[therightkey] Transitioning the web to Namecoin/DNSNMC by addressing name-squatters
Tao Effect <contact@taoeffect.com> Sun, 22 December 2013 02:05 UTC
Return-Path: <contact@taoeffect.com>
X-Original-To: therightkey@ietfa.amsl.com
Delivered-To: therightkey@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E25CA1AE13B for <therightkey@ietfa.amsl.com>; Sat, 21 Dec 2013 18:05:02 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.334
X-Spam-Level:
X-Spam-Status: No, score=-1.334 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_SOFTFAIL=0.665] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jW43nKNpHz0M for <therightkey@ietfa.amsl.com>; Sat, 21 Dec 2013 18:05:01 -0800 (PST)
Received: from homiemail-a8.g.dreamhost.com (caiajhbdcaid.dreamhost.com [208.97.132.83]) by ietfa.amsl.com (Postfix) with ESMTP id 2DAA91AE129 for <therightkey@ietf.org>; Sat, 21 Dec 2013 18:05:01 -0800 (PST)
Received: from homiemail-a8.g.dreamhost.com (localhost [127.0.0.1]) by homiemail-a8.g.dreamhost.com (Postfix) with ESMTP id 70B47D22072 for <therightkey@ietf.org>; Sat, 21 Dec 2013 18:04:58 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=taoeffect.com; h=from :content-type:subject:message-id:date:to:mime-version; s= taoeffect.com; bh=dDP6xQ6ccMDVt+tIi4pZG+lOdpg=; b=ggJ+iJYz8TvJDm gQJ/B7KOR1ZFvXW0KliwwpEBYHCn9zv+2vmOZ4UtGUqmOcy+tBV8ncUb3DWtuKI+ nV/4NBWx92YkqAgdx9MskUp0K8TTZ1NGEnAYTrw+FyNkKoKttUfxXdteydJHYwEm 8ot6ZDsUkdfjI7CHVtmNr/aQYgIgo=
Received: from [192.168.2.3] (ip98-180-48-204.ga.at.cox.net [98.180.48.204]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: contact@taoeffect.com) by homiemail-a8.g.dreamhost.com (Postfix) with ESMTPSA id DE80CD22070 for <therightkey@ietf.org>; Sat, 21 Dec 2013 18:04:57 -0800 (PST)
From: Tao Effect <contact@taoeffect.com>
Content-Type: multipart/signed; boundary="Apple-Mail=_E71B3E47-A159-4E75-A7C9-6DCE516F39B8"; protocol="application/pgp-signature"; micalg="pgp-sha512"
Message-Id: <4E36BCFE-59CC-4709-ACA2-B0800AA4140A@taoeffect.com>
Date: Sat, 21 Dec 2013 21:04:52 -0500
To: "therightkey@ietf.org" <therightkey@ietf.org>
Mime-Version: 1.0 (Mac OS X Mail 7.1 \(1827\))
X-Mailer: Apple Mail (2.1827)
Subject: [therightkey] Transitioning the web to Namecoin/DNSNMC by addressing name-squatters
X-BeenThere: therightkey@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: <therightkey.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/therightkey>, <mailto:therightkey-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/therightkey/>
List-Post: <mailto:therightkey@ietf.org>
List-Help: <mailto:therightkey-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/therightkey>, <mailto:therightkey-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 22 Dec 2013 02:05:03 -0000
From the proposal [1]: The only criticism of relevance that I have received (so far) from those reviewing DNSNMC is that people do not like domain squatters and therefore do not want to switch to a system where all the existing trademarked and copyrighted names have already been registered: https://www.reddit.com/r/netsec/comments/1t20wi/therightkey_dnsnmc_deprecates_certificate/ce45865 http://lists.randombit.net/pipermail/cryptography/2013-December/005959.html http://lists.randombit.net/pipermail/cryptography/2013-December/005960.html I think this is one of the main things that is holding Namecoin back from widespread adoption, and therefore we must address this issue. Herein I propose a very simple method to address this problem: namecoind must be modified to give existing TLDs special treatment in a way that paves for a smooth transition from today's DNS, to a Namecoin-based DNS like DNSNMC. New namespaces will be created for each of today's TLDs, and only the owners of those domains (in the deprecated, old DNS system) can register them. For example, only the owners of apple.com can register com/apple, etc. Proof of ownership is done by special NMC DNS records that contain the owner's cryptographic signature/fingerprint. When Namecoin clients receive a notification that someone wants to register a domain in the com namespace, they check the JSON request to verify that it was signed by the same signature that appears in the old DNS records. If they match, the registration request is accepted and added to their local blockchain. If it does not match, the request is discarded. Similarly, the namecoin client itself will perform this check locally before sending out the request to other peers (to provide instant feedback to users attempting to register something that doesn't belong to them). Thoughts? [1]: http://dot-bit.org/forum/viewtopic.php?f=5&t=1439 -- Please do not email me anything that you are not comfortable also sharing with the NSA.