<html><head><meta http-equiv="Content-Type" content="text/html charset=iso-8859-1"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; ">Dominique,<div><br></div><div>We've been over this before.</div><div><br></div><div>It is simply not possible for the US government to _unilaterally_ remove DNS access to a country. The most the US government could do would be to direct its contractors to remove the ccTLD's records from the root zone. That inappropriately modified root zone must then be pulled from the Verisign distribution server and installed on the root servers around the world. Since the root server operators are independent, whether they accept a root zone that has been modified inappropriately is each their own decision (and several have gone on record claiming the "value add" they bring and why there can be no single body to which they are accountable is precisely to act as this check and balance).</div><div><br></div><div>If the US government were to undertake such an action, it would immediately and irrevocably lead to a Internet-wide governance crisis in which the current mechanisms by which the root is maintained would undoubtedly be the first victim. It would not result in the country's DNS access removed, but would, instead, be _much_ more likely to remove the US government from its role in root maintenance.</div><div><br></div><div>Regards,</div><div>-drc</div><div><br></div><div><div><div>On Dec 18, 2012, at 8:07 AM, Dominique Lacroix <<a href="mailto:dl@panamo.eu">dl@panamo.eu</a>> wrote:</div><br class="Apple-interchange-newline"><blockquote type="cite">
<meta content="text/html; charset=UTF-8" http-equiv="Content-Type">
<div bgcolor="#FFFFFF" text="#000000">
<div class="moz-cite-prefix"><big><big>Do you agree with that
drawing of the management of the root file? <br>
<br>
<a class="moz-txt-link-freetext" href="http://reseaux.blog.lemonde.fr/2012/09/02/controle-internet/">http://reseaux.blog.lemonde.fr/2012/09/02/controle-internet/</a><br>
<br>
@+, Dom</big></big><br>
<br>
<br>
Le 18/12/12 16:46, McTim a écrit :<br>
</div>
<blockquote cite="mid:CACAaNxiLOFpw=XR7FJAYH+QnAGf+-sEiH_oC+TrkpBoDrqOKfQ@mail.gmail.com" type="cite">
<pre wrap="">About Verisign, I agree that it's a short expression for an actual reality:
US gov COULD cut DNS access to any country in the world. Verisign would just
execute orders.
</pre>
<pre wrap="">
Please explain how this is technically possible. To my knowledge, it
is not (and I have worked for 2 root-server operators).
Are you talking about removing a ccTLD from the root zone?
Are you talking about Verisign dropping queries from IP address blocks
to the 2 root servers they operate?
While the first is not possible for the USG to accomplish, the second
is technically possible, but
doesn't mean that a nation state would be denied access to the DNS
root from all root servers.
</pre>
</blockquote>
<br>
</div>
____________________________________________________________<br>You received this message as a subscriber on the list:<br> <a href="mailto:governance@lists.igcaucus.org">governance@lists.igcaucus.org</a><br>To be removed from the list, visit:<br> <a href="http://www.igcaucus.org/unsubscribing">http://www.igcaucus.org/unsubscribing</a><br><br>For all other list information and functions, see:<br> <a href="http://lists.igcaucus.org/info/governance">http://lists.igcaucus.org/info/governance</a><br>To edit your profile and to find the IGC's charter, see:<br> <a href="http://www.igcaucus.org/">http://www.igcaucus.org/</a><br><br>Translate this email: <a href="http://translate.google.com/translate_t">http://translate.google.com/translate_t</a><br></blockquote></div><br></div></body></html>