Home IT infrastructure ICANN plan: corporation proposes new model for managing DNS root servers

ICANN plan: corporation proposes new model for managing DNS root servers

by admin

ICANN Advisory Council on RSSAC Root Server Management proposed a new model DNS root zone management model.It foresees a reduction in the number of active ROCs and the introduction of five new responsible structures. Read more about the model in the subtitle.
ICANN plan: corporation proposes new model for managing DNS root servers / photo Oliver Dean CC

How the root DNS server system is managed

For a long time now, the system consists of of 13 root servers, which are managed by 12 companies under agreements with ICANN. Among these organizations are both independent and state-owned. These companies make all decisions regarding the operation of the COP on their own. You can see a good example of how the coordination of a root server system works in An article by RIPE NCC Internet registrar CTO Andrei Robachevsky
According to this scheme, everything has functioned steadily for years. However, RSSAC wants to make the root DNS servers more transparent and organized.

What is the essence of the RSSAC proposal

Representatives of RSSAC say that they have long analyzed the work of root server operators. And came to the conclusion that the operators’ actions are essentially uncontrolled and based on trust. So they proposed a new model, which they thought would provide more transparency and security.
The main idea is to To create a unified structure of five functional units to manage everything related to cc :

  1. Secretariat Function (SF). This unit is a kind of interface that connects the root server operators and the Internet community. It will act as a kind of platform for discussing technical issues and solving administrative tasks.
  2. Strategy, Architecture, and Policy Function (SAPF). Here they will monitor the performance of the root DNS servers, and propose plans to implement new architectural elements to enhance the security, performance, and scalability of the global system.
  3. Designation and Removal Function (DRF) division. Will conduct audits and make recommendations for designation and termination of COP operators.
  4. Operator Performance Monitoring and Measurement Function (PMMF) unit. This entity will collect metrics and technical data on how productive each operator and the system as a whole is.
  5. Financial Function (FF). This is where the financial component of the entire system will be regulated. The authors of the plan propose to create a fund through which stakeholders can distribute funds for research and emergency situations related to the work of the root DNS servers.

This is what the new system layout looks like as conceived by RSSAC:
ICANN plan: corporation proposes new model for managing DNS root servers
During the model presentation, RSSAC representatives Tripti Sinha and Brad Verd noted that its implementation will reduce the number of root DNS-servers – some of them will be merged (but which and how many, is still unknown). However, as far as the number of Root DNS-servers will become less, the speakers did not specify. In their opinion, reducing the number of root DNS-servers will help to improve the quality of services and control over them.

Community Opinions

One of the residents of The Register, in a comment on the site expressed doubts about the validity of the idea of merging root DNS servers. In his opinion, this would make it easier for hackers to conduct attacks, as consolidation would make it easier to select a target for hacking.
Some remembered the recent WHOIS situation when ICANN tried several times to bring the service in compliance with GDPR and met resistance from the community and registrars, because they could not think through the plan for the implementation of the idea. Because of this history, users said that putting control of the root DNS servers in the hands of ICANN was not the best solution.
However, there were also those who thought the idea was generally a good one, as a clearer management structure should speed up the resolution of security problems.
Note that so far it is not clear whether this proposal will receive any approval from the official structures and governments, so the fate of the project remains unknown.


P.S. More material from the First Blog on Enterprise IaaS:


The main focus of our business is providing cloud services :
Virtual infrastructure (IaaS) | PCI DSS hosting | FZ-152 cloud | Rent 1C in the cloud

You may also like