2008
    draft-iab-ip-config-08.txt     Principles of Internet Host Configuration    04/10/2008
    draft-ietf-dna-simple-03.txt     Simple procedures for Detecting Network Attachment in IPv6    03/10/2008
    draft-turner-deviceowner-attribute-00.txt     Device Owner Attribute    03/10/2008
    draft-hoeper-proxythreat-00.txt     Threat Model for Networks Employing AAA Proxies    03/10/2008
    draft-ietf-sip-xcapevent-04.txt     An Extensible Markup Language (XML) Configuration Access Protocol (XCAP) Diff Event Package    03/10/2008
    draft-ietf-mext-rfc3775bis-02.txt     Mobility Support in IPv6    01/10/2008
    draft-montemurro-gsma-imei-urn-02.txt     A Uniform Resource Name Namespace For The GSM Association (GSMA) and the International Mobile station Equipment Identity(IMEI)    01/10/2008
    draft-marinov-syslog-snmp-02.txt     Mapping Simple Network Management Protocol (SNMP) Notifications to SYSLOG Messages    01/10/2008
    draft-sharhalakis-httptz-04.txt     Timezone Information in HTTP    01/10/2008
    draft-sakane-dhc-dhcpv6-kdc-option-02.txt     Kerberos Option for DHCPv6    01/10/2008
    draft-keromytis-keynote-x509-01.txt     X.509 Key and Signature Encoding for the KeyNote Trust Management System    01/10/2008
    draft-endo-v6ops-dnsproxy-01.txt     Translator Friendly DNS Proxy    01/10/2008
    draft-keromytis-tls-authz-keynote-01.txt     Transport Layer Security (TLS) Authorization Using KeyNote    01/10/2008
    draft-elwell-sip-identity-handling-ua-00.txt     Identity Handling at a Session Initiation Protocol (SIP) User Agent    01/10/2008
    draft-weaver-dnsext-fr-comprehensive-00.txt     Comprehensive DNS Resolver Defenses Against Cache Poisoning    30/09/2008
    draft-weaver-dnsext-comprehensive-resolver-00.txt     Comprehensive DNS Resolver Defenses Against Cache Poisoning    30/09/2008
    draft-ietf-nsis-nslp-natfw-19.txt     NAT/Firewall NSIS Signaling Layer Protocol (NSLP)    30/09/2008
    draft-ietf-pcn-architecture-07.txt     Pre-Congestion Notification (PCN) Architecture    30/09/2008

    Internet Drafts - Title List sorted by date

  • ISOC internet drafts : some new proposals

    draft-gutmann-keycont-01.txtKey Management through Key Continuity (KCM)29/09/2008

    draft-miyata-v6ops-snatpt-02.txtsNAT-PT: Simplified Network Address Translation - Protocol Translation

    draft-ietf-smime-3851bis-07.txtSecure/Multipurpose Internet Mail Extensions (S/MIME) Version 3.2 Message Specification

    draft-turner-antispam-using-messageid-01.txtSpam reduction using messageid.27/09/2008

    draft-ietf-idnabis-protocol-05.txtInternationalized Domain Names in Applications (IDNA): Protocol

    draft-kumari-blackhole-urpf-01.txtRemote Triggered Black Hole filtering with uRPF26/09/2008

    draft-munakata-sip-privacy-guideline-04.txtGuidelines for Using the Privacy Mechanism for SIP25/09/2008

    draft-krishnan-ipv6-exthdr-04.txtAn uniform format for IPv6 extension headers24/09/2008

    draft-kucherawy-sender-auth-header-16.txtMessage Header Field for Indicating Message Authentication Status