From: Jon R Perper <qualityc@erols.com>
To: NTIADC40.NTIAHQ40(dns)
Date: 2/22/98 3:59pm
Subject: (no subject)

Could you please tell me where and how you register domaine names?
Thank You
Jon Perper
qualityc@erols.com

###

From: Robert Watson <robert@cyrus.watson.org>
To: NTIADC40.NTIAHQ40(dns)
Date: 2/22/98 11:37pm
Subject: [DOCID:fr20fe98-24]

Dear Sir or Madam,

This email is with regards to your paper entitled,

"Improvement of Technical Management of Internet Names and
Addresses"

regarding the management of root-level name space on the Internet. I am
concerned by the lack of attention to DNSsec, or DNS Security. As you are
aware from recent IETF meeting, DNSsec allows the securing of the Domain
Name System through strong cryptographic signatures; it also allows DNS to
act as a repository for KEY RRs, or arbitrary encryption and data
protection keys. It has been proposed that IPSec, or Internet Protocol
Security, can use DNSsec as a keying mechanism -- i.e., it retrieves a KEY
RR from DNSsec to use in communication with the host or identity
associated with the name.

For example, if I wish an TLS/SSL-protected session to a web server, I
would perform a lookup on the web server's name (www.watson.org) to locate
its IP address, as well as a KEY record provided for web transactions.
This key would be used in place of a standard certificate.

As such, DNS would provide an easily accessible and standard key
distribution system; DNSsec would secure all levels of this sytem with
digital signatures. However, as DNS is hierarchal, the "root key" would
be of the up-most importance. As Public/Private key cryptography will be
used, all hosts will receive a copy of the public DNS Root Key. This will
allow them to verify any DNS information received, including the validity
of public keys it receives from DNS (such as the key for www.watson.org).
The private portion of the root key would be held by whoever is
responsible for the updating of the root zone.

With the proliferation of electronic commerce, the value of the Root Key
is enourmous. All communications might be secured using keys initially
retrieved from DNSsec. The ability to sign data using the root key would
allow the key-holder to, at the same time, either protect or forge the
identity of many other identies on the Internet. This key would need to
be extremely well protected. There are also key policy issues; use of the
key is important. Similarly, the second-level domain keys are also of
great importance -- as the holder of the key, I can make claims about any
information in my second-level domain. Imagine the power I wield if I
hold the key to .gov or .com.

Jeff Schiller, Security Area Director of the IETF, spoke on a similar
topic at the December IETF. Anyone in possesion of the key is at
immediate risk, given that using the key, literally millions of dollars
could be stolen in a matter of seconds.

The failure of your document to address these issues is serious. DNSsec
provides us with a marvelous opportunity -- the first reasonable key
distribution system, and the ability to protect DNS from a number of
attacks quite common (including DNS spoofing -- such as that resulting in
the hijacking of InterNIC's web page last summer). With a keying
mechanism in place, there is now an easy way to protect communications to
any entity represented in DNSsec, both for data integrity and privacy --
it solves the long-standing key distribution problem for communications.

As an summer employee of Trusted Information Systems, the company writing
the reference implementation of DNSsec, I would like to offer any help I
can render in assisting you in solving these problems. Please feel free
to contact me if you have any questions; a number of RFC documents are
available describing DNSsec. A number of Internet Drafts (proposed RFCs)
are available that update the current RFCs based on knowledge gained in
our implementation. You may wish to contact Donald Eastlake, employee of
CyberCash, Inc, who is the primary author of many of these documents.

Thank you for your time and attention,

Robert N Watson

Carnegie Mellon University http://www.cmu.edu/
SafePort Network Services http://www.safeport.com/
robert@fledge.watson.org http://www.watson.org/~robert/

###

From: <twinter1@ix.netcom.com>
To: NTIADC40.NTIAHQ40(dns)
Date: 2/22/98 11:39pm
Subject: The end of the internet

Having just read the Improvement of Technical Management of Internet Names and Addresses I was surprised at the lack of consideration given to Internet users. It is perfectly understandable if the government would like to abandon the Internet DNS management, but then shouldn't they also give up any claim to regulate it?

The reasons given for the change were so unclear as they beg for further discussion.

Stated: "There is widespread dissatisfaction about the absence of competition in domain name registration."

Question: Who is dissatisfied with the absence of competition in domain name registration? The Internet was and should be for people not companies.

Stated: "Mechanisms for resolving conflict between trademark holders and domain name holders are expensive and cumbersome."

Question: Any time we hire a lawyer isn't it expensive and cumbersome?

Stated: "Without changes, a proliferation of lawsuits could lead to chaos as tribunals around the world apply the antitrust law and intellectual property law of their jurisdictions to the Internet."

Question: And this is going to change that? How can privatizing the DNS forestall lawsuitÆs. How can it dictate to non-US governments how they apply antitrust and intellectual property law in their jurisdictions?

Stated: "Many commercial interests, staking their future on the successful growth of the Internet, are calling for a more formal and robust management structure."

Question: Is it "We the People" or "We the commercial interests"? What happens if a splinter organization starts issuing its own domain names?

Stated: "An increasing percentage of Internet users reside outside of the US, and those stakeholders want a larger voice in Internet coordination."

Question: Bravo, first mention of people (stakeholders). Isn't that what the UN is all about? If we truly want to make it worldwide, why not the UN?

Stated: "As Internet names increasingly have commercial value, the decision to add new top-level domains cannot continue to be made on an ad hoc basis by entities or individuals that are not formally accountable to the Internet community."

Question: Who ever paid for a domain name other than .COM? This should be an open system, if someone wants to create a new top-level domain that no one uses, who cares?

Stated: "As the Internet becomes commercial, it becomes inappropriate for US research agencies (NSF and DARPA) to participate in and fund these functions."

Question: If research is not for the general good or commercial application what is it good for?

For every reason to change the DNS, there are ten reasons not to. The Internet should be allowed to evolve naturally. When the .COM names run out it will only be natural that a different top-level domain will become widely used. For the user, who cares if its .COM or .UK when they search for different topics.

At best this new corporation will be so inept as to pose no serious damage to the Internet. Otherwise without much effort they could control everything on the Internet. That is a sacaaary thought. For the record I would like to nominate myself for the position of CEO of this new corporation.

###

From: Tracy Kurz <partners@worldgaming.net>
To: NTIADC40.NTIAHQ40(dns)
Date: 2/22/98 8:19pm
Subject: Online Casino Partners wanted...

Over the next three years, the Internet gaming market is expected to
generate revenues of anywhere from US$10 billion to US$20 billion, says PC
Computing. A leader in recognizing new and emerging markets, World Gaming
is pleased to become a significant resource for enabling webmasters to
participate in this exciting opportunity.

World Gaming (www.worldgaming.net) is an innovative on-line gaming
operation offering casino-style games, a Sportsbook with real-time betting
lines, an international lottery ticket brokerage, and live video/audio
Internet broadcasting of horse-racing from around the world. World Gaming
is a wholly owned subsidiary of Starnet Communications International Inc.
(www.starnetcommunications.com), a publicly traded company and developer
and broadcaster of revenue-producing content for the Internet since 1995.

Licensed in Antigua to accept, process, and manage real money wagers via
the Internet, World Gaming has now introduced the Partners Program, aimed
at web site operators wanting to generate more revenue and offer customers
greater entertainment value from their site. You can become a World Gaming
Partner, earning commissions, at no expense and no risk to you or your web
site.

To collect generous revenues, all you have to do is strategically place one
of the attractive World Gaming banners on your web site. If you prefer, you
can devote an entire page to World Gaming - it's up to you. As customers
click through, you will share in the "house" profits every time one of your
customers places a wager. The more members you refer, the more commissions
you receive!

To sign up, please go to the World Gaming Partners Program web site at:
http://www.worldgaming.net/partners

Value is guaranteed. World Gaming is a state-of-the-art international
gaming web site and CD-ROM software package. World Gaming offers:
o Outstanding casino graphics and 3-D animations in a variety of casino
environments, including a unique "Adult-theme" casino
o A wide variety of internationally appealing casino-style games
o Complete Sportsbook with direct betting lines from Las Vegas and Europe
o Lottery brokerage featuring lotteries from all over the world
o Pari-mutuel wagering on live horse races from international race tracks
o Top-notch, reliable technical support 24 hours a day, seven days a week
o Guaranteed security of all Internet financial transactions
o Translation into 8 international languages

Because we do not accept wagers from the U.S. or Canada, World Gaming does
not believe that its business actions violate any existing regulations in
those areas. World Gaming will focus on the market outside of North America
until such time as U.S. and Canadian laws regarding Internet gaming are
clarified. It is estimated that as much as 80% of the world gambling market
is from regions outside of North America, specifically in Asia and Europe.

Details:
o You will earn 25% of the revenues earned from the customers you turn onto
World Gaming.
o Each Partner is given a unique identifying code that enables World Gaming
to ensure you receive your commissions every time one of your customers
logs in to play.
o There is absolutely no investment on your behalf.
o There is absolutely no risk on your behalf.
o You accept no liability whatsoever for the legal ramifications of
Internet gambling.

Join the World Gaming Partners Program today!

###