The Register® — Biting the hand that feeds IT

Feeds

Internet overlords deny Google's 'dotless' domains dream

Chocolate Factory's 'http://search' plan may 'harm security of internet'

By Simon Sharwood, 15th July 2013
26

Free ESG report : Seamless data management with Avere FXT

The Internet Architecture Board (IAB) has issued a statement in which it all-but-rules-out Google's plan to take over some new top-level domains and offer them in “dotless” configurations that would enable web addresses like “http://search".

Google outlined its plans for .search, .app and cloud back in April. The idea of Google owning or operating the domains earned a frosty reception.

Now the IAB, a a committee of the Internet Engineering Task Force (IETF) that among other things “ … provides oversight of, and occasional commentary on, aspects of the architecture for the protocols and procedures used by the Internet” has put the kybosh on the idea.

The Board's reasons why are explained here in a statement that says “dotless domains will not work as intended by TLD operators in the vast majority of cases” because the Internet wasn't built to support them.

Such domains can work, the statement says, if organisations configure their own “search lists” to make them possible. That's even a feature of DNS, “ … because most users entering single-label names want them to be resolved in a local context, and they do not expect a single name to refer to a TLD.”

But not everyone does so, which means “dotless domains will not behave consistently across various locations”.

That leads the IAB to suggest “they have the potential to confuse users and erode the stability of the global DNS”. Worse still, dotless domains may hurt internet security. Here's why:

“By attempting to change expected behavior, dotless domains introduce potential security vulnerabilities. These include causing traffic intended for local services to be directed onto the global Internet (and vice-versa), which can enable a number of attacks, including theft of credentials and cookies, cross-site scripting attacks, etc. As a result, the deployment of dotless domains has the potential to cause significant harm to the security of the Internet.”

The Board concludes that it “believes that the current IETF recommendations against the use of dotless domains are important to the continued viability and success of the Internet, and strongly recommends that the Internet community strictly adhere to them.” ®

5 ways to reduce advertising network latency

26 Reader Comments

Whitepapers

5 ways to reduce advertising network latency
Implementing the tactics laid out in this whitepaper can help reduce your overall advertising network latency.
Supercharge your infrastructure
Fusion­‐io has developed a shared storage solution that provides new performance management capabilities required to maximize flash utilization.
Avere FXT with FlashMove and FlashMirror
This ESG Lab validation report documents hands-on testing of the Avere FXT Series Edge Filer with the AOS 3.0 operating environment.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Email delivery: 4 steps to get more email to the inbox
This whitepaper lists some steps and information that will give you the best opportunity to achieve an amazing sender reputation.
Search more Resources

More from The Register

next story
How many apps does it take to back up your data?
Trevor Pott counts the ways
28
Dedupe-dedupe, dedupe-dedupe-dedupe: Flashy clients crowd around Permabit diamond
3 of the top six flash vendors are casing the OEM dedupe tech, claims analyst
8
Disk-pushers, get reel: Even GOOGLE relies on tape
Prepare to be beaten by your old, cheap rival
13
Hong Kong's data centres stay high and dry amid Typhoon Usagi
180 km/h winds kill 25 in China, but the data centres keep humming
9
Microsoft lures punters to hybrid storage cloud with free storage arrays
Spend on Azure, get StorSimple box at the low, low price of $0
7
WD unveils new MyBook line: External drives now bigger... and CHEAP
Less than £0.04/GB, but it loses the Thunderbolt speed
36
VMware vSAN test pilots: Don't panic but there's a chance of DATA LOSS
AHCI SATA controller won't play nice with Virtzilla's robo-storage beta
6
Pure poaches NetApp preacher
Stewart dumps disk array drama to fluff flash
10
OpenDaylight: meet networking's bright newcomer
Prepare to be dazzled
3
StorNext gets revamp, Quantum claims 5x data throughput boost
Multi-threaded code, flash, metadata redesign and Infiniband support
1
prev story