Re: [dnsext] draft-diao-aip-dns
Ralph Droms <rdroms@cisco.com> Fri, 22 June 2012 20:54 UTC
Return-Path: <dnsext-bounces@ietf.org>
X-Original-To: namedroppers-archive-gleetwall6@lists.ietf.org
Delivered-To: ietfarch-namedroppers-archive-gleetwall6@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 682C821F8533; Fri, 22 Jun 2012 13:54:47 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1340398487; bh=GN/AqACHwf+kbWzb3tReuykc+rDeckhgo+eQfD8ssUE=; h=Mime-Version:From:In-Reply-To:Date:Message-Id:References:To: Subject:List-Id:List-Unsubscribe:List-Archive:List-Post:List-Help: List-Subscribe:Content-Type:Content-Transfer-Encoding:Sender; b=pmgE0R1Uzfr0/dgbvi+WgUCYlQq2wivNDF6U4TgZ6sFRuVWiBuwoAdx9xjnrZQeC/ j9jhQ8zj8hGjLBr3Qgao8qrytXmrGrCRjgg7MIslxDR9M3odGM9WbaabWh/PvrZqKs AIWb5KxWdLcU8bpekG2EfAS3TCFmqvUzfcmJUio8=
X-Original-To: dnsext@ietfa.amsl.com
Delivered-To: dnsext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D7FFD21F8533 for <dnsext@ietfa.amsl.com>; Fri, 22 Jun 2012 13:54:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -10.412
X-Spam-Level:
X-Spam-Status: No, score=-10.412 tagged_above=-999 required=5 tests=[AWL=0.188, BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5esKW5+NmJI4 for <dnsext@ietfa.amsl.com>; Fri, 22 Jun 2012 13:54:45 -0700 (PDT)
Received: from rcdn-iport-2.cisco.com (rcdn-iport-2.cisco.com [173.37.86.73]) by ietfa.amsl.com (Postfix) with ESMTP id 1A1E621F852D for <dnsext@ietf.org>; Fri, 22 Jun 2012 13:54:45 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=rdroms@cisco.com; l=4153; q=dns/txt; s=iport; t=1340398485; x=1341608085; h=mime-version:subject:from:in-reply-to:date: content-transfer-encoding:message-id:references:to; bh=12nauOtv00F5jvvf8MqDI78MPhi0dBj+hfoFzDbRGvY=; b=VdULkUwSQYN1pS93WTxMmdNPs44s5kmzs9dmEx0IXd4h+f8nWDyb1cGw lLlVJw9Lw0cJZckWgj9R/d0+lqZ2IPQlANuB/FK/jMCx0foWWgOgd+Je0 eKS606oRm7oCZIKmuuMn3d63IguvmOeJGwlTDV/o4DcqwUx/o52itc4ax M=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: Av0EAFDb5E+tJXG//2dsb2JhbABFtWeBB4IZAQEEEgFYHgsSNEkOBhMaCIVvgXoLmiiPFpBaBIsuG4UHYAOVLI4bgWaCe4FD
X-IronPort-AV: E=Sophos;i="4.77,460,1336348800"; d="scan'208";a="95079992"
Received: from rcdn-core2-4.cisco.com ([173.37.113.191]) by rcdn-iport-2.cisco.com with ESMTP; 22 Jun 2012 20:54:44 +0000
Received: from rtp-rdroms-8916.cisco.com (rtp-rdroms-8916.cisco.com [10.116.164.55]) by rcdn-core2-4.cisco.com (8.14.5/8.14.5) with ESMTP id q5MKsg7k030538 for <dnsext@ietf.org>; Fri, 22 Jun 2012 20:54:44 GMT
Mime-Version: 1.0 (Apple Message framework v1278)
From: Ralph Droms <rdroms@cisco.com>
In-Reply-To: <4FE22F87.90004@dougbarton.us>
Date: Fri, 22 Jun 2012 16:54:42 -0400
Message-Id: <068460E5-B7EE-4A27-AFAC-3266DD2574A4@cisco.com>
References: <C239EA2E-41E9-4719-A3C7-AE0B8A9A1FE9@cisco.com> <6FF8F3B1-D2B7-4C6B-B90D-245892D400EC@icsi.berkeley.edu> <4FE22F87.90004@dougbarton.us>
To: dnsext List <dnsext@ietf.org>
X-Mailer: Apple Mail (2.1278)
Subject: Re: [dnsext] draft-diao-aip-dns
X-BeenThere: dnsext@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: DNS Extensions working group discussion list <dnsext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsext>, <mailto:dnsext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsext>
List-Post: <mailto:dnsext@ietf.org>
List-Help: <mailto:dnsext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsext>, <mailto:dnsext-request@ietf.org?subject=subscribe>
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Sender: dnsext-bounces@ietf.org
Errors-To: dnsext-bounces@ietf.org
FYI - reposted to the IESG by Stephen Farrell: Chinese Operators Hope to Standardize a Segmented Internet Posted on Monday Jun 18, 2012 10:20 AM by Mikael Ricknäs A technology draft written by employees at China Mobile and China Telecom and submitted to the Internet Engineering Task Force describes how the Internet could be split into several parts using the Domain Name System and in the process give countries more control over their own segment of the network. The DNS is one of the key building blocks of the Internet. Its most important task is translating IP (Internet Protocol) addresses to host names, which is done by a distributed system based on one unique root that is used all over the world. The technology is developed by the IETF, on whose website the Chinese "DNS Extension for Autonomous Internet" draft is available for viewing.<https://tools.ietf.org/html/draft-diao-aip-dns-00> Today, China blocks Internet access to some foreign websites. The goal outlined by the new document is to make it easier and cheaper for countries to create independent root DNS servers and realize Internet autonomy. Today, that is both costly and technically difficult, according to the draft. "When you read the document it very much comes across as a way to severely segment the Internet," said Patrik Wallström, CEO at OpenDNSSEC AB, a not-for-profit company with the mission to facilitate the deployment of DNSSEC, which is used to secure DNS. If the draft is adopted it would give, for example, China full control of content on the Internet for users in the country as well as how it can be accessed and by whom, Wallström said. The reason for adopting the draft into a standard architecture would not be just for control, according to the authors. The current central architecture of DNS can't keep up with the fast development of Internet, they say. That argument doesn't ring true, according to Jakob Schlyter, a DNS expert at Swedish consultancy Kirei. "When you say something like that you have to back it up with some facts, which I don't think they have ... the DNS root has an extreme overcapacity," said Schlyter. However, the chances of the draft being adopted is very remote, according to both Wallström and Schlyter. Anyone can individually submit an Internet draft to the IETF. But since the intended goal with the Chinese document is standardization, it first has to be picked up by one of the IETF's working groups, and that isn't going to happen, Wallström said. "It is a controversial subject, and the IETF works on standards that, in principle, are for the global Internet," said Wallström. The idea of moving away from a central DNS root also goes against the IAB's (Internet Architecture Board's) technical comment from 2000, detailing the need for a unique DNS root to ensure the future of the Internet, according to Wallström. The comment came after several alternative roots came into existence during the nineties, he said. "The Chinese draft would be a return to that," said Wallström. Schlyter is equally convinced that nothing will become of the draft. "There is an extremely small risk of it going anywhere. I say risk because I am proponent of a common namespace, and all that comes with that," said Schlyter. Because of the minuscule chance of the draft ever becoming a standard, the underlying reason for publishing it may be something altogether different, according to Wallström. "This is just me speculating, but with the arrival new generic top-level domains (gTLDs) a document like this one can be published to put more pressure on ICANN with the aim of maybe even splitting the organization into different parts where China has more power," Wallström said. Today, ICANN (Internet Corporation for Assigned Names and Numbers), which is also a big proponent of a unique root, coordinates the DNS as well as a whole host of other Internet-related components. These were originally performed under a U.S. government contract. Send news tips and comments to mikael_ricknas@idg.com _______________________________________________ dnsext mailing list dnsext@ietf.org https://www.ietf.org/mailman/listinfo/dnsext
- [dnsext] draft-diao-aip-dns Tony Finch
- Re: [dnsext] draft-diao-aip-dns Ondřej Surý
- Re: [dnsext] draft-diao-aip-dns Stephane Bortzmeyer
- Re: [dnsext] draft-diao-aip-dns Eric Brunner-Williams
- Re: [dnsext] draft-diao-aip-dns Ondřej Surý
- [dnsext] draft-diao-aip-dns Fred Baker
- Re: [dnsext] draft-diao-aip-dns Donald Eastlake
- Re: [dnsext] draft-diao-aip-dns Ralph Droms
- Re: [dnsext] draft-diao-aip-dns Mark Andrews
- Re: [dnsext] draft-diao-aip-dns Warren Kumari
- Re: [dnsext] draft-diao-aip-dns Andrew Sullivan
- Re: [dnsext] draft-diao-aip-dns Stephane Bortzmeyer
- Re: [dnsext] draft-diao-aip-dns Ralph Droms
- Re: [dnsext] draft-diao-aip-dns Mark Andrews
- Re: [dnsext] draft-diao-aip-dns SM
- Re: [dnsext] draft-diao-aip-dns Nicholas Weaver
- Re: [dnsext] draft-diao-aip-dns Doug Barton
- Re: [dnsext] draft-diao-aip-dns Ralph Droms
- Re: [dnsext] draft-diao-aip-dns Eric Brunner-Williams
- Re: [dnsext] draft-diao-aip-dns Jiankang YAO
- Re: [dnsext] draft-diao-aip-dns Jiankang YAO
- Re: [dnsext] draft-diao-aip-dns YP Diao
- Re: [dnsext] draft-diao-aip-dns Paul Hoffman
- Re: [dnsext] draft-diao-aip-dns Phil Regnauld
- Re: [dnsext] draft-diao-aip-dns Paul Hoffman
- Re: [dnsext] draft-diao-aip-dns Phillip Hallam-Baker
- Re: [dnsext] draft-diao-aip-dns Dmitry Burkov
- Re: [dnsext] draft-diao-aip-dns Jim Reid
- Re: [dnsext] draft-diao-aip-dns Ralph Droms
- Re: [dnsext] draft-diao-aip-dns Nicholas Weaver
- Re: [dnsext] draft-diao-aip-dns Jim Reid
- Re: [dnsext] draft-diao-aip-dns YP Diao
- [dnsext] "knowing A root key" was Re: draft-diao-… Edward Lewis