<HTML>
<HEAD>
<META http-equiv="Content-Type" content="text/html; charset=UTF-8">
</HEAD>
<BODY>
<PRE style="color: #000000; font-family: Arial, sans-serif; font-size: 13px; line-height: 16px; margin: 0px; padding: 0px; background:#ffffff; white-space : pre-wrap; ">
>From: "Joe Baptista" <baptista@publicroot.org>
>To: "Lauren Weinstein" <lauren@vortex.com>
>Cc: <nnsquad@nnsquad.org>
>Date: January 29, 2010 03:49:44 PM EST
>Subject: [ NNSquad ] Re: Privacy issues in proposed DNS protocol extension
>
></PRE>
<DIV align="left" style="margin-left:10px;">
<DIV>I'm taking this opportunity and invitation from Lauren to address the privacy issues in the Google DNSEXT proposal.<BR>
<BR>This protocol will be welcomed by big business. It's perfect for targeted marketing campaigns. Based on your IP address an authoritative name server can direct your query to specific resources.<BR>
<BR>The new protocol will allow geo-targeted responses based on the users network address location. The rationalization seems to be that a user will be better served by a nearby server therefore improving speed, latency, and network utilization.<BR>
<BR>I'm sure the protocol will be used for this purpose in some cases but not in all. I predict the use of the protocol by big business will have less to do with improving the user experience and more to do with target marketing efforts. After all if they know where you live they can better target their products and services to you.<BR>
<BR>Those concerned about privacy have good reason to red flag this protocol. The user will have less privacy in the DNS then they do now. Thats a given. Even with the recommended anonymization procedure privacy issues are a concern.<BR>
<BR>But let's not forget that every time you visit a web site your IP address is known. Is it a big deal that now the DNS servers know your network address? If the protocol becomes a reality I have no doubt that with the state of the DNS and security issues these days that abuses will happen.<BR>
<BR>There will be provacy issues when it comes to anonymous proxy services. Anonymous proxies are used to hide users IP addresses from websites. It seems to me the new Google DNSEXT protocol may defeat the purpose behind anonymous proxy services.<BR>
<BR>regards<BR>joe baptista<BR>
<BR>
<DIV class="gmail_quote">On Wed, Jan 27, 2010 at 10:22 PM, Lauren Weinstein <SPAN dir="ltr"><<A href="mailto:lauren@vortex.com">lauren@vortex.com</A>></SPAN> wrote:<BR>
<BLOCKQUOTE class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<BR>
Several people have already asked me about the privacy implications<BR>
associated with <A href="http://bit.ly/cAS0rO" target="_blank">http://bit.ly/cAS0rO</A> (Google Code Blog).<BR>
<BR>
For now, I recommend reading the full Draft:<BR>
<BR>
<A href="http://bit.ly/bf7wa7" target="_blank">http://bit.ly/bf7wa7</A> (IETF)<BR>
<BR>
for details, but the executive summary is that the default<BR>
recommendation is anonymization of the low order octet of IP<BR>
addresses, and includes a mechanism for full address opt-out<BR>
From the extension (see section 8.1).<BR>
<BR>
I welcome discussion here in NNSquad of the perceived implications of<BR>
this proposal, both positive and/or negative.<BR>
<BR>
--Lauren--<BR>
NNSquad Moderator<BR>
</BLOCKQUOTE>
</DIV>
<BR>
<BR>
</DIV>
</DIV>
<div style="margin:0;padding:5px;background-color:#fff;clear:both;border-top: 1px solid #ccc;" bgcolor="#ffffff">
<table border="0" cellspacing="0" cellpadding="0" width="100%" style="background-color:#fff" bgcolor="#ffffff">
<tr>
<td padding="4px">
<font color="#333333" size="1" style="font-family:helvetica, sans-serif;">
<a style="text-decoration:none;color:#669933;border-bottom: 1px solid #444444"
href="https://www.listbox.com/member/archive/247/=now" title="Go to archives for ip">Archives</a>
<a border="0" style="text-decoration:none;color:#669933" href="https://www.listbox.com/member/archive/rss/247/" title="RSS feed for ip"><img border=0 src="https://www.listbox.com/images/feed-icon-10x10.jpg"></a>
<td valign="top" align="right"><a style="border-bottom:none;" href="http://www.listbox.com">
<img src="https://www.listbox.com/images/listbox-logo-small.png"
title="Powered by Listbox" border="0" /></a></td>
</font>
</td>
</tr>
</table>
</div>
</BODY>
</HTML>