Hi Dino, Am 28.09.2016 um 04:59 schrieb Dino Farinacci: >> One side is that the national security of US prefer the government operates >> the root DNS, another side is that other countries don’t like US to >> completely control the DNS. > I see this hierarchy run by commercial companies that have monetary incentive > to run a production level service. So for example, I could use a pair of > roots from say a Verisign. Or a different pair of roots offered by an AT&T, > or a possible a third-party that calls themselves a Mapping Service Provider > (MSP). > > It is these roots at the top of the tree that need to connect to common parts > in the middle and to the leaf map-servers of the tree. > >> This is related to both technology and politics. Without the support of >> other countries, mapping server deployment globally will be in question. > If registrations and requests are encrypted, then anyone could run the roots > and the what goes in and out of the mapping system stays private. But there > needs to be competition so the level of service stays at a high-quality > production level. What is your vision? How much of the mapping data can be encrypted and how much information about the mapping owner can be hidden from the mapping system operator? The ID cannot be encrypted as it is used as retrieval key. When we want to make sure that only rightful owners of IDs can register, the mapping system provider needs to authenticate the mapping owner. Can you elaborate the problem you are tackling and the solution in more detail?
Michael
