Feeds

ICANN urges VeriSign to suspend SiteFinder

Violates 'Principle Of Least Astonishment'

  • alert
  • submit to reddit

The Power of One Infographic

Net governing body ICANN has called on VeriSign to "voluntarily suspend" Site Finder amid renewed concerns that the web typo replacement service could undermine key Net standards.

Last week VeriSign deployed a "wildcard" service into the .com and .net Top Level Domain zones. This VeriSign wildcard redirects traffic that would otherwise have resulted in a "no domain" response to a VeriSign-operated website, called Site Finder, the features, search results and links to paid advertisements.

"Since the deployment, ICANN has been monitoring community reaction, including analysis of the technical effects of the wildcard, and is carefully reviewing the terms of the .com and .net Registry Agreements," the Net governing body said in a statement.

"Recognizing the concerns about the wildcard service, ICANN has called upon VeriSign to voluntarily suspend the service until the various reviews now underway are completed," it added.

ICANN has requested advice from its Security and Stability Advisory Committee, and from the Internet Architecture Board, on the impact of the changes implemented by VeriSign.

A report from the Internet Architecture Board (IAB), released last weekend, says the VeriSign's changes have had "undesirable and unintended consequences", imposing a overhead on users, and affecting the robustness of the Internet.

The document suggests VeriSign's "wildcard" service goes against "two basic principles of architectural design which have served the Internet well for many years": the Robustness Principle and the (splendidly named) Principle Of Least Astonishment, which says a program should always respond in the way that is least likely to astonish the user.

The IAB's highly critical report on DNS Wildcards can be found here.

VeriSign has yet to respond to ICANN's call to drop Site Finder. ®

Related stories

All your Web typos are belong to us
VeriSign DNS change broke my HP printer (letters)
BIND developer blocks VeriSign Net grab move
VeriSign's SiteFinder finds privacy hullabaloo
VeriSign backlash gathers force

Mobile application security vulnerability report

More from The Register

next story
Airbus promises Wi-Fi – yay – and 3D movies (meh) in new A330
If the person in front reclines their seat, this could get interesting
There's NOTHING on TV in Europe – American video DOMINATES
Even France's mega subsidies don't stop US content onslaught
UK Parliament rubber-stamps EMERGENCY data grab 'n' keep bill
Just 49 MPs oppose Drip's rushed timetable
BBC goes offline in MASSIVE COCKUP: Stephen Fry partly muzzled
Auntie tight-lipped as major outage rolls on
Want to beat Verizon's slow Netflix? Get a VPN
Exec finds stream speed climbs when smuggled out
Samsung threatens to cut ties with supplier over child labour allegations
Vows to uphold 'zero tolerance' policy on underage workers
Dude, you're getting a Dell – with BITCOIN: IT giant slurps cryptocash
1. Buy PC with Bitcoin. 2. Mine more coins. 3. Goto step 1
US freemium mobile network eyes up Europe
FreedomPop touts 'free' calls, texts and data
prev story

Whitepapers

Top three mobile application threats
Prevent sensitive data leakage over insecure channels or stolen mobile devices.
The Essential Guide to IT Transformation
ServiceNow discusses three IT transformations that can help CIO's automate IT services to transform IT and the enterprise.
Mobile application security vulnerability report
The alarming realities regarding the sheer number of applications vulnerable to attack, and the most common and easily addressable vulnerability errors.
How modern custom applications can spur business growth
Learn how to create, deploy and manage custom applications without consuming or expanding the need for scarce, expensive IT resources.
Consolidation: the foundation for IT and business transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.