The paper set forth below, concerning ways to improve technical management of the Internet Domain Name System, is a proposed rule of the Department of Commerce. This same document will be published in the Federal Register in the near future. While the Department will accept comments on the paper starting today, the Federal Register publication will establish the official deadline for the acceptance of public comment on this proposed rule. Comments may be mailed to U.S. Department of Commerce, NTIA/OIA, 14th and Constitution Avenue, N.W., Washington, D.C. 20230 or sent via electronic mail to dns@ntia.doc.gov. Though it is not intended or expected, should any discrepancy occur between the document set forth below and that published in the Federal Register, the Federal Register publication controls. All comments received will be considered exclusively in the context of issuing a final rule. The paper is being made available through the Internet solely as a means to facilitate the public's access to this document and to provide an additional means of notifying the public of the solicitation of public comment on the proposed rule.

Domain names are the familiar and easy-to-remember names for Internet computers (e.g. "www.ecommerce.gov"). They map to unique Internet Protocol (IP) numbers (e.g. 98.37.241.30) that serve as routing addresses on the Internet. The domain name system (DNS) translates Internet names into the IP numbers needed for transmission of information across the network.

History

Today's Internet is an outgrowth of U.S. government investments in packet-switching technology and communications networks carried out under agreements with the Defense Advanced Research Projects Agency (DARPA), the National Science Foundation (NSF) and other U.S. research agencies. The government encouraged bottom-up development of networking technologies through work at NSF, which established the NSFNET as a network for research and education. The NSFNET fostered a wide range of applications, and in 1992 the U.S. Congress gave the National Science Foundation statutory authority to commercialize the NSFNET, which formed the basis for today's Internet.

As a legacy, major components of the domain name system are still performed by or subject to agreements with agencies of the U.S. government.

1) Assignment of numerical addresses to Internet users.

Every Internet computer has a unique IP number. The Internet Assigned Numbers Authority (IANA), headed by Dr. Jon Postel of the Information Sciences Institute (ISI) at the University of Southern California, coordinates this system by allocating blocks of numerical addresses to regional IP registries (ARIN in North America, RIPE in Europe, and APNIC in the Asia/Pacific region), under contract with DARPA. In turn, larger Internet service providers apply to the regional IP registries for blocks of IP addresses. The recipients of those address blocks then reassign addresses to smaller Internet service providers and to end users.

2) Management of the system of registering names for Internet users.

The domain name space is constructed as a hierarchy. It is divided into top-level domains (TLDs), with each TLD then divided into second-level domains (SLDs), and so on. More than 200 national, or country-code, TLDs (ccTLDs) are administered by their corresponding governments or by private entities with the appropriate national government's acquiescence. A small set of generic top-level domains (gTLDs) do not carry any national identifier, but denote the intended function of that portion of the domain space. For example, .com was established for commercial users, .org for not-for-profit organizations, and .net for network service providers. The registration and propagation of these key gTLDs are performed by Network Solutions, Inc. (NSI), a Virginia-based company, under a five-year cooperative agreement with NSF. This agreement includes an optional ramp-down period that expires on September 30, 1998.

3) Operation of the root server system.

The root server system contains authoritative databases listing the TLDs so that an Internet message can be routed to its destination. Currently, NSI operates the "A" root server, which maintains the authoritative root database and replicates changes to the other root servers on a daily basis. Different organizations, including NSI, operate the other 12 root servers. In total, the U.S. government plays a direct role in the operation of half of the world's root servers. Universal connectivity on the Internet cannot be guaranteed without a set of authoritative and consistent roots.

4) Protocol Assignment.

The Internet protocol suite, as defined by the Internet Engineering Task Force (IETF), contains many technical parameters, including protocol numbers, port numbers, autonomous system numbers, management information base object identifiers and others. The common use of these protocols by the Internet community requires that the particular values used in these fields be assigned uniquely. Currently, IANA, under contract with DARPA, makes these assignments and maintains a registry of the assigned values.

The Need for Change

From its origins as a U.S.-based research vehicle, the Internet is rapidly becoming an international medium for commerce, education and communication. The traditional means of organizing its technical functions need to evolve as well. The pressures for change are coming from many different quarters:

-There is widespread dissatisfaction about the absence of competition in domain name registration.

-Mechanisms for resolving conflict between trademark holders and domain name holders are expensive and cumbersome.

-Without changes, a proliferation of lawsuits could lead to chaos as tribunals around the world apply the antitrust law and intellectual property law of their jurisdictions to the Internet.

-Many commercial interests, staking their future on the successful growth of the Internet, are calling for a more formal and robust management structure.

-An increasing percentage of Internet users reside outside of the U.S., and those stakeholders want a larger voice in Internet coordination.

-As Internet names increasingly have commercial value, the decision to add new top-level domains cannot continue to be made on an ad hoc basis by entities or individuals that are not formally accountable to the Internet community.

-As the Internet becomes commercial, it becomes inappropriate for U.S. research agencies (NSF and DARPA) to participate in and fund these functions.

On July 1, 1997, as part of the Clinton Administration's Framework for Global Electronic Commerce, the President directed the Secretary of Commerce to privatize, increase competition in, and promote international participation in the domain name system.

Accordingly, on July 2, 1997, the Department of Commerce issued a Request for Comments (RFC) on DNS administration, on behalf of an inter-agency working group previously formed to explore the appropriate future role of the U.S. government in the DNS. The RFC solicited public input on issues relating to the overall framework of the DNS system, the creation of new top-level domains, policies for registrars, and trademark issues. During the comment period, over 430 comments were received, amounting to some 1500 pages.⁽¹⁾

This discussion draft, shaped by the public input described above, provides notice and seeks public comment on a proposal to improve the technical management of Internet names and addresses. It does not propose a monolithic structure for Internet governance. We doubt that the Internet should be governed by one plan or one body or even by a series of plans and bodies. Rather, we seek to create mechanisms to solve a few, primarily technical (albeit critical) questions about administration of Internet names and numbers.

PRINCIPLES FOR A NEW SYSTEM

Our consultations have revealed substantial differences among Internet stakeholders on how the domain name system should evolve. Since the Internet is changing so rapidly, no one entity or individual can claim to know what is best for the Internet. We certainly do not believe that our views are uniquely prescient. Nevertheless, shared principles have emerged from our discussions with Internet stakeholders.

1. Stability.

The U.S. government should end its role in the Internet number and name address systems in a responsible manner. This means, above all else, ensuring the stability of the Internet. The Internet functions well today, but its current technical management is probably not viable over the long term. We should not wait for it to break down before acting. Yet, we should not move so quickly, or depart so radically from the existing structures, that we disrupt the functioning of the Internet. The introduction of a new system should not disrupt current operations, or create competing root systems.

2. Competition.

The Internet succeeds in great measure because it is a decentralized system that encourages innovation and maximizes individual freedom. Where possible, market mechanisms that support competition and consumer choice should drive the technical management of the Internet because they will promote innovation, preserve diversity, and enhance user choice and satisfaction.

3. Private, Bottom-Up Coordination.

Certain technical management functions require coordination. In these cases, responsible, private-sector action is preferable to government control. A private coordinating process is likely to be more flexible than government and to move rapidly enough to meet the changing needs of the Internet and of Internet users. The private process should, as far as possible, reflect the bottom-up governance that has characterized development of the Internet to date.

4. Representation.

Technical management of the Internet should reflect the diversity of its users and their needs. Mechanisms should be established to ensure international input in decision making.

In keeping with these principles, we divide the name and number functions into two groups, those that can be moved to a competitive system and those that should be coordinated. We then suggest the creation of a representative, not-for-profit corporation to manage the coordinated functions according to widely accepted objective criteria. We then suggest the steps necessary to move to competitive markets in those areas that can be market driven. Finally, we suggest a transition plan to ensure that these changes occur in an orderly fashion that preserves the stability of the Internet.

THE PROPOSAL

The Coordinated Functions

Management of number addresses is best done on a coordinated basis. As technology evolves, changes may be needed in the number allocation system. These changes should also be undertaken in a coordinated fashion.

Similarly, coordination of the root server network is necessary if the whole system is to work smoothly. While day-to-day operational tasks, such as the actual operation and maintenance of the Internet root servers, can be contracted out, overall policy guidance and control of the TLDs and the Internet root server system should be vested in a single organization that is representative of Internet users.

Finally, coordinated maintenance and dissemination of the protocol parameters for Internet addressing will best preserve the stability and interconnectivity of the Internet.

We propose the creation of a private, not-for-profit corporation (the new corporation) to manage the coordinated functions in a stable and open institutional framework. The new corporation should operate as a private entity for the benefit of the Internet as a whole. The new corporation would have the following authority:

1. to set policy for and direct the allocation of number blocks to regional number registries for the assignment of Internet addresses;

2. to oversee the operation of an authoritative root server system;

3. to oversee policy for determining, based on objective criteria clearly established in the new organization's charter, the circumstances under which new top-level domains are added to the root system; and

4.to coordinate the development of other technical protocol parameters as needed to maintain universal connectivity on the Internet.

The new corporation will be funded by domain name registries and regional IP registries. Initially, current IANA staff will move to this new organization to provide continuity and expertise throughout the period of time it takes to establish the new corporation. The new corporation should hire a chief executive officer with a background in the corporate sector to bring a more rigorous management to the organization than was possible or necessary when the Internet was primarily a research medium. As these functions are now performed in the United States, the new corporation will be headquartered in the United States, and incorporated under U.S. law as a not-for-profit corporation. It will, however, have and report to a board of directors from around the world.

It is probably impossible to establish and maintain a perfectly representative board for this new organization. The Internet community is already extraordinarily diverse and likely to become more so over time. Nonetheless, the organization and its board must derive legitimacy from the participation of key stakeholders. Since the organization will be concerned mainly with numbers, names and protocols, its board should represent membership organizations in each of these areas, as well as the direct interests of Internet users.

The board of directors for the new corporation should be balanced to equitably represent the interests of IP number registries, domain name registries, domain name registrars, the technical community, and Internet users (commercial, not-for-profit, and individuals). Officials of governments or intergovernmental organizations should not serve on the board of the new corporation. Seats on the initial board might be allocated as follows:

1. -three directors from a membership association of regional number registries, representing three different regions of the world. Today this would mean one each from ARIN, APNIC and RIPE. As additional regional number registries are added, board members could be designated on a rotating basis or elected by a membership organization made up of regional registries. ARIN, RIPE and APNIC are open membership organizations that represent entities with large blocks of numbers. They have the greatest stake in and knowledge of the number address system. They are also representative internationally.
2. -two members designated by the Internet Architecture Board (IAB), an international membership board that represents the technical community of the Internet.
3. -two members designated by a membership association (to be created) representing domain name registries and registrars.
4. -seven members designated by a membership association (to be created) representing Internet users. At least one of those board seats could be designated for an individual or entity engaged in non-commercial, not-for-profit use of the Internet, and one for individual end users. The remaining seats could be filled by commercial users, including trademark holders.
5. -the CEO of the new corporation would serve on the board of directors.

In performing the functions listed above, the new corporation will act much like a standard-setting body. To the extent that the new corporation operates in an open and pro-competitive manner, its actions will withstand antitrust scrutiny. Its standards should be reasonably based on, and no broader than necessary to promote its legitimate coordinating objectives. Under U.S. law, a standard-setting body can face antitrust liability if it is dominated by an economically interested entity, or if standards are set in secret by a few leading competitors. But appropriate processes and structure will minimize the possibility that the body's actions will be, or will appear to a court to be, anticompetitive.

The Competitive Functions

The system for registering second-level domain names and the management of the TLD registries should become competitive and market-driven.

In this connection, we distinguish between registries and registrars. A "registry," as we use the term, is responsible for maintaining a TLD's zone files, which contain the name of each SLD in that TLD and each SLD's corresponding IP number. Under the current structure of the Internet, a given TLD can have no more than one registry. A "registrar" acts as an interface between domain-name holders and the registry, providing registration and value-added services. It submits to the registry zone file information and other data (including contact information) for each of its customers in a single TLD. Currently, NSI acts as both the exclusive registry and as the exclusive registrar for .com, .net, .org, and .edu.

Both registry and registrar functions could be operated on a competitive basis. Just as NSI acts as the registry for .com, .net, and .org, other companies could manage registries with different TLDs such as .vend or .store. Registrars could provide the service of obtaining domain names for customers in any gTLD. Companies that design Web sites for customers might, for example, provide registration as an adjunct to other services. Other companies may perform this function as a stand-alone business.

There appears to be strong consensus that, at least at this time, domain name registration - the registrar function - should be competitive. There is disagreement, however, over the wisdom of promoting competition at the registry level.

Some have made a strong case for establishing a market-driven registry system. Competition among registries would allow registrants to choose among TLDs rather than face a single option. Competing TLDs would seek to heighten their efficiency, lower their prices, and provide additional value-added services. Investments in registries could be recouped through branding and marketing. The efficiency, convenience, and service levels associated with the assignment of names could ultimately differ from one TLD registry to another. Without these types of market pressures, they argue, registries will have very little incentive to innovate.

Others feel strongly, however, that if multiple registries are to exist, they should be undertaken on a not-for-profit basis. They argue that lack of portability among registries (that is, the fact that users cannot change registries without adjusting at least part of their domain name string) could create lock-in problems and harm consumers. For example, a registry could induce users to register in a top-level domain by charging very low prices initially and then raise prices dramatically, knowing that name holders will be reluctant to risk established business by moving to a different top-level domain.

We concede that switching costs and lock-in could produce the scenario described above. On the other hand, we believe that market mechanisms may well discourage this type of behavior. On balance, we believe that consumers will benefit from