CircleID

Comments

Refusing REFUSED

• Comment posted Jan 18, 2012 11:17 pm PST — by Phillip Hallam-Baker
  I really don't see passage of PIPA/SOPA this session as being very likely. With such enormous corporate interests stacked up in its favor the most likely outcome is the rent seekers will find some way to avoid passing the bill…

Defense in Depth for DNSSEC Applications

• Comment posted Aug 19, 2011 6:18 pm PDT — by Phillip Hallam-Baker
  I absolutely agree that DNSSEC needs to concentrate on finding a deployment strategy. I have been trying to persuade people that 'hope is not a strategy' for some time. Building infrastructure requires a killer application that is currently unserved. In…

How to Abolish the DNS Hierarchy... But It's a Bad Idea

• Comment posted Jul 14, 2011 9:48 pm PDT — by Phillip Hallam-Baker
  I think its a good idea, just a lousy implementation. Or rather, this is how we would approach implementing the DNS if we were starting from scratch today. It is only a lousy proposal insofar as you can't get there…

Syrian Internet Shutdown

• Comment posted Jun 05, 2011 1:32 pm PDT — by Phillip Hallam-Baker
  When regimes are shutting down the Internet it is usually far too late. The Internet is a very powerful tool in the early stages of a protest movement. It allows people of like mind to connect and form a critical…

Anycast, Unicast, or Both?

• Comment posted Jun 03, 2011 5:04 pm PDT — by Phillip Hallam-Baker
  Yes, I thing we are arguing the same case but coming up with slightly different rationales. It all comes down to the exact definition of reliability and how it is measured. That is why I suspect that any noise being…

• Comment posted Jun 03, 2011 3:06 pm PDT — by Phillip Hallam-Baker
  if a system requires N elements in order to function properly then as N increases reliability will decrease.  however, that is not how anycast works.  for anycast, the system will operate correctly as long as any one (1) instance is…

• Comment posted Jun 01, 2011 9:26 pm PDT — by Phillip Hallam-Baker
  This could be looked at in two ways. One of them is that this is FUD, the other is that there is confusion on the part of many of the less technical people involved. Back when PKI was a new…

Kaspersky Calls for an Internet Internpol... Cybercrime Now Second Largest Criminal Activity

• Comment posted May 31, 2011 8:58 pm PDT — by Phillip Hallam-Baker
  Yes, I know all about Ross Anderson's attack. It is embarrassing for the banks, but not actually what Ross thinks it is. Chip and PIN has still eliminated card present fraud even with some protocol issues. It doesn't need to…

• Comment posted May 31, 2011 5:43 pm PDT — by Phillip Hallam-Baker
  The big divide in Internet crime is what governments consider to be crime. The US government and its alies consider bank fraud to be the Internet crime problem. The Russian government is rather more concerned about 'Information Terrorism' a definition…

Anycast, Unicast, or Both?

• Comment posted May 31, 2011 12:05 pm PDT — by Phillip Hallam-Baker
  This is a reather interesting post following his snide comments yesterday attacking me for having a commercial interest in another issue (I don't but he thought he would make an attack). The next day he is back admitting that his…

The gTLD Boondoggle

• Comment posted May 30, 2011 5:41 pm PDT — by Phillip Hallam-Baker
  A practical starting point for high security domains would be to use the EV validation practices as a basis. There is an existing competitive market for EV validation services. The most vocal criticism leveled at the criteria to date has…

Taking Back the DNS

• Comment posted May 30, 2011 4:42 pm PDT — by Phillip Hallam-Baker
  To understand how DNSSEC changes the equation, consider the following scenario. Opportunistic Congressman decides to grandstand to his constituents by proposing to drop Cuba and/or Palestine out of the root zone. To do this he proposes a bill that forces…

• Comment posted May 30, 2011 2:42 am PDT — by Phillip Hallam-Baker
  Depending where you are in the USG, the ability of the USG to control ICANN may be a bug or a feature. I have been in rooms with people of the 'hell yes we gonna use control of the DNS…

Experts Urge Congress to Reject DNS Filtering from PROTECT IP Act, Serious Technical Concerns Raised

• Comment posted May 29, 2011 9:41 pm PDT — by Phillip Hallam-Baker
  Oh I forgot that everyone's motives are to be considered suspect except for those of Mr ultra-pure, never made a dollar from the DNS Vixie. Projection is a really ugly thing to see. No Paul you are not without commercial…

Taking Back the DNS

• Comment posted May 29, 2011 4:42 pm PDT — by Phillip Hallam-Baker
  US government influence over ICANN goes way beyond mere jurisdiction. This is something of a concern in government circles as the executive has to consider the possibility of being forced into some action by the legislative branch. Yes, I know…

• Comment posted May 29, 2011 11:09 am PDT — by Phillip Hallam-Baker
  Or alternatively, Congress will order ICANN to block the domains at source. ICANN and VeriSign are both 100% within the power of the US government. Until now there has been no mechanism for ICANN to really enforce restrictions on the…

Experts Urge Congress to Reject DNS Filtering from PROTECT IP Act, Serious Technical Concerns Raised

• Comment posted May 28, 2011 1:48 am PDT — by Phillip Hallam-Baker
  The idea that the DNS cannot possibly survive unless every Internet client receives the same data is quite a common one but completely mistaken. Similar objections were rised decades ago when enterprises connecting to the Internet deployed firewalls and split…

The Real Deployment Issue

• Comment posted Mar 16, 2011 8:20 pm PDT — by Phillip Hallam-Baker
  That is 3-4 years, not 304 years. Typeo.

Taking Back the DNS

• Comment posted Feb 14, 2011 12:36 am PST — by Phillip Hallam-Baker
  Probably an idea to hold off making conclusions as to the cause at the moment. It may be censorship or it may be hacktivism. Some of the regimes in the region are drawing the lesson that youth is demanding access…

Egypt Goes Dark, Last Working ISP Pulls the Plug

• Comment posted Feb 01, 2011 3:24 am PST — by Phillip Hallam-Baker
  The Noor group was likely being kept up because it was also serving the government in some function and they did not want to deny themselves access. It would be interesting to see if the government has allowed its own…

Has the FCC Created a Stone Too Heavy for It to Lift?

• Comment posted Jan 01, 2011 11:13 pm PST — by Phillip Hallam-Baker
  You accusing me of lying and then make a statement which is contradicted by the posts here. What I said was: "As a consumer I have no way to know if this is a result of insufficient infrastructure investment on…

• Comment posted Jan 01, 2011 8:22 pm PST — by Phillip Hallam-Baker
  Since you challenged me on a factual issue that I can verify and you can not, I don't think you have standing to comment on whose argument is strong or not. My point regarding service is that Comcast is guilty…

• Comment posted Dec 29, 2010 1:10 pm PST — by Phillip Hallam-Baker
  What passes for an argument here becomes stranger and stranger. I am not sure what the connection to American therapy culture would be here. I am not an American, nor have I ever done therapy. When I was younger I…

• Comment posted Dec 29, 2010 10:15 am PST — by Phillip Hallam-Baker
  Again we see the same old tactics: * Everyone who disagrees with Bennett must do so from ignorance or stupidity. * Everyone who disagrees with Bennett should shut up and stop arguing. It is precisely these tactics that I despise…

• Comment posted Dec 28, 2010 2:15 pm PST — by Phillip Hallam-Baker
  That is far from the first time we have crossed. My problem is not with the fact that you are a lobbyist, it is the fact that you pose as a disinterested party when you are in fact your employer…

• Comment posted Dec 28, 2010 10:39 am PST — by Phillip Hallam-Baker
  Have you ever tried treating your opponents with respect? I only started calling you a corporate shill after you launched into a very personal attack on the integrity of the IETF chair and continued to do without admitting a very…

• Comment posted Dec 28, 2010 9:47 am PST — by Phillip Hallam-Baker
  I have a hard time believing that you would accuse me of being a liar like that. Comcast would have to be particularly stupid to play such games in the DC metro area where they would affect policy makers. So…

• Comment posted Dec 27, 2010 5:29 pm PST — by Phillip Hallam-Baker
  I think this is all a smokescreen to cover up the justification for the real concern which is that a monopoly broadband provider might use their position anti-competitively. For example, I have Vonage telephone service and I have Comcast telephone…

Affidavit Shows Errors in Homeland Security Domain Seizures

• Comment posted Dec 27, 2010 1:17 pm PST — by Phillip Hallam-Baker
  There are certainly issues with the procedure used here, but unfortunately the article appears to misrepresent the affidavit. The information provided at the end appears to be provided for explanatory purposes rather than being evidence of behavior by TorrentFinder.com. It…

Has the FCC Created a Stone Too Heavy for It to Lift?

• Comment posted Dec 27, 2010 12:19 pm PST — by Phillip Hallam-Baker
  Bennett is of course a K-street lobbyist rather than a scholar. And a very good rule of thumb is that when such people attack the credentials or expertise of others, their statements are to be considered with skepticism. Bennett can't…

The Trouble With 6to4

• Comment posted Dec 13, 2010 1:59 pm PST — by Phillip Hallam-Baker
  The first assumption is probably true, the second is not. Carrier grade NAT will be capable of meeting the needs of 90% of Internet users. So it is foolish to assume that Internet growth will force deployment of IPv6. Your…

• Comment posted Dec 07, 2010 1:43 pm PST — by Phillip Hallam-Baker
  Again, 'once IPv6 reaches critical mass' ... 'people will adopt'. Network effects break both ways. Until critical mass is reached, the network effect is the chicken-and-egg problem. I am fully aware that backbone providers are racking equipment that is IPv6…

• Comment posted Dec 06, 2010 10:02 pm PST — by Phillip Hallam-Baker
  You still don't get it. My tolerance of technical issues is orders of magnitude higher than that of the typical Internet user. I object to the idea that somehow the Internet can be allowed to break for IPv4 users during…

• Comment posted Dec 06, 2010 7:21 pm PST — by Phillip Hallam-Baker
  "Once we get to IPv6 deployment" Again you assume that this is inevitable. It is not. And people who think that NAT is going to be a forcing function here are dead wrong. There will be protocols that work through…

• Comment posted Dec 06, 2010 2:18 pm PST — by Phillip Hallam-Baker
  I don't understand why anyone would imagine ipv6 only content will exist, let alone be common. The assumption from the IETF/ICANN community seems to be that the IPv6 transition is inevitable and that it is IPv4 users who stand to…

Red Tape Set to Snuff Out Online Identity of Wales

• Comment posted Nov 09, 2010 12:58 pm PST — by Phillip Hallam-Baker
  Let me be clear, even if CYM was available, ICANN should not and must not get into the business of legitimizing irredentist factions. That can only end badly. How about TIB for Tibet? If that was granted we can be…

• Comment posted Nov 09, 2010 4:25 am PST — by Phillip Hallam-Baker
  How is this 'red tape'? The Welsh Nationalists made a bid, they lost to a competing bid. That may not be the outcome that you desire, but that is a different issue. The three letter rule was adopted by Postel…

Kidnapping, Theft and Rape Are Not "Cyber" Crimes

• Comment posted Nov 03, 2010 4:20 am PDT — by Phillip Hallam-Baker
  There really is much less difference between terrorism and organized crime than US commentators imagine. The Baader Meinhof gang financed itself robbing banks, the IRA ran protection rackets, Al Qaeda provides logistics and support for the opium trade. Organized crime…

• Comment posted Nov 03, 2010 3:18 am PDT — by Phillip Hallam-Baker
  Or we could just fix our banking infrastructure so they can't steal our money. Then figure out what parts of our critical infrastructure matter and fix them so that they can't be knocked out by a cyber attack. If we…

• Comment posted Nov 02, 2010 7:53 pm PDT — by Phillip Hallam-Baker
  Russian organized crime is closely tied to the Russian government and performs 'favors' for them in return for immunity from prosecution. The issue of Internet crime is thus not just a police issue. The Russian government has ordered opponents murdered…

Gruber Gives Up On His IDN

• Comment posted Oct 23, 2010 8:49 pm PDT — by Phillip Hallam-Baker
  I do have to wonder if this might demonstrate that the entire premise of the project is wrong. Perhaps the original problem was using a Latin character set that non-European speakers cannot type rather than lack of support for their…

The Militarization of the Internet

• Comment posted Oct 20, 2010 9:45 pm PDT — by Phillip Hallam-Baker
  Authentication does not make the Internet easier to wiretap, quite the reverse. The only type of authentication that can make the Internet easier to wiretap is authentication with a hole in it. That is why some people are trying to…

Gadi Evron: Stuxnet Trojan Too Amateur

• Comment posted Oct 18, 2010 1:01 am PDT — by Phillip Hallam-Baker
  Gadi's argument is that that the worm hit too many targets and this demonstrates an 'amateur' approach. I don't think that holds. Making the worm more specific would have made it bigger and that would make it less likely to…

Scrutinize ICANN's Thousand New-TLDs Limit

• Comment posted Oct 17, 2010 11:40 am PDT — by Phillip Hallam-Baker
  Only one of the documents on which public comment is being sought is actually linked there. Of course it is rather unlikely that there will be millions of applications when the non-refundable fee is $75K. But then again there is…

• Comment posted Oct 16, 2010 6:25 pm PDT — by Phillip Hallam-Baker
  Like the IPv4 address space, a thousand a year is probably the anti-goldilocks number. It is too big and too small at the same time. If IPv4 had had a 16 bit address space we would have fixed the address…

Michael Chertoff: Respond to Cyberattacks With Overwhelming Force, Apply Cold War Principle

• Comment posted Oct 16, 2010 1:15 am PDT — by Phillip Hallam-Baker
  Chertoff's views are not uncommon in policy circles but they are profoundly ignorant and dangerous. The greatest danger, possibly the only danger to the United States of America is the United States of America. US military power so far outclasses…

Turns out ICANN's Beckstrom is an Inspirational Patron of the Tea Party

• Comment posted Sep 20, 2010 8:18 pm PDT — by Phillip Hallam-Baker
  I somehow doubt more than a few members of the Tea Party movement have even heard of the book, much less read it. Many people have been pointing out that the Internet is making 'new' forms of organization possible. And…

DNS Clients Do Request DNSSEC Today

• Comment posted Sep 07, 2010 1:31 pm PDT — by Phillip Hallam-Baker
  One of the things that gives me considerable anxiety where DNSSEC is concerned is that time after time I asked what appears to me to be a very reasonable question and got back the response 'that is someone else's problem'.…

• Comment posted Sep 07, 2010 4:31 am PDT — by Phillip Hallam-Baker
  Signing the zones and validating the results is the easy part. What does a client do when the signatures do not validate?

Taking Back the DNS

• Comment posted Aug 26, 2010 9:20 pm PDT — by Phillip Hallam-Baker
  There was a real problem with Paul's solution. He was demanding accountability of everyone but himself. A system like that is bound to fail in the end. But he did realize that spam was going to be a major problem…

Russian Cybercrime is Organized / Russian Cybercrime is Not Organized

• Comment posted Aug 25, 2010 11:18 pm PDT — by Phillip Hallam-Baker
  I think the problem is that journalists are far too willing to accept the claims of criminals at face value. Take a look at the numerous interviews with hackers in the 1990s where the journalists would write about how these…

Net Neutrality: A Net-Head View

• Comment posted Aug 13, 2010 10:23 pm PDT — by Phillip Hallam-Baker
  I would be very surprised if Tim's position was very different from Danny Weitzner's. And Danny certainly knows every detail of what is going on.

Taking Back the DNS

• Comment posted Aug 02, 2010 3:56 pm PDT — by Phillip Hallam-Baker
  If a Web site is valuable, then perhaps there is an onus on the Web site provider to help distinguish their legitimate content from malicious copies. That is precisely the problem we set out to address with Extended Validation certificates.…

• Comment posted Aug 02, 2010 3:45 am PDT — by Phillip Hallam-Baker
  I don't plan to wait on ICANN for anything. There are really good reasons why ICANN cannot and will not do anything to 'fix' whois. It is only actually in charge of some of the DNS for a start. Last…

• Comment posted Aug 02, 2010 1:01 am PDT — by Phillip Hallam-Baker
  The same was true of the MAPS spam blacklist at first. Then this became very clear with blacklists falling over themselves to be as unaccountable as possible. Eventually the consequences of having no accountability became clear and sensible ISPs dropped…

• Comment posted Aug 01, 2010 5:15 pm PDT — by Phillip Hallam-Baker
  Sure, if a domain is being used to control a botnet then most selective DNS providers are going to block it. That is what they are being asked to do by their subscribers. Is that meant to be a 'bad…

• Comment posted Aug 01, 2010 4:59 pm PDT — by Phillip Hallam-Baker
  Yes, I was pointing to the fact that people can work round port 53 blocking. The difference between Ma Bell and Google is accountability. Google has huge market share but so did Yahoo before Google came along. The only way…

• Comment posted Aug 01, 2010 4:23 pm PDT — by Phillip Hallam-Baker
  There is no particular reason that DNS has to be run over port 53. One (legitimate) reason that some ISPs intercept DNS queries is that it is a way to stop DDoS attacks slamming the root or .com or whatever.…

• Comment posted Aug 01, 2010 3:28 pm PDT — by Phillip Hallam-Baker
  The person who is going to rely on the names decides who they choose to advise them on which are malicious and which are not. Having ICANN do this for everyone would be very bad. Everyone choosing a filtering service…

• Comment posted Aug 01, 2010 3:00 pm PDT — by Phillip Hallam-Baker
  The DNS cannot serve every purpose for everyone. The ICANN DNS is based on the principle of making access as easy and as cheap as possible. There are no checks made when someone registers a domain name today and it…

Cyberwar vs No Cyberwar

• Comment posted Jul 29, 2010 2:03 pm PDT — by Phillip Hallam-Baker
  Bruce is an expert in communications. Or more precisely he is an expert in outbound communication. Listening to others is not a strong point. He does tend to come out with these categorical positions which the press loves on topics…

• Comment posted Jul 28, 2010 10:04 pm PDT — by Phillip Hallam-Baker
  Bruce knows enough about this subject to know that keeping the DMV open is not the issue. The real cause for concern are scenarios of the type where an attacker might shut down the electricity grid or the water supply…

Clouded by a Convenient Illusion

• Comment posted Jul 28, 2010 2:13 am PDT — by Phillip Hallam-Baker
  The shorter point I originally meant to make is that the point of putting the services in the cloud is so that the person that puts them there does not have to think about all the details. But the decision…

Paul Kane Selected as One of Seven Security Key Holders

• Comment posted Jul 28, 2010 12:44 am PDT — by Phillip Hallam-Baker
  Who on earth thought it a good idea to publish the names of any root key shareholders? This is seriously dangerous. There are plenty of lunatics in this world and in this country at least, many of them have guns.…

Clouded by a Convenient Illusion

• Comment posted Jul 28, 2010 12:36 am PDT — by Phillip Hallam-Baker
  'The cloud' comes from people drawing up network architecture diagrams and drawing a circle round the bits that THEY do not want to have to think about. That is not the same as believing that nobody should think about them…

FCC's McDowell Warns of "Irreversible International Regulation"

• Comment posted Jul 24, 2010 5:48 pm PDT — by Phillip Hallam-Baker
  The US has a very simple veto power over ITU decisions, as does every other member: they simply ignore the resolution. The only form of Internet 'regulation' being contemplated in the US has to do with breaking up the last…

DotCo Launch: Over 90 Thousand Domain Names in 15 Minutes!

• Comment posted Jul 23, 2010 3:57 pm PDT — by Phillip Hallam-Baker
  90,000 names in 15 minutes? Almost makes a scenario conceivable in which a group or mercenaries carry out a military coup in some small country and then break up the state so as to create more country codes and more…

The Geo-Politics of ICANN vs ITU

• Comment posted Jul 23, 2010 2:44 pm PDT — by Phillip Hallam-Baker
  I think that it is important to note that one of the ways in which ICANN has survived is by making such accommodations. I believe it is still the case that many of the CC TLDs do not recognize any…

DNSSEC Happy Talk Enters a New Era

• Comment posted Jul 22, 2010 12:22 pm PDT — by Phillip Hallam-Baker
  If you had called the CA side of VeriSign rather than the DNS side you would have received a different response. The problem is that DNSSEC as currently configured gives even less security than a DV cert. You have all…

Moving DNSSEC Forward: Help for Registries, Registrars, ISPs/Hosting, Enterprises, and Name Owners

• Comment posted Jul 21, 2010 5:59 pm PDT — by Phillip Hallam-Baker
  I have read the dlv.isc.org pages several times. What has me worried here is the fact that the somewhat skimpy description there is considerably more information on how the keys get into the 'temporary' DLV system than we have yet…

The Geo-Politics of ICANN vs ITU

• Comment posted Jul 21, 2010 5:46 pm PDT — by Phillip Hallam-Baker
  The US government is not a monolith. There are great variations in interest and approach. The voice that seems loudest outside the government is that of the Pentagon. The US military is pretty much unique in the manner in which…

DNSSEC Happy Talk Enters a New Era

• Comment posted Jul 21, 2010 12:32 am PDT — by Phillip Hallam-Baker
  Are they planning to do anything more than sign the domains they manage in-house and register their own key with .org?

The Geo-Politics of ICANN vs ITU

• Comment posted Jul 20, 2010 6:14 pm PDT — by Phillip Hallam-Baker
  What impact does it have on the routing table if an ISP receives its allocation from source X or source Y? Provided that the two sources do not offer conflicting allocations there is no difference at all. It would certainly…

DNSSEC is But One Link in the Security Chain

• Comment posted Jul 19, 2010 5:01 am PDT — by Phillip Hallam-Baker
  No, the liability is totally transformed. With an NS record the registrar is saying 'X is the address of Fred' With a DNSKEY record the registrar, registry and ICANN are each jointly and severally acting in the legally recognized role…

DNSSEC Happy Talk Enters a New Era

• Comment posted Jul 19, 2010 4:40 am PDT — by Phillip Hallam-Baker
  Yes, you have my position pretty well. I think that what we need in the Internet is more security, not a pointless standards war between DNSSEC and SSL. That war was lost fifteen years ago and we do not need…

• Comment posted Jul 19, 2010 4:29 am PDT — by Phillip Hallam-Baker
  >The same way the domain name owner's NS records get into the TLD. By action of the registrar, paid for by the domain name owner. What is the commercial motivation for the registrar to do this? How is this process…

Current ICANN Policy Precludes the ITU Becoming an IP Address Registry

• Comment posted Jul 19, 2010 1:22 am PDT — by Phillip Hallam-Baker
  There is no way that ICANN will permit the ITU to establish a registry, but there is absolutely nothing to stop the ITU from going ahead of its own accord. IPv6 address space is not scarce. There is no particular…

DNSSEC is But One Link in the Security Chain

• Comment posted Jul 18, 2010 11:02 pm PDT — by Phillip Hallam-Baker
  So you are proposing that the registrars invest in developing an infrastructure that is going to cannibalize their SSL reseller revenues? Has anyone discussed this part of the program with the registrars? Or is the basic idea here that they…

• Comment posted Jul 18, 2010 7:37 pm PDT — by Phillip Hallam-Baker
  I have been asking this question for over a year now. And nobody will answer it. How do I get a key for my domains into the TLD registry? It is not just a matter of the technical mechanism, there…

DNSSEC Deployment Among ISPs: The Why, How, and What

• Comment posted Jul 02, 2010 7:37 pm PDT — by Phillip Hallam-Baker
  I think Vint Cerf answered your question in the key signing ceremony PR video: people are going to find something more interesting for DNSSEC to do. Sometimes you have to do the wrong thing before you can do the right…

Who Is Blocking WHOIS? Part 2

• Comment posted Jul 01, 2010 10:25 pm PDT — by Phillip Hallam-Baker
  I really can't see why a registrar that sets itself up to facilitate criminal activity is going to behave better with a less abrasive approach. And my experience of ICANN has been that the people who get most attention are…

Our Response to ICANN Re: The Dot-XXX Top-Level Domain

• Comment posted Jul 01, 2010 6:13 pm PDT — by Phillip Hallam-Baker
  What I want to know is who is going to have the job of checking to make sure that the material in the .xxx domain is sufficiently pornographic. We don't want 'poor 'nography' on the Web. What we want is…

Video: Highlights of the DNSSEC Key Signing Ceremony

• Comment posted Jul 01, 2010 4:04 pm PDT — by Phillip Hallam-Baker
  DNSSEC is important. But not for the reasons being presented here. SSL already enables end to end authentication of Web Sites. DNSSEC does not and cannot. Even if we assume BGPSEC is also in place, there is no end-to-end security.…

DNSSEC Deployment Among ISPs: The Why, How, and What

• Comment posted Jul 01, 2010 1:59 pm PDT — by Phillip Hallam-Baker
  What nobody has ever told me is how, as a domain name owner, I get my key signed and entered into the .com registry. I have been asking this question for five years now. I have asked ICANN people in…

The .XXX Fiasco is Almost Over

• Comment posted Jul 01, 2010 1:40 pm PDT — by Phillip Hallam-Baker
  When this type of stalemate is created, the only possible outcome is the one that will end the stalemate. Even if ICM withdrew there would be another .xxx proposal, and another, and another. At various times we have been having…

VeriSign Leaves the Security Certificate Business

• Comment posted May 25, 2010 7:33 pm PDT — by Phillip Hallam-Baker
  I am not sure how far this goes. I would think that to be useful Comcast needs all the .com zone or none of it. What I am proposing is that the 100 or so top global ISPs essentially opt…

• Comment posted May 25, 2010 6:47 pm PDT — by Phillip Hallam-Baker
  In the past the main argument VeriSign has used is that the bar to servicing the .com contract is so high that there could not possibly be another credible bidder. Which is of course true if you take the view…

• Comment posted May 25, 2010 4:28 pm PDT — by Phillip Hallam-Baker
  The SSL business may have issues, but I think those are rather minor compared to the problems the DNS business faces. The core weakness of the DNS business is that the whole thing can evaporate at contract renewal. GoDaddy should…