[NCAP-Discuss] why enhanced controlled interruption - not legal
Matt Larson
matt.larson at icann.org
Fri Feb 25 19:55:03 UTC 2022
Danny,
> On Feb 25, 2022, at 2:14 PM, Danny McPherson <danny at tcb.net> wrote:
>
> I suppose the author of those comments would also say that ignoring the plausibility of said exfiltration _until someone has made money off the domain sale (i.e., TLD delegated, traffic analyzed, domain registered, registrant does whatever they want, etc..) might well be convenient, but I'm not sure it's what responsible or good looks like.
Are you suggesting that the issue of exfiltration via ECI should be ignored until there is demonstrated harm?
Your comments above don’t appear to align with Verisign’s public comment submission Additional Comments on “Mitigating the Risk of DNS Namespace Collisions” Phase One Report <https://forum.icann.org/lists/comments-name-collision-26feb14/pdfTWUAZM3gBN.pdf>, which reads:
> Verisign maintains its position that directing requesters to an internal address during the controlled interruption period is preferable to an external honeypot, because as previously stated, it avoids “controlled exfiltration” where sensitive traffic from an installed system – without the advance consent of the user or system administrator – may be drawn outside the local network.
Am I not understanding something?
Matt (L.)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mm.icann.org/pipermail/ncap-discuss/attachments/20220225/1336bec6/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 2580 bytes
Desc: not available
URL: <https://mm.icann.org/pipermail/ncap-discuss/attachments/20220225/1336bec6/smime.p7s>
More information about the NCAP-Discuss
mailing list