Rethinking how the internet works | The Coffeehouse

BenZilla

http://news.bbc.co.uk/2/hi/technology/4954208.stm

What do you guys think? How would we solve this problem?

JohnAskew
9 girl in pink sweater

Start from scratch?

DataDog

There is no other way then how it setup now. The internet is a worldwide network...of course your internet dealings go through other computers The only way to keep security up on the internet is for people to keep their computer secure. Stop downloading crap you don't even know what it is. Tongue Out

alwaysmc2
It's not stupid; It's advanced!

hey! You know what? They should work on a new internet. Hmmm... like internet 2.0. Yeah. Wink

W3bbo
The Master of Baiters

BenZilla wrote:
http://news.bbc.co.uk/2/hi/technology/4954208.stm

What do you guys think? How would we solve this problem?

This article is scaremongering. Sure, in theory DNS poisioning is possible, but in practice it isn't.... I don't think we've had any major poisioning for a looong time now. Besides a lot of the "critical" websites have their addresses hardcoded in Windows (right?)

IRenderable
Pi

alwaysmc2 wrote:
hey! You know what? They should work on a new internet. Hmmm... like internet 2.0. Yeah.

They have,
You just don't get it.

alwaysmc2
It's not stupid; It's advanced!

IRenderable wrote:

alwaysmc2 wrote: hey! You know what? They should work on a new internet. Hmmm... like internet 2.0. Yeah.

They have,
You just don't get it.

mmhm. I know about it.

leroy
I don't need no stinkin' avatar...

Whilst I feel there's something fundamentally wrong with a domain name jumping through 42 different name servers for resolution, it's those damn fool admins that don't keep their boxes patched that are the problem Smiley

Edit: It's important to note that The Internet isn't the problem. The Internet would tick along just fine without the naming infrastructure; we'd just lose a few really helpful things and all be forced to remember IP addresses.

staceyw
Before C# there was darkness...

BenZilla wrote:
http://news.bbc.co.uk/2/hi/technology/4954208.stm What do you guys think? How would we solve this problem?

Good question.Identity is the primary problem IMO. If Net2 had a real Identity system at its core, many things can happen. You can just about wipe-out spam and phishing. This does, however, require you loose total anonymity. You could talk for weeks about the cypto options and certs, but the general idea is:

1) The namespace is controlled by an LLC of 3 or more companies.
2) All domain names come with a cert (or some kind of PKI thingy)
3) You *need a credit card number and SS# and home address to get a domain name and you must have a domain name w/ cert to access the new network. Registration pin goes to *home, so you must have a non PO Box address. Only the TLD knows this info.

So what does that give us?:

1) Spam goes away. It does not stop someone from trying it, but they get kicked off the network quick or added to a global blacklist until "net court" review. They now can know *exactly who it is and where they live. No more anonymous - so that is the first diterent.
2) No more kiddie (I need to watch my language) and can be found same way as #1.
3) No more phishing because of identity proof.
4) PTP VPNs become simple and almost automatic because of the identity and pki.
5) cert issues go away. No more self signed certs or getting ripped off to buy one. You get one (or more) with your domain name and is required to make all this work.
6) Venders get better security via identity system to fight fraud.
7) Consumers have more assurance of Vender identity. Verified by Visa could be worked in somehow.

I think DNS can already support this with minor updates, but the peer-to-peer naming for IPV6 seems interesting too. Either way, it can be done.Don't want to give your info to sign up? That is fine, stay in Net1, nobody is twisting any arms to join. Microsoft can even start one as a public proof of concept to shake out and find the issues.