Found a company, register a trademark in the same name in all relevant jurisdictions, hire a legal team that are trawling the internet and the world in general for trademark abuse so the trademark is defended. Hope that some registrar or internet body do not change a policy of some sort or another. Did I miss something?
There is no guarantee you'd win in court, especially if your domain is seized by a state level actor.
This is why I think private keys combined with some kind of immutable log (cough...blockchain...cough) are far better as identity tokens than anything based on DNS.
Identity tokens only implement the underlying address space. Friendly identifiers either have to be immutable (read:nearly worthless), or handled by some form of registry.
First come, first served registey with some form of expiry implemented via smart contracts might be possible, but it seems unlikely any one registry would ever become 'the canonical registry', as that just puts is back in the same situation as DNS.
This is a hard problem to solve without asking folks with big sticks/guns to enforce policy decisions.
I am not sure if there has to be a "canonical" registry. For example, most western countries have multiple competing credit rating agencies reporting on individual identities and the system seems to work okay on that aspect.
I will give my ideas more thought down the road. We have already tried this with PGP but it had too many issues to be practical. In any case, whatever we end up building is going to be better than DNS which is one entity with too many pairs of hands controlling it, all the way from ICANN to the registries to malicious social engineers.
