Peter Sunde Wants To Create Alternative To ICANN

An anonymous reader writes "According to Peter Sunde's Twitter feed, he has been suspicious of ICANN for a long time. The non-profit corporation is tasked with managing both the IPv4 and IPv6 address spaces as well as handling the management of top-level domain name space including the operation of root nameservers. Sunde has lost a domain in the past because of the way ICANN acted. It was taken without any consultation on their part, instead the organization relied on information from recording industry group IFPI to change the domain ownership. But it seems for some reason his frustration has come to a head recently, and he has put a call out for help to create a competing root server."

You can't compete with root.

[LostCluster]

The ROOT domain system is just that, it's trusted because well, if we didn't trust somebody at #1 this whole thing wouldn't work. You can't have a competing .com, .net, .org registry... sure, you could declare your own TLD and be root of that but, well, we don't trust you as much as we trust ICANN because, well, they've been root for a while now and haven't blown it that badly.

Re:You can't compete with root.

[Glendale2x]

If redirecting NXDOMAIN to partnered search results pages

VeriSign != ICANN

Re:You can't compete with root.

[mysidia]

If redirecting NXDOMAIN to partnered search results pages and killing a bunch of anti-spam scripts

You mean an anti-spam technique (of fairly limited effectiveness) of reverse path validation, through making extra domain lookups for the forward DNS hostname of the Return Envelope, not called for by the SMTP RFCs, which also place extra (unwanted) load on DNS servers?

Please don't confuse ICANN with Network Solutions / Verisign (Sitefinder). By the way, the SiteFinder Fiasco you refer to ended when ICANN was going to file a lawsuit Network Solutions over "sitefinder" and reached a settlement. Settlement: ICANN agreed to discontinue the sitefinder service / stop wildcard resolving immediately, and will seek permission under ICANN rules before introducing any new service such as that.
But, in Exchange, as part of this settlement, NSol's contract to be operator for the .COM / .NET TLDs was changed so ICANN guarantees to renew the contract perpetually at the end of every contract term (Unless there is a proven breach), AND, also, the settlement gave Network Solutions a right to increase prices 7% every 4 out of the 6 years of every contract term after 2007, with no justification.

NSol can increase prices in 6 out of 6 years, if a cost justification is given in 2 of those years.

Note that back in 2007, .NET and .COM prices were capped by the registry at $6. Today they are approximately $8. Domain prices per-domain are getting more expensive, and the stated justification is "higher volume of DNS queries", what do you think about that?

So the whole 'sitefinder thing' was a win win win for Network solutions, because ICANN essentially got themselves a free perpetual contract, which ICANN justifies on the basis of "A perpetual contract provides greater stability for the Internet"; neverminding the fact the contract becomes less favorable for the community every year NSol chooses to raise prices.

Still... things are "stable", and doesn't matter that much that NSol got rewarded for their attempted sitefinder moneygrab does it?

endorsing ridiculously stupid shit like .eco, .xxx, .jobs and .tel happen

Apparently it wasn't that 'stupid'... I mean, someone had to pay $50,000 just to apply, and put significant capital down to have a registry that would meet ICANN's minimal technical standards for a stable registry. The letters in the TLD are just one factor; the decision to 'add a TLD' or not are almost all about the technical aspects of a proposed TLD and how many sites and domain registrars are interested in the TLD.

complying with a Department of Homeland Security request to remove a bunch of domains that contained material that infringes copyright should be the nail in the coffin for the useless stuffed shirts at ICANN.

ICANN just defines the rules and contracts the registry services, I believe you are again blaming ICANN for an individual registrar and US government thing

ICANN is really a perfect example of where a bunch of wise-beard Unix hacker types could do a better job than the corporate whores currently doing it could. Or better yet, a proper distributed alternative to DNS.

Now there's something we can agree on. Unix hacker types could do better, if only they could get the financing, and backing from the corporate types.

It would probably be good enough though to have an association serving a different group of corporate whores.... for example, ISPs instead of the WIPO, RIAA, registrar, pro-squatter , and pro-advertising/pro-marketing folks.

Re:You can't compete with root.

[mysidia]

And why didn't ICANN start the process of "firing" VeriSign immediately after the incident?

That was what was going to happen. Instead, something very strange happened. The final outcome was that ICANN SETTLED with VeriSign. But this was kind of like the Google books settlement, in that the settlement was EXTREMELY FAVORABLE to VeriSign.

Prior to this settlement, the .COM / .NET registry was a FOR BID contract that would come up for bidding and renewal every 6 years. The registry price was capped at $6 per domain per year under the contract at the time.

In the settlement ICANN agreed to guarantee to renew their contract at the end of the term, unless it is proven that VeriSign substantially breaches the new contract, they have the contract perpetually. [paraphrasing], "For the sake of Internet stability" (as ICANN people put it)

The settlement from the SECSAC process also Gave NSOL the right to raise prices. The settlement gave them the right to raise prices 7% 4 out of 6 years of every contract term after 2007, with no cost justification needed.

The VeriSign/Network Solutions Internic can raise prices all 6 years of the contract term, if they provide a cost justification for 2 of those years. In 2010 they raised prices for .COM and .NET domains, and publicly someone indicated a cost justification of "Increased number of DNS lookups being performed" (against .COM and .NET registry servers)

I think 5 years from now, .COM and .NET TLDs will be prices by the registry at approximately $12 instead of approximately $8. We can look forward to paying $100 per year to the cheapest registries to renew .COMs, within this decade or the next, just like it used to be before competitive registrars.

Oh right... "competitive registrars" doesn't matter much, when there is a for-profit global registry everyone has to pay who has a guaranteed right to raise prices, and a guaranteed right to not get fired, because a legal settlement means ICANN legally cannot bring the contract up for bid, unless NSol screws up.

Re:You can't compete with root.

[GNUALMAFUERTE]

No, that would give each individual government more control over its citizens. Giving them that power would quickly turn the internet everywhere into what it is right now in China.

Governments can't be individually trusted, and localized versions of the internet are a bad idea, against the very definition of the internet.

That's why in the scheme I propose, all countries together are only 30% of the votes. I am a wise-bearded Unix geek, and I still don't agree with turning control over to wise-bearded Unix geeks. We can be real assholes too :). No group of people can be fully trusted to make choices for all of us, that's why we need different groups with different interests to keep each other in line.

The chances that several governments, or several companies, or several software developers cooperate with each other to do something evil are very high. That's why we see things like the ACTA being passed by politicians from different countries, while 90% of the public disagrees.

Now, the chances of seeing the Free Software Fundation, CISCO, the US, Switzerland, Venezuela and the ISC cooperating to pass some terrible legislation is virtually nonexistent.

Do it! Do it now!

[wierd_w]

An alternative name registry service would do wonders to cripple the whole "internet censorship" bandwagon that has been going on recently. Blacklists? Rendered at the very least 2X as difficult to implement on a national scale, simply because the clients you are attempting to prevent from accessing content can reach that content by using the alternate name resolution service.

It would make measures like the Australian blacklist falderall all that much more difficult to actually pull off, and would render efforts like COICA similarly difficult.

Do it. Do it now.

Re:Do it! Do it now!

[gclef]

Messy. Question: which root do you ask for google.com? All of them? What if they reply with different addresses...which one's right? The fact that there aren't good answers to these questions is a big part of why we've tried to avoid splitting the DNS roots.

Re:Do it! Do it now!

[gclef]

Skip the government part (though, honestly, I see no reason why they'll operate the way you think they will)...what about businesses? For example: Apple.com. There are several companies that can claim honest ownership of the "apple" name as a business title (apple computers, apple records, etc). If each of them buys the apple.com name in a different root, which one's "right"? All of them have reason to argue they are...do you expect users to have to surf to all of them one by one to find the "right" apple.com? Seriously? So now the users have to know about all possible DNS roots? yuk.

You seem to be assuming that the DNS with multiple roots will have very few name collisions except for government-caused ones...I don't think that's a safe assumption at all.

Static IPv6 addresses for everyone.

[steeleyeball]

No more of this Pansy DNS crap. Know your IP address like you know your phone number. Cut these clowns off at the legs. Free the net to the people who know how to use it and won't download viruses to their own computers thinking it's antivirus software... Take charge by taking responsibility from those who don't care and don't know!

Why?

[0123456]

Can't he just ask the Chinese to redirect the domain to his server?

We'll call it UCANNT...

[moxley]

We'll call it UCANNT *rimshot*

Universal Co-op for Assigned Names, Numbers and Timeservers

Seriously though, I do think a backup system would be a good idea....It's needed in order to stop the growing attempts (that I think we're going to see a lot more of) to control, censor, filter, and police the internet....Due to the practicalities involved in how the system works, I am not certain how plausible it would be to have two competing systems while everything is working smoothly, and there are other points where the system could be messed with, but having a framework in place might not be a bad idea with the political realities we live in...

Part of me would like to do this.

[hey!]

It's the same part of me that, were I holding a cigarette lighter and a stick of dynamite, would be tempted to light the stick and throw it like they do in the movies, just to see what an exploding stick of dynamite really looks like. There's been so much greed and stupidity around the DNS, and it would be so *feasible* for someone to set up an independent alternative, I'd sort of like to see what it would look like when the existing system is blown to kingdom come.

However -- were I ever to be holding an actual stick of dynamite in my hands, the part of me that tends to say things like "this is not the optimum time to make an impulsive decision" would become quite strident. It's not that I would never, under any circumstance light a stick of dynamite and throw it. It's just that it being a really cool idea wouldn't be enough to make me try it until I'd thought through the consequences very, very carefully.

And as it stands, the DNS system does me more good than it has ever harmed me, and likewise for the vast majority of people who use it. It might be that giving *serious consideration* to a competitive system would do a lot of good, but a competition between two systems in which both survived would almost certainly be a bad thing.

There already is one

[gman003]

OpenNIC. While it mirrors the ICANN addresses, it also adds several new TLDs (.oss, .geek, .parody, even .gopher) which can be easily used. This is but one of the many alternative DNS roots, but it's the most popular, and it's democratically-run.

Re:Decentralized naming is hard

[KonoWatakushi]

Why continue with the concept of name ownership at all? It should be technically impossible to own a name, in the same way that it should be impossible to monopolize ideas.

Let people and entities use whatever name they want; the remaining problem is to verify that you are talking to the right host, but you should need to do that anyway. Invariably, any sort of central authority can and will be subverted. What is necessary is some other means of conveying trust, wether that is a web of trust, or some other out of band option.

This is what I believe we should strive for. The distributed naming system and trust system are orthogonal problems, but need to integrate in a convenient way. So, it is still a hard problem, just not in the same way.

Re:Sour grapes?

[Skal+Tura]

How about this? The Pirate Bay is too public to pull of a stunt like this, but some less known domains (like the ones seized a few moments ago) spurr less activism against it, so they can slowly roll it in and make it a norm. (like the antiterrorism bullshit going around)

Re:We have no other choice

[juliandemarchi]

This is already in the works at; http://dot-p2p.org/index.php?title=Main_Page .p2p will soon be incorporated into OpenNIC.