If you follow DNS news, you may know that ICANN has put in place a program to introduce many new generic top level domains (GTLD) into the DNS. I haven't been a fan. ICANN says there is market demand for GTLD expansion (perhaps), and that it allows innovation in the DNS ecosystem (how?). It probably will have an effect of diluting the entrenched market power of the big TLD operators (.com, .org etc), which may be a good thing. But the system may end up being primarily a significant financial windfall for ICANN. Even Esther Dyson (original ICANN chair) has spoken out against the program.
There appear to be some trademark protection mechanisms built in to the new system. But it seems clear that many organizations will rush to defensively register their names under some of the new TLDs. Strictly speaking, DNS domain names have no intended or actual relation to trademarks, but we have to deal with the real world. My university's upper administration has already contacted the IT department to discuss the topic. A while back, we defensively registered "upenn.xxx" to protect against possible reputational damage (and no, I wasn't involved in that decision).
On a more technical note, one interesting and welcome feature of the new GTLDs, is that they must be deployed with DNSSEC. This should significantly increase the proportion of signed top level domains in the DNS. My dnsstat DNS monitoring site has been monitoring the TLDs for a while now, and I just updated it with the latest list of TLDs.
http://www.huque.com/app/dnsstat/category/tld/
Since late August, 32 new TLDs have been introduced, 27 normal GTLDs, 5 IDN (Internationalized domains) TLDs. But 11 IDN TLDs have also disappeared. That's a net gain of 21 TLDs, bringing the total count to 339.
Some DNSSEC specific stats: 143 (or 42.2%) of the TLDs are signed with DNSSEC. Here's a breakdown of type key and zone signing algorithms in use for the signed TLDs:
Key Signing Keys (KSK):
RSASHA256 (8) = 119 (63.0%)
RSASHA512 (10) = 6 (3.2%)
RSASHA1 (5) = 16 (8.5%)
RSASHA1-NSEC3-SHA1 (7) = 48 (25.4%)
Zone Signing Keys (ZSK):
RSASHA256 (8) = 133 (62.4%)
RSASHA512 (10) = 8 (3.8%)
RSASHA1 (5) = 17 (8.0%)
RSASHA1-NSEC3-SHA1 (7) = 55 (25.8%)
Note: new GTLDs continue to be added, so the numbers in this article might be out of date soon.
Here are the added TLDs so far (as of November 20th 2013):
+ bike
+ camera
+ clothing
+ construction
+ contractors
+ diamonds
+ directory
+ enterprises
+ equipment
+ estate
+ gallery
+ graphics
+ guru
+ holdings
+ kitchen
+ land
+ lighting
+ photography
+ plumbing
+ sexy
+ singles
+ tattoo
+ technology
+ tips
+ today
+ ventures
+ voyage
Here are the new IDN TLDs:
+ xn--80asehdb
+ xn--80aswg
+ xn--mgba3a4f16a
+ xn--ngbc5azd
+ xn--unup4y
Here are the deleted IDN TLDs:
- xn--0zwm56d
- xn--11b5bs3a9aj6g
- xn--80akhbyknj4f
- xn--9t4b11yi5a
- xn--deba0ad
- xn--g6w251d
- xn--hgbk6aj7f53bba
- xn--hlcj6aya9esc7a
- xn--jxalpdlp
- xn--kgbechtv
- xn--zckzah
Note: one IDN TLD (xn--l1acc) has had a severely busted DNSSEC deployment for a while. My monitoring system detects that its DS records in the root of the DNS do not match any DNSKEY records in the zone, and furthermore, the signatures on the DNSKEY records have expired. I hope they get their act together soon.
--Shumon Huque
There appear to be some trademark protection mechanisms built in to the new system. But it seems clear that many organizations will rush to defensively register their names under some of the new TLDs. Strictly speaking, DNS domain names have no intended or actual relation to trademarks, but we have to deal with the real world. My university's upper administration has already contacted the IT department to discuss the topic. A while back, we defensively registered "upenn.xxx" to protect against possible reputational damage (and no, I wasn't involved in that decision).
On a more technical note, one interesting and welcome feature of the new GTLDs, is that they must be deployed with DNSSEC. This should significantly increase the proportion of signed top level domains in the DNS. My dnsstat DNS monitoring site has been monitoring the TLDs for a while now, and I just updated it with the latest list of TLDs.
http://www.huque.com/app/dnsstat/category/tld/
Since late August, 32 new TLDs have been introduced, 27 normal GTLDs, 5 IDN (Internationalized domains) TLDs. But 11 IDN TLDs have also disappeared. That's a net gain of 21 TLDs, bringing the total count to 339.
Some DNSSEC specific stats: 143 (or 42.2%) of the TLDs are signed with DNSSEC. Here's a breakdown of type key and zone signing algorithms in use for the signed TLDs:
Key Signing Keys (KSK):
RSASHA256 (8) = 119 (63.0%)
RSASHA512 (10) = 6 (3.2%)
RSASHA1 (5) = 16 (8.5%)
RSASHA1-NSEC3-SHA1 (7) = 48 (25.4%)
Zone Signing Keys (ZSK):
RSASHA256 (8) = 133 (62.4%)
RSASHA512 (10) = 8 (3.8%)
RSASHA1 (5) = 17 (8.0%)
RSASHA1-NSEC3-SHA1 (7) = 55 (25.8%)
Note: new GTLDs continue to be added, so the numbers in this article might be out of date soon.
Here are the added TLDs so far (as of November 20th 2013):
+ bike
+ camera
+ clothing
+ construction
+ contractors
+ diamonds
+ directory
+ enterprises
+ equipment
+ estate
+ gallery
+ graphics
+ guru
+ holdings
+ kitchen
+ land
+ lighting
+ photography
+ plumbing
+ sexy
+ singles
+ tattoo
+ technology
+ tips
+ today
+ ventures
+ voyage
Here are the new IDN TLDs:
+ xn--80asehdb
+ xn--80aswg
+ xn--mgba3a4f16a
+ xn--ngbc5azd
+ xn--unup4y
Here are the deleted IDN TLDs:
- xn--0zwm56d
- xn--11b5bs3a9aj6g
- xn--80akhbyknj4f
- xn--9t4b11yi5a
- xn--deba0ad
- xn--g6w251d
- xn--hgbk6aj7f53bba
- xn--hlcj6aya9esc7a
- xn--jxalpdlp
- xn--kgbechtv
- xn--zckzah
Note: one IDN TLD (xn--l1acc) has had a severely busted DNSSEC deployment for a while. My monitoring system detects that its DS records in the root of the DNS do not match any DNSKEY records in the zone, and furthermore, the signatures on the DNSKEY records have expired. I hope they get their act together soon.
--Shumon Huque
mobdro 2020 is the mwois website that I use the domain name for it
ReplyDeleteour extensive range of style-led plus size swimwear and other clothing that's able to wear now; offering you the best-in-fit from couture and core wardrobe staples like Sienna Couture. High Fashion Swimwear
ReplyDeletePut away money today with the UK's most basic voucher code site. Join north of 7 million people and notice the best working markdown codes for your loved stores.
ReplyDeleteBy: Printable Heaven Discount Code
That is so cool guys! You dont neew to waste your tiema adn money anymore! Just go for this writing personal statement service adn be surea that this guys is so cool! So dont be shy adn just do it! Enjoy and good luck!
ReplyDeleteUnfortunately, complaints list insidious limits we can't respect. Find out about our progression code system. Best Discount code site Summer move away is an enormous time for youngsters summer vacation This is an extremely overjoyed time for them. During these occasions. A complete travel guide for visiting London from the specialists at Condé Nast Traveler. london travel guide .. Add class to your look with this scandalous overall attire brand that is known to be up-scale with striking quality. Emporio Armani Whether it's California surfing, Maine tide pooling, or Florida swimming that invigorates the voyager, Beach Vacations a reasonable ocean side move away is hanging on. Sea side Vacations Grab your markdown code now and set aside to 70% at Fashion Discount code Save up to half with these ceaseless coupons The most recent coupon codes at voucherpro. Beauty Discount code
ReplyDeleteYes, I was followed DNS news before, but not now I saw that news about DNS top level domains actually I am also CS graduated and still learning new things.
ReplyDeletehe has won the hearts of many fans with his intense, chic allure. He has likewise been known to have acted with the best of entertainers walker yellowstone jacket
ReplyDeletewhat a nice article thanks for sharing well merchant Cash Advance Leads are potential customers who are actively seeking financial solutions for their businesses. These leads typically have a need for quick access to capital and are interested in alternative funding options. Generating high-quality leads can help merchant cash advance providers connect with the right businesses and grow their client base effectively.
ReplyDeleteYour blogs are really good and interesting. It is very great and informative. Since late August, 32 new TLDs have been introduced, 27 normal GTLDs, 5 IDN (Internationalized domains) TLDs. But 11 IDN TLDs have also disappeared. That's a net gain of 21 TLDs, bringing the total count to 339.
ReplyDeleteSex Crime Lawyer, I got a lots of useful information in your blog. Keeps sharing more useful blogs..
"Interesting perspective on ICANN's program for introducing new GTLDs. While market demand and potential innovation in the DNS ecosystem are cited as reasons, concerns about financial gains for ICANN are valid. It's important to consider the implications of this expansion. On a side note, if the complexities of the topic become overwhelming, I need someone to write my essay to ensure a comprehensive understanding and accurate analysis."
ReplyDeleteStaying updated with the latest DNS news is essential for anyone in the tech industry. It allows us to stay ahead of emerging trends, advancements, and potential challenges. Moreover, when it comes to academic assignments, ensuring plagiarism-free content is of utmost importance. As students, we must not only rely on credible sources for our research but also give proper credit to the original authors. By incorporating the latest DNS news into our assignments while maintaining academic integrity, we showcase our ability to engage with current developments and produce high-quality, original work. Let's embrace the world of DNS news and strive for plagiarism-free assignmentspalagirism free assignments that reflect our commitment to both staying informed and upholding academic honesty.
ReplyDeleteAwesome stuff, and congratulations so much for sharing this with us. I was looking for information of this kind. I also want to provide some links. Keep on sharing. I invite you to visit my online presence.
ReplyDeletepreliminary protective order hearing virginia
divorcio de nueva jersey
Your blog about "New DNS Top Level Domains" is a treasure trove of valuable insights and inspiration. Each post is a captivating journey that leaves me eagerly awaiting your next publication. Your dedication to providing enriching content and sharing your expertise is truly commendable. Thank you for consistently delivering high-quality posts that contribute to our knowledge and understanding. Your blog is a valuable resource for all of usMonmouth County Reckless Driving LawyerReckless Driving Lawyer Middlesex County
ReplyDelete