Re: [DNSOP] draft-yao-dnsop-idntld-implementation-01.txt
Eric Brunner-Williams <ebw@abenaki.wabanaki.net> Fri, 06 November 2009 23:32 UTC
Return-Path: <ebw@abenaki.wabanaki.net>
X-Original-To: dnsop@core3.amsl.com
Delivered-To: dnsop@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id BBC013A6910 for <dnsop@core3.amsl.com>; Fri, 6 Nov 2009 15:32:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.185
X-Spam-Level:
X-Spam-Status: No, score=-0.185 tagged_above=-999 required=5 tests=[BAYES_40=-0.185]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id IlKsJvquGync for <dnsop@core3.amsl.com>; Fri, 6 Nov 2009 15:31:59 -0800 (PST)
Received: from abenaki.wabanaki.net (abenaki.wabanaki.net [65.99.1.130]) by core3.amsl.com (Postfix) with ESMTP id 5CC853A691B for <dnsop@ietf.org>; Fri, 6 Nov 2009 15:31:59 -0800 (PST)
Received: from limpet.local (cpe-67-241-43-7.twcny.res.rr.com [67.241.43.7]) by abenaki.wabanaki.net (8.14.3/8.14.3) with ESMTP id nA6NVA8P058458; Fri, 6 Nov 2009 18:31:11 -0500 (EST) (envelope-from ebw@abenaki.wabanaki.net)
Message-ID: <4AF4B1FF.9070909@abenaki.wabanaki.net>
Date: Fri, 06 Nov 2009 18:32:15 -0500
From: Eric Brunner-Williams <ebw@abenaki.wabanaki.net>
User-Agent: Thunderbird 2.0.0.23 (Macintosh/20090812)
MIME-Version: 1.0
To: Andrew Sullivan <ajs@shinkuro.com>
References: <20091105205921.GL17456@shinkuro.com>
In-Reply-To: <20091105205921.GL17456@shinkuro.com>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
Cc: dnsop@ietf.org
Subject: Re: [DNSOP] draft-yao-dnsop-idntld-implementation-01.txt
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsop>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 06 Nov 2009 23:32:00 -0000
I too have read the document. Let N = the number of entries in the IANA root associated with the territories listed in the ISO 3166-1, and {N} denote that set. One or more of Verisign, Afilias and NeuStar operate two or more ccTLD entries, each with an optional, not required, nominally distinct policy and set of registrants. The RW and CD registries share technical contact (and possibly related dysfunctional properties). Etc. There exists a substantial class of SLD registrations which are present in multiple entries within {N}, and under the theory of "subsidiarity principle" offered by the chair of the ccNSO, it is possible for two or more ccTLDs to consist entirely of registrations of this class, and to have the same operator. Therefore the DNAME or NS choice of mechanism is present whether or not any increase occurs to {N}. Granted, the likelihood of DNAME is much less likely than NS, but other than government or FOJ client acquisition, and IANA change request management, no technical or policy barrier exists to preference NS over DNAME as the choice of mechanism. Next, an increase in the number of entries O(N/5) without a corresponding increase in N, expands the instances of multi-entry operations. It has been asserted, though the final policy guidelines are not yet available, that each instance in this step-wise increase in {N}, which will be an entry of the form "xn--*", will be operated by the operator of the existing corresponding entry in the IANA root associated with the territories listed in the ISO 3166-1. As a policy matter, this assumption is problematic. Consider for instance the problems of the existing operators for .US or .CA in operating a "US-or-CA-in-Chinese" registry, or the existing operator for .CN in operating a "CN-in-Tibetan" registry, or the existing operator for .IL in operating a "IL-in-Yiddish" registry. It is possible that each of these example registry operators will have constraints which preclude users from creating persistent resource identifiers using these example non-Latin scripts used by non-trivial populations having a preferential association with the corresponding existing ISO 3166-1 entry. These are of course, just examples, and not intended to describe actual policy limitations or present or plan of record practice. The problem is elided temporarily by the assumption that each government or FOJ will select only one (or two) additional strings to add to {N}, and so minority languages, and therefor multiple distinct policy goals, will not be present. This increase is the ccTLD IDN "FastTrack". Next after, an increase in the number of entries O(M*N), again, without a corresponding increase in N, expands the instances of multi-entry operations. It is not yet asserted whether each instance in this subsequent step-wise increase in {N}, which will be an entry of the form "xn--*", will also be operated by the operator of the existing corresponding entry in the IANA root associated with the territories listed in the ISO 3166-1. This increase is the ccTLD IDN PDP. This will present this problem more fully, whether the additional entries are in scripts which are non-Latin only, a restriction present in the "FastTrack", or non-Latin, and decorated Latin, and potentially even non-decorated Latin. In general, DNAME as the choice of mechanism for multiple instances of entries in the IANA root associated with the territories listed in the ISO 3166-1 is unlikely to promote the use of minority languages as resource identifiers, as is NS, where the two or more delegations share a single or ordered hierarchy of policy goals. Finally, there is the matter of equivalence classes within character repertoires which exist in work product of the IDNAbis WG, now in LC. The SC/TC equivalence class is well known. Less well known, outside of the IDNAbis WG, is the Arabic and Persian YEH non-equivalance, and other examples, and other equivalence classes in other scripts. By abuse of notation these are all commonly referred to as "variants", and by a similar abuse of goals ordering, "anti-phishing" using "variants" is frequently presented as a controlling design goal, rather than enabling the use of scripts to form persistent resource idenifiers, even by linguistic minorities in the territories associated with ISO 3166-1. Independent of the limitations of DNAME, the NS choice of mechanism allows the possibility of distinct policies associated with two or more elements of {N} associated with a single ISO 3166-1 entry, possibly through physically distinct operators. This has been argued to be a weakness of the NS choice of mechanism. I hope I've conveyed my impression that there are foreseeable circumstances where a single policy over two or more "variants" is also a non-desirable outcome, independent of the choice of mechanism. I don't know if there will be an application by the United States for a Cherokee Syllabary equivalent to "US" or by Canada for a Carrrier/Cree/Dene/Innu/Inuktitut/Siksika Syllabic equivalent to "CA", but as we look to the ASCII-only ISO 3166-1 use in the IANA root tending toward something approximating a sparse subset of the product of that and ISO 639, consistency for "anti-phishing", overlooking the expectations of the users forming and using persistent idenifiers, to the point of selecting which "variants" have no meaning other than visual dissimularity (or simularity, depending on the particular choice of edge case in the IDNAbis work product), and restricting the choices of identifiers (or more generally, vocabularies in scripts users might select, which may not exist in the "official" standards associated with a territory to which an ISO 3166-1 entry has been allocated. Finally, there is the eventual non-step, monotonic increase of entries in the IANA root which are not associated with the territories listed in the ISO 3166-1. This number is presently quite small, but is conjectured to grow O(2xN) annually, or perhaps O(2xN) in year 1, and O(N) thereafter. Unlike the two prior anticipated increases in the number of entries, no bound is known, and at least one proposal for "single registrant" TLDs creates the possibility that the number of globally protected trademarks, O(10^^5) is a lower bound for this growth in the IANA root. Absent any restriction, it seems reasonable that substantial numbers of "single registrant" TLDs could be implemented using DNAME, with each having a SLD set similar to the set of addresses defined in RFC2142 {info, marketing, sales, support; abuse, noc, security; ...}, disambiguated at the application layer by the mass-registry operator. I've written this note because I'm not satisfied with the bivalued approach to the variant problem in the Yao draft, nor with the unitary semantic approach to variants offered, even by a single, unified registry operator, nor the implicit constraint of the operational problem as the number of entries in the IANA root associated with the territories listed in the ISO 3166-1 grows, and as the number of entries in the IANA root not associated with the territories listed in the ISO 3166-1 grows. I'm sorry I can't be in Hiroshima so that I can attempt to field spit balls for such an excess of Layer 9 persiflage, and my typical bad to worse writing. Like Andrew, I believe I know why the Yao draft had to be written, and unlike Andrew I think DNAME is the wrong answer, and the view that "any name must be _functionally the same_ as all the other variants of that name" concerns me as it appears to put one commercial interest above all non-commercial interests in IDN policy. Written while interrupted by children and so on. All errors mine, everything correct stolen from others, etc. Cheers, Eric
- Re: [DNSOP] draft-yao-dnsop-idntld-implementation… Eric Brunner-Williams
- Re: [DNSOP] draft-yao-dnsop-idntld-implementation… YAO Jiankang
- [DNSOP] draft-yao-dnsop-idntld-implementation-01.… Andrew Sullivan
- Re: [DNSOP] draft-yao-dnsop-idntld-implementation… YAO Jiankang
- Re: [DNSOP] draft-yao-dnsop-idntld-implementation… Andrew Sullivan
- Re: [DNSOP] draft-yao-dnsop-idntld-implementation… Kim Davies
- Re: [DNSOP] draft-yao-dnsop-idntld-implementation… Andrew Sullivan
- Re: [DNSOP] draft-yao-dnsop-idntld-implementation… Alex Bligh
- Re: [DNSOP] draft-yao-dnsop-idntld-implementation… Alireza Saleh
- Re: [DNSOP] draft-yao-dnsop-idntld-implementation… Andrew Sullivan
- Re: [DNSOP] draft-yao-dnsop-idntld-implementation… Alex Bligh
- Re: [DNSOP] draft-yao-dnsop-idntld-implementation… James Seng
- Re: [DNSOP] draft-yao-dnsop-idntld-implementation… Paul Hoffman
- Re: [DNSOP] draft-yao-dnsop-idntld-implementation… Masataka Ohta
- Re: [DNSOP] draft-yao-dnsop-idntld-implementation… Todd Glassey
- Re: [DNSOP] draft-yao-dnsop-idntld-implementation… Edward Lewis
- Re: [DNSOP] draft-yao-dnsop-idntld-implementation… YAO Jiankang
- Re: [DNSOP] draft-yao-dnsop-idntld-implementation… YAO Jiankang
- Re: [DNSOP] draft-yao-dnsop-idntld-implementation… YAO Jiankang
- Re: [DNSOP] draft-yao-dnsop-idntld-implementation… YAO Jiankang
- Re: [DNSOP] draft-yao-dnsop-idntld-implementation… Andrew Sullivan