What is Verisign, Inc. and what is its primary role in the internet infrastructure?

Verisign, Inc. is an American company that operates critical network infrastructure. Its primary roles include managing two of the Internet's thirteen root nameservers and acting as the authoritative registry for several top-level domains (TLDs) such as .com, .net, and .name. It also provides back-end systems for other TLDs like .jobs and .edu. Essentially, Verisign plays a crucial role in the fundamental addressing and stability of the internet.

Where is Verisign, Inc. headquartered, and in which state is it incorporated?

Verisign, Inc. is headquartered in Reston, Virginia, in the United States. The company is incorporated in Delaware, a common practice for many large corporations due to its favorable corporate laws.

What are the key top-level domains (TLDs) for which Verisign serves as the authoritative registry?

Verisign serves as the authoritative registry for the generic top-level domains (gTLDs) .com, .net, and .name. It is also the contracted registry operator for the country-code top-level domain (ccTLD) .cc, which is officially associated with the Cocos Islands.

Besides its direct registry operations, what other TLDs does Verisign support?

Verisign acts as the primary technical subcontractor for the sponsored top-level domains (sTLDs) .jobs and .edu. In this capacity, Verisign manages the technical backend operations, including maintaining the zone files and hosting the domains, for the non-profit organizations that are the official registry operators.

How does Verisign's role as a registry operator differ from that of a domain name registrar?

Registry operators, like Verisign for .com and .net, function as the central administrators or 'wholesalers' of internet domain names for specific TLDs. Domain name registrars, conversely, act as 'retailers,' interacting directly with the public to sell and manage domain name registrations.

How does Verisign ensure the reliability and availability of its operated root servers?

Verisign enhances the reliability and availability of its A and J root servers by making them 'anycasted.' This means the servers are accessible from multiple network locations, distributing traffic and ensuring that a failure in one location does not disrupt service. This strategy also helps mitigate threats like distributed denial-of-service attacks.

When was Verisign founded, and who was its founder?

Verisign was founded on April 12, 1995. Its founder is James Bidzos.

What was Verisign's initial mission upon its founding?

The company's initial mission was focused on establishing trust for the internet and electronic commerce through its Digital Authentication services and products, which included digital certificates.

What significant acquisition did Verisign make in 2000, and what did it gain from this acquisition?

In 2000, Verisign acquired Network Solutions for $21 billion. This major acquisition brought the operational responsibility for the .com, .net, and .org top-level domains under Verisign's umbrella, significantly expanding its core business in internet naming services.

What part of the Network Solutions business did Verisign divest in 2003, and why?

Verisign divested the retail domain name registrar business of Network Solutions in 2003 for $100 million. This strategic move allowed Verisign to concentrate on its core function as a domain name registry (wholesale provider) and align with ICANN's objective of fostering a competitive domain name marketplace.

What major business unit did Verisign sell to Symantec in 2010, and for how much?

In 2010, Verisign sold its authentication business unit to Symantec for $1.28 billion. This unit included key services such as Secure Sockets Layer (SSL) certificates, public key infrastructure (PKI), the Verisign Trust Seal, and Verisign Identity Protection (VIP) services.

What services were transferred to Neustar, Inc. from Verisign in 2018?

In October 2018, Neustar, Inc. acquired Verisign's Security Service Customer Contracts. These contracts encompassed services like Distributed Denial of Service (DDoS) protection, Managed DNS, DNS Firewall, and fee-based Recursive DNS services.

Why did Verisign relocate its headquarters from Mountain View, California, to Reston, Virginia?

Verisign moved its headquarters to Reston, Virginia, primarily because a significant majority, about 95%, of its business operations were located on the East Coast of the United States. This relocation aimed to better align its corporate presence with its operational focus.

What are Verisign's two main business divisions as described in the text?

Verisign operates through two main business divisions: Naming Services, which encompasses the management of top-level domains and critical internet infrastructure, and Network Intelligence and Availability (NIA) Services, which includes DDoS mitigation, managed DNS, and threat intelligence.

What happened in January 2001 concerning Verisign's code signing certificates?

In January 2001, Verisign mistakenly issued two Class 3 code signing certificates to an individual posing as a Microsoft employee. This error created a security risk because these certificates could be used to digitally sign software, making potentially malicious programs appear legitimate and trustworthy.

What was the security implication of the erroneous Verisign certificates issued in 2001?

The erroneous certificates posed a significant security risk because they were not automatically detectable as revoked. This meant that software signed with these fraudulent certificates could still be trusted by users, potentially leading to the installation of malware or other security compromises.

What legal issue did Verisign face in 2002 related to domain transfers?

Verisign was sued in 2002 for 'domain slamming.' This practice involves transferring a customer's domain name registration to a different registrar without proper authorization or through deceptive means, often making the customer believe they were merely renewing their existing registration.

What was the outcome of the 2002 domain transfer lawsuit against Verisign?

Although Verisign was not found to have violated the law, the lawsuit resulted in court-mandated restrictions. The company was prohibited from suggesting that a domain name was about to expire or from falsely claiming that a domain transfer constituted a renewal.

Describe the 'Site Finder' service and the controversy surrounding it in 2003.

Site Finder was a service introduced by Verisign in September 2003 that redirected web browsers to a search service whenever users attempted to access non-existent .com or .net domain names. The controversy arose because ICANN contended that this service exceeded the scope of Verisign's contract with the U.S. Department of Commerce, which governed its operation of the DNS for these TLDs.

How did Verisign resolve its dispute with ICANN over the Site Finder service?

Following the shutdown of Site Finder due to ICANN's objections, Verisign filed a lawsuit in February 2004 seeking legal clarity on its service offerings. This legal process eventually led to a proposed settlement in late 2005, which established a framework for introducing new registry services within the .com domain.

Why did Verisign agree to relinquish control of the .org top-level domain in 2003?

Verisign relinquished its operation of the .org TLD in 2003 as part of ICANN's strategic goal to promote competition within the domain name market. This action was undertaken in exchange for a guaranteed continuation of its contract to manage the highly valuable .com TLD.

What factors contributed to Verisign retaining the contract to operate the .net domain in 2005?

Verisign successfully retained the .net domain contract through a combination of factors. These included endorsements from major IT companies, its proven track record in managing the domain, concerns about national security implications related to foreign bidders, and the domain's critical role in supporting essential network services.

When did Verisign disclose a significant data breach, and what was the main criticism regarding this disclosure?

Verisign disclosed in February 2012 that its network security had been breached multiple times during 2010. The company faced significant criticism for the substantial delay in reporting the breaches and for allegedly attempting to obscure the information within an SEC filing.

What action did Verisign take in November 2010 concerning websites involved in illegal activities?

Acting under orders from U.S. law enforcement, Verisign, as the registry operator for .com, executed takedowns of 82 websites that were reportedly engaged in the illegal sale and distribution of counterfeit goods.

What concern did the Electronic Frontier Foundation (EFF) raise following the 2010 website seizures?

Following the seizure of numerous .com domains and related events like the disruption of WikiLeaks, the EFF voiced concerns about the potential risks associated with concentrating control over critical internet infrastructure, such as the Domain Name System (DNS), in the hands of private corporations.

What did the U.S. government assert in March 2012 regarding its authority over certain domain names?

In March 2012, the U.S. government declared its authority to seize domain names ending in TLDs like .com, .net, and .cc if the companies administering these domains were based within the United States. This assertion indicated a willingness to exert control over domain names even when the end-user or website operator was located elsewhere.

What specific action did Verisign take in March 2012 under a court order related to domain seizure?

In March 2012, Verisign shut down the sports-betting website Bodog.com after receiving a court order directing the action, despite the domain name being registered to a company based in Canada. This demonstrated Verisign's compliance with U.S. legal directives concerning domain names it manages.

How did Verisign's role in operating the .gov top-level domain change in 2023?

Verisign had operated the registry services for the .gov top-level domain since 2011. However, in 2023, the Cybersecurity and Infrastructure Security Agency (CISA) selected Cloudflare to take over as the operator of the .gov domain, replacing Verisign in this role.

What was the historical significance of Network Solutions' contract with the National Science Foundation (NSF)?

Network Solutions' contract with the NSF, awarded in 1993, was foundational as it granted them the responsibility for managing and operating the civilian aspects of Internet domain name registrations. This early role laid the groundwork for the centralized domain management system that Verisign would later inherit and evolve.

How did Verisign's headquarters evolve over time, including its current location?

Verisign's headquarters were originally in Mountain View, California. Following the sale of its authentication business, the company relocated its headquarters to Reston, Virginia, purchasing the former Sallie Mae headquarters building in 2011, which serves as its current corporate base.

What is the purpose of Verisign's mirrored data centers?

Verisign operates three data center properties, which are mirrored to ensure high availability and resilience. This mirroring means that if one data center experiences an outage or disaster, operations can continue seamlessly from another, minimizing disruption to its critical internet services.

What was the core issue in the 2001 code signing certificate mistake?

The core issue was that Verisign mistakenly issued digital certificates that falsely authenticated software as originating from Microsoft. This allowed malicious software to appear legitimate, posing a significant security risk to users who might install it, believing it was official and safe.

What is the significance of Verisign operating two root servers (A and J)?

Operating two of the thirteen global root servers (A and J) places Verisign at a critical juncture of the internet's infrastructure. These servers are essential for the Domain Name System (DNS) resolution process, directing traffic across the internet. Verisign's role ensures a vital part of the internet's foundational addressing system remains operational and accessible.

What was the outcome of the U.S. government's decision to relinquish oversight of the Internet's domain-naming system?

Although Verisign's stock price initially declined upon the announcement in 2014, ICANN ultimately decided to continue Verisign's crucial role as the root zone maintainer. This led to a new contract in 2016, demonstrating that Verisign's function was deemed essential even as governmental oversight shifted to non-governmental entities like ICANN.

What is Verisign's role in relation to the .edu and .jobs top-level domains?

Verisign serves as the primary technical subcontractor for the .edu and .jobs sponsored top-level domains. This involves managing the technical backend infrastructure, such as maintaining zone files and hosting domain data, for the non-profit organizations that are the official registry operators.

What controversy arose from Verisign's 'Site Finder' service in 2003?

The 'Site Finder' service, which redirected users of non-existent .com or .net domains to a search page, sparked controversy because ICANN argued it violated Verisign's contract with the U.S. Department of Commerce. ICANN believed Verisign was overstepping its authority as the DNS operator for these TLDs.

Verisign Wiki: Verisign: The Digital Foundation of the Internet

Dive in with Flashcard Learning!

When you are ready...
🎮 Play the Wiki2Web Clarity Challenge Game🎮

About Verisign, Inc.

Corporate Overview

Verisign, Inc. is a prominent American corporation headquartered in Reston, Virginia. It plays a pivotal, albeit often behind-the-scenes, role in the global Internet infrastructure. The company is primarily recognized for operating critical network services, including managing two of the thirteen authoritative root nameservers for the Internet. Furthermore, Verisign serves as the authoritative registry for several key generic top-level domains (gTLDs) such as .com and .net, alongside country-code top-level domains (ccTLDs) like .cc.

Core Business Areas

Verisign's operations are broadly categorized into two main divisions:

Naming Services: This division is the cornerstone of Verisign's business, encompassing the management of top-level domains (TLDs) and the foundational infrastructure for Internet addressing. It includes the operation of the .com, .net, and .name registries, as well as providing registry services for .jobs and .edu.
Network Intelligence and Availability (NIA) Services: This segment focuses on security and performance, offering services such as Distributed Denial of Service (DDoS) mitigation, managed DNS, and threat intelligence solutions.

Historically, Verisign also operated a significant authentication business, which included Secure Sockets Layer (SSL) certificates and Public Key Infrastructure (PKI) services. This unit was divested to Symantec in 2010, marking a strategic shift towards its core infrastructure focus.

Market Position

As the registry operator for .com, the most widely used top-level domain globally, Verisign holds a position of immense importance in the digital ecosystem. The stability and security of these domain name systems are critical for the functioning of the Internet, making Verisign a key player in ensuring online connectivity and trust.

Historical Trajectory

Genesis and Early Growth

Verisign was established in 1995, emerging from a spin-off of the certification services business of RSA Security. Its initial mission was to provide digital trust and authentication services for the burgeoning Internet and electronic commerce, leveraging key cryptographic patents. By the year 2000, Verisign had solidified its position in Internet infrastructure through the acquisition of Network Solutions for $21 billion. Network Solutions was instrumental in managing the .com, .net, and .org top-level domains under agreements with the U.S. Department of Commerce and ICANN.

1995: Founded as a spin-off from RSA Security, focusing on digital authentication.
2000: Acquired Network Solutions, gaining control over critical domain name registries (.com, .net, .org).
2003: Divested the retail domain name registrar business of Network Solutions, retaining the wholesale registry functions as its core Internet addressing business.
2003: Agreed to relinquish operation of the .org TLD to foster competition, while retaining .com.
2005: Secured a contract extension to manage the .net TLD.

Strategic Realignment

In a significant strategic move in 2010, Verisign sold its authentication services unit, which included SSL certificates and PKI services, to Symantec for $1.28 billion. This transaction allowed Verisign to concentrate on its foundational Internet infrastructure and security services. Concurrently, the company relocated its headquarters from Mountain View, California, to Reston, Virginia, reflecting the geographic concentration of its business operations on the East Coast. Verisign also continued to operate critical infrastructure services, including managing the .gov domain for the General Services Administration until 2023.

2010: Sold authentication business (SSL, PKI) to Symantec.
2011: Relocated headquarters to Reston, Virginia.
2011: Selected to operate the .gov TLD registry services.
2017: Symantec sold the acquired authentication unit to DigiCert.
2018: NeuStar acquired Verisign's Security Service Customer Contracts.
2023: Lost the .gov TLD contract to Cloudflare.

Core Internet Services

Domain Name Registries

Verisign's primary contribution to the Internet's functioning lies in its role as a domain name registry operator. It manages the authoritative databases for several critical top-level domains:

.com and .net: These are the most significant gTLDs, forming the backbone of a vast number of online services and businesses. Verisign's stewardship ensures the stability and availability of these essential naming conventions.
.name: This gTLD is specifically designated for individuals and families.
.cc: A ccTLD associated with the Cocos (Keeling) Islands, widely adopted for commercial and community use.
Sponsored TLDs: Verisign also acts as the technical subcontractor for .jobs and .edu, maintaining their respective zone files and hosting services for their non-profit registry operators.

As a registry operator, Verisign functions as the "wholesaler" of domain names, providing the backend infrastructure that allows domain name registrars (the "retailers") to offer domain registration services to the public.

Root Server Operations

Verisign operates two of the thirteen globally distributed "root nameservers," identified as the 'A' and 'J' servers. These servers are fundamental to the Domain Name System (DNS), acting as the highest level in the hierarchical structure that translates human-readable domain names into machine-readable IP addresses. The 'A' and 'J' root servers are "anycasted," meaning they are accessible from multiple network locations, enhancing redundancy and resilience against failures or attacks. Verisign's role in maintaining these root servers is critical for the overall stability and accessibility of the Internet.

Network Intelligence and Availability

Beyond its core naming services, Verisign provides Network Intelligence and Availability (NIA) services. These offerings are designed to enhance network security and performance. Key services include:

DDoS Mitigation: Protecting networks from Distributed Denial of Service attacks that aim to disrupt online services.
Managed DNS: Providing reliable and secure DNS resolution services.
Threat Intelligence: Offering insights and data to help organizations understand and combat cyber threats.

Navigating Challenges: Controversies

Security and Trust Issues

Verisign has faced several controversies related to security and operational integrity:

2001 Code Signing Certificate Mistake: Verisign mistakenly issued fraudulent code signing certificates, posing a security risk that required Microsoft to issue a special patch to revoke them. This incident highlighted vulnerabilities in certificate issuance processes.
2010 Data Breach: The company disclosed that its network had been breached multiple times in 2010. While Verisign asserted that the core DNS infrastructure remained unaffected, the delayed disclosure and lack of detail drew criticism and raised concerns about the trustworthiness of its SSL certificates.

The 2001 incident involved the issuance of two Class 3 code signing certificates to an individual impersonating a Microsoft employee. The delay in detection and revocation meant that these certificates could have been used to sign malicious software, potentially deceiving users into trusting it. The 2010 breach, revealed in 2012, involved multiple intrusions, with the company providing limited information about the nature of the data compromised, leading to speculation about its impact on customer trust.

Legal and Operational Disputes

Operational practices and contractual obligations have also led to legal challenges and disputes:

2002 Domain Transfer Lawsuit: Verisign was sued for "domain slamming," the practice of unfairly transferring domain names from other registrars. While not found to have broken the law, the company was barred from misleading practices related to domain renewals and transfers.
2003 Site Finder Legal Case: Verisign's introduction of "Site Finder," a service that redirected non-existent .com and .net domains to a search page, led to a dispute with ICANN. ICANN argued it violated contractual terms, resulting in the service's shutdown and subsequent litigation, which eventually led to a settlement defining new registry service introduction processes.
2010/2012 Website Domain Seizures: In response to U.S. law enforcement orders, Verisign executed takedowns of websites involved in illegal activities, such as counterfeit goods distribution. This highlighted the company's role in enforcing legal directives within the domain name system and sparked discussions about centralized control versus decentralized Internet infrastructure.

The domain slamming lawsuit centered on allegations that Verisign misled domain registrants into transferring their domains. The Site Finder case involved a complex legal battle over the interpretation of Verisign's contract with the U.S. Department of Commerce and ICANN, concerning the scope of services a registry operator could offer. The domain seizures, particularly in 2010 and 2012, involved Verisign acting on court orders to disable websites, which raised concerns among digital rights advocates about the potential for censorship and the concentration of power in domain management.

Teacher's Corner

Edit and Print this course in the Wiki2Web Teacher Studio

Edit and Print Materials from this study in the wiki2web studio

Click here to open the "Verisign" Wiki2Web Studio curriculum kit

Use the free Wiki2web Studio to generate printable flashcards, worksheets, exams, and export your materials as a web page or an interactive game.

True or False?

Test Your Knowledge!

Gamer's Corner

Are you ready for the Wiki2Web Clarity Challenge?

Learn about verisign while playing the wiki2web Clarity Challenge game.

Unlock the mystery image and prove your knowledge by earning trophies. This simple game is addictively fun and is a great way to learn!

Play now

Explore More Topics

Discover other topics to study!

captaincy of rio de janeiro

water pollution

asia

william pitt the younger

78th british academy film awards

References

A full list of references for this article are available at the Verisign Wikipedia page

Feedback & Support

To report an issue with this page, or to find out ways to support the mission, please click here.

Disclaimer

Important Notice

This page has been meticulously crafted by an Artificial Intelligence, serving as an educational resource based on publicly available data. While every effort has been made to ensure accuracy and comprehensiveness, the content reflects a snapshot of information and may not encompass all nuances or the absolute latest developments.

This content is not professional advice. The information provided herein is intended for informational and educational purposes only and does not constitute legal, technical, or business advice. Users should consult with qualified professionals for advice tailored to their specific circumstances. Reliance on any information provided on this page is solely at the user's own risk.

The creators of this page are not liable for any errors, omissions, or consequences arising from the use of the information presented.

Verisign: The Digital Foundation

💡 Dive in with Flashcard Learning! 💡

About Verisign, Inc. ℹ️

🏢 Corporate Overview

🔗 Core Business Areas

📈 Market Position

Historical Trajectory 📜

🚀 Genesis and Early Growth

🏢 Strategic Realignment

Core Internet Services ⚙️

🌐 Domain Name Registries

📡 Root Server Operations

🛡️ Network Intelligence and Availability

Navigating Challenges: Controversies ⚠️

🔒 Security and Trust Issues

⚖️ Legal and Operational Disputes

Teacher's Corner 🧑‍🏫

Edit and Print this course in the Wiki2Web Teacher Studio

True or False? 🤔

❓ Test Your Knowledge! ❓

Gamer's Corner 🎮

Are you ready for the Wiki2Web Clarity Challenge?

Explore More Topics

📜 Discover other topics to study!

References

📜 References

Feedback & Support 👍

To report an issue with this page, or to find out ways to support the mission, please click here.

Disclaimer ⚠️

📜 Important Notice

Dive in with Flashcard Learning!

About Verisign, Inc.

Corporate Overview

Core Business Areas

Market Position

Historical Trajectory

Genesis and Early Growth

Strategic Realignment

Core Internet Services

Domain Name Registries

Root Server Operations

Network Intelligence and Availability

Navigating Challenges: Controversies

Security and Trust Issues

Legal and Operational Disputes

Teacher's Corner

True or False?

Test Your Knowledge!

Gamer's Corner

Discover other topics to study!

References

Feedback & Support

Disclaimer

Important Notice