The Missing Piece: On Namespace Management in NDN and How DNSSEC Might Help Pouyan Fotouhi Tehrani 1 , Eric Osterweil 2 , Jochen Schiller 3 , Thomas C. Schmidt 4 , Mathias W¨ ahlisch 3 1 Weizenbaum Institut / Fraunhofer FOKUS 2 George Mason University 3 Freie Universit¨ at Berlin 4 Hamburg University of Applied Sciences September 25, 2019 1 / 11
Benjamin Franklin b l o o m usatoday.com.co b e r g . m a
Benjamin Franklin Oh, what a tangled web we weave, b l when first we practice to deceive! o o m usatoday.com.co b e r g . m a – William Shakespeare
Benjamin Franklin Oh, what a tangled web we weave, b l when first we practice to deceive! o o m usatoday.com.co b e r g . m a – William Shakespeare Walter Scot
HOLD UP!
Isn’t that what NDN DNS (NDNS) [Afanasyev, 2013] does? HOLD UP!
Isn’t that what NDN DNS (NDNS) [Afanasyev, 2013] does? HOLD UP! ...or even CCN Key Resolution Service (CCN-KRS) [Mahadevan, 2014]?
Isn’t that what NDN DNS (NDNS) [Afanasyev, 2013] does? JAIN! HOLD UP! ...or even CCN Key Resolution Service (CCN-KRS) [Mahadevan, 2014]?
Isn’t that what NDN DNS (NDNS) [Afanasyev, 2013] does? JAIN! HOLD UP! YES . Technical aspects: ...or even CCN Key Resolution Service (CCN-KRS) [Mahadevan, 2014]? - Self-certifying names - Trusted third parties (TTP) - ...
Isn’t that what NDN DNS (NDNS) [Afanasyev, 2013] does? JAIN! HOLD UP! YES . NO . Technical aspects: Non-technical aspects: ...or even CCN Key Resolution Service (CCN-KRS) [Mahadevan, 2014]? - Self-certifying names - Trademarks - Legal disputes - Trusted third parties (TTP) - ... - ...
* Graphics licensed under CC-BY 4.0 – Twiter, Inc and other contributors Internet Phone Book
* Graphics licensed under CC-BY 4.0 – Twiter, Inc and other contributors Internet Phone Book How entries are entered and read from phonebook. IETF for DNS
* Graphics licensed under CC-BY 4.0 – Twiter, Inc and other contributors Internet Phone Book How entries are entered How to decide what and read from phonebook. names should be entered in the phonebook. IETF for DNS ICANN for DNS
* Graphics licensed under CC-BY 4.0 – Twiter, Inc and other contributors Internet Phone Book How entries are entered How to decide what and read from phonebook. names should be entered in the phonebook. IETF for DNS ICANN for DNS Ofen contentious...
* Graphics licensed under CC-BY 4.0 – Twiter, Inc and other contributors Internet Phone Book But, why did we wind up How entries are entered How to decide what But, why did we wind up needing this (for DNS)? and read from phonebook. names should be entered needing this for (global) naming? in the phonebook. IETF for DNS ICANN for DNS Ofen contentious...
10 10 10 9 RFC 1296 ISC 10 8 domain names (#) 10 7 10 6 10 5 10 4 10 3 1985 1990 1995 2000 2005 2010 2015 2020 1983: RFC 882 year 1998: ICANN Green/White Paper 5 / 11
10 10 10 9 RFC 1296 ISC 10 8 domain names (#) 10 7 10 6 10 5 10 4 10 3 1985 1990 1995 2000 2005 2010 2015 2020 1983: RFC 882 year 1987: RFC 1034 1998: ICANN Green/White Paper 5 / 11
10 10 10 9 RFC 1296 ISC 10 8 domain names (#) 10 7 10 6 .com boom 10 5 10 4 10 3 1985 1990 1995 2000 2005 2010 2015 2020 1983: RFC 882 year 1987: RFC 1034 1998: ICANN Green/White Paper 5 / 11
10 10 10 9 RFC 1296 ISC 10 8 domain names (#) 10 7 10 6 .com boom 10 5 1994: RFC 1591 “It is up to the requestor to be sure 10 4 he is not violating anyone else’s Trademark.” 10 3 1985 1990 1995 2000 2005 2010 2015 2020 1983: RFC 882 year 1987: RFC 1034 1998: ICANN Green/White Paper 5 / 11
10 10 10 9 RFC 1296 ISC 10 8 domain names (#) 10 7 10 6 .com boom 10 5 1996: First court ruling in Germany Domain names are comparable to “telephone 10 4 numbers, bank routing numbers or postal codes.” 10 3 1985 1990 1995 2000 2005 2010 2015 2020 1983: RFC 882 year 1987: RFC 1034 1998: ICANN Green/White Paper 5 / 11
10 10 10 9 RFC 1296 ISC 10 8 domain names (#) 10 7 10 6 .com boom 10 5 10 4 10 3 1985 1990 1995 2000 2005 2010 2015 2020 1983: RFC 882 year 1987: RFC 1034 1997: Initiating DNS Privatization 1998: ICANN Green/White Paper 5 / 11
10 10 10 9 RFC 1296 ISC 10 8 domain names (#) 10 7 10 6 .com boom 10 5 1997: Court ruling in Germany Domain names indicate origin and 10 4 can be related to natural and legal persons. 10 3 1985 1990 1995 2000 2005 2010 2015 2020 1983: RFC 882 year 1987: RFC 1034 1997: Initiating DNS Privatization 1998: ICANN Green/White Paper 5 / 11
10 10 10 9 RFC 1296 ISC 10 8 domain names (#) 10 7 10 6 .com boom 10 5 10 4 10 3 1985 1990 1995 2000 2005 2010 2015 2020 1983: RFC 882 year 1987: RFC 1034 1997: Initiating DNS Privatization 1998: ICANN Green/White Paper 5 / 11
10 10 10 9 RFC 1296 ISC 10 8 domain names (#) 10 7 10 6 .com boom 10 5 10 4 10 3 1985 1990 1995 2000 2005 2010 2015 2020 1983: RFC 882 year 1987: RFC 1034 1999: UDRP Launch 1997: Initiating DNS Privatization 1998: ICANN Green/White Paper 5 / 11
10 10 4000 10 9 RFC 1296 ISC dispute cases before WIPO (#) 10 8 3000 domain names (#) 10 7 10 6 2000 .com boom 10 5 1000 10 4 10 3 0 1985 1990 1995 2000 2005 2010 2015 2020 1983: RFC 882 year 1987: RFC 1034 1999: UDRP Launch 1997: Initiating DNS Privatization 1998: ICANN Green/White Paper 5 / 11
10 10 4000 10 9 RFC 1296 ISC dispute cases before WIPO (#) 10 8 3000 domain names (#) 10 7 10 6 2000 .com boom 10 5 2003: RFC 3467 “Increasing commercialization of the Internet, and visibility of domain names that are assumed to match names of companies or 1000 10 4 products, has turned the DNS and DNS names into a trademark batleground.” 10 3 0 1985 1990 1995 2000 2005 2010 2015 2020 1983: RFC 882 year 1987: RFC 1034 1999: UDRP Launch 1997: Initiating DNS Privatization 1998: ICANN Green/White Paper 5 / 11
10 10 4000 10 9 RFC 1296 ISC dispute cases before WIPO (#) 10 8 3000 domain names (#) 10 7 10 6 2000 .com boom 10 5 2006: RFC 4367 “[...] there has been a strong demand to acquire names that have significance to people, through equivalence to 1000 10 4 registered trademarks, company names, types of services, and so on. There is a danger in this trend [...]” 10 3 0 1985 1990 1995 2000 2005 2010 2015 2020 1983: RFC 882 year 1987: RFC 1034 1999: UDRP Launch 1997: Initiating DNS Privatization 1998: ICANN Green/White Paper 5 / 11
10 10 4000 10 9 RFC 1296 ISC dispute cases before WIPO (#) 10 8 3000 domain names (#) Lessons learnt: 10 7 1. Names are not just labels used to identify things, 10 6 2000 .com boom they require policy and context . 10 5 2. If ICN is to experience its own boom, holistic namespace management is required. 1000 10 4 10 3 0 1985 1990 1995 2000 2005 2010 2015 2020 1983: RFC 882 year 1987: RFC 1034 1999: UDRP Launch 1997: Initiating DNS Privatization 1998: ICANN Green/White Paper 5 / 11
Agenda Introduction Namespace Management in ICN NDNSSEC: NDN + DNSSEC Conclusion and Research Roadmap 6 / 11
Agenda Introduction Namespace Management in ICN NDNSSEC: NDN + DNSSEC Conclusion and Research Roadmap 6 / 11
Namespace Management Concept Generic ICN ICN Namespace N
Namespace Management Concept Generic ICN ICN Namespace N Zone Z i ∈ Z Divided Into Zones
Namespace Management Concept Generic ICN ICN Namespace N manages Zone Z i ∈ Z � Zone Owner authorizes � Producers Divided Into Zones
Namespace Management Concept Generic ICN ICN Namespace N manages Zone Z i ∈ Z � Zone Owner authorizes � Producers provision under Divided Into Zones 7 / 11
Agenda Introduction Namespace Management in ICN NDNSSEC: NDN + DNSSEC Conclusion and Research Roadmap 8 / 11
NDNSSEC DNS Zone Space . com. org. ietf.org. Excerpt of DNS zone records tools.ietf.org 1800 IN RRSIG DNSKEY 7 2 1800 ... tools.ietf.org 1800 IN DNSKEY 256 3 6 ... tools.ietf.org 1800 IN DNSKEY 257 3 7 ... tools.ietf.org.
NDNSSEC: DNS Zone Appropriation for NDN ndnified DNS Zone Space / /com /org /org/ietf Excerpt of DNS zone records tools.ietf.org 1800 IN RRSIG DNSKEY 7 2 1800 ... tools.ietf.org 1800 IN DNSKEY 256 3 6 ... tools.ietf.org 1800 IN DNSKEY 257 3 7 ... /org/ietf/tools
NDNSSEC: Producer Authorization ndnified DNS Zone Space / /com /org � Producer � Zone Owner /org/ietf Excerpt of DNS zone records tools.ietf.org 1800 IN RRSIG DNSKEY 7 2 1800 ... tools.ietf.org 1800 IN DNSKEY 256 3 6 ... tools.ietf.org 1800 IN DNSKEY 257 3 7 ... /org/ietf/tools
NDNSSEC: Producer Authorization ndnified DNS Zone Space / /com /org provides � Producer � Zone Owner credentials /org/ietf Excerpt of DNS zone records tools.ietf.org 1800 IN RRSIG DNSKEY 7 2 1800 ... tools.ietf.org 1800 IN DNSKEY 256 3 6 ... tools.ietf.org 1800 IN DNSKEY 257 3 7 ... /org/ietf/tools
NDNSSEC: Producer Authorization ndnified DNS Zone Space / provides /com /org enlists credentials � Producer � Zone Owner credentials Excerpt of DNS zone records /org/ietf tools.ietf.org 1800 IN RRSIG DNSKEY 7 2 1800 ... tools.ietf.org 1800 IN DNSKEY 256 3 6 ... tools.ietf.org 1800 IN DNSKEY 257 3 7 ... tools.ietf.org 1800 IN DNSKEY XXX X X ... /org/ietf/tools
Recommend
More recommend