Could someone create a replacement for DNS entirely please?
DNS does WAY more than what the typical user needs it for and services that present it are resultantly much more complex than what is needed for the 99% use case.
The 99% use case: resolve x.y.z to some IP address.
What I think should happen:
1. At each level, a public/private keypair is used to authenticate valid records for the name. Eg: .com has public/private keypair(s) to represent who can sign x.com records. .com owner only needs to publish these. Reliable sources ( ISPs etc ) can then share these.
2. The x.com records themselves would be: Mapping from x.com to IP address(s) / public key.
3. The x.com owners could then publish out their x.y.com records freely and they could be mirrored by everyone.
Unlike the current methodology, there would be far less need to trust where you get the records from. The public/private keypairs should change WAY less frequently.
Agreeably in such a widely distributed system you wouldn't have nice TTL, but that is for the better. DNS records should not be changing that frequently.
Such a new system also should be done in a fully distributed way and NOT controlled by a bunch of money grubbing bastards who make way too much money from records.
It should NOT cost $20/yr to own a record pointing x.y to a number. It's absurd and really needs to stop.
No. My point isn't to use security on top of existing DNS records. My point is to make a brand new distributed system entirely that is free for all instead of run by a bunch of greedy internet thugs.
DNS does WAY more than what the typical user needs it for and services that present it are resultantly much more complex than what is needed for the 99% use case.
The 99% use case: resolve x.y.z to some IP address.
What I think should happen:
1. At each level, a public/private keypair is used to authenticate valid records for the name. Eg: .com has public/private keypair(s) to represent who can sign x.com records. .com owner only needs to publish these. Reliable sources ( ISPs etc ) can then share these.
2. The x.com records themselves would be: Mapping from x.com to IP address(s) / public key.
3. The x.com owners could then publish out their x.y.com records freely and they could be mirrored by everyone.
Unlike the current methodology, there would be far less need to trust where you get the records from. The public/private keypairs should change WAY less frequently.
Agreeably in such a widely distributed system you wouldn't have nice TTL, but that is for the better. DNS records should not be changing that frequently.
Such a new system also should be done in a fully distributed way and NOT controlled by a bunch of money grubbing bastards who make way too much money from records.
It should NOT cost $20/yr to own a record pointing x.y to a number. It's absurd and really needs to stop.