(An Anti-Abuse Perspective)

Slides:



Advertisements
Similar presentations
IANA TLD Zone Inspection Shanghai, China Louis Touton 29 October 2002.
Advertisements

© 2003 Public Interest Registry Whois Workshop Registrant/User Classification & Current Practices Panel Presented by Bruce W. Beckwith VP, Operations October.
Internationalizing WHOIS Preliminary Approaches for Discussion Internationalized Registration Data Working Group ICANN Meeting, Brussels, Belgium Jeremy.
ICANN Plan for Enhancing Internet Security, Stability and Resiliency.
ICANN SSAC, Cairo Nov 2008 Page 1 Summary of Fast Flux Dave Piscitello ICANN SSAC.
Enum is a Domain Name Tom McGarry NeuStar
.gy ccTLD.gy ccTLD Managed by the University of Guyana, on behalf of the Government of Guyana and ICANN.
Kuala Lumpur 24 July 2004 ICANN/ITU workshop Framing ccTLD relations Linking global and national responsibilities.
© 2003 Public Interest Registry Whois Workshop Introduction to Registry/Registrar Issues Presented by Bruce W. Beckwith VP, Operations June 23, 2003 Serving.
A Next Generation Registration Directory Service (RDS) EWG Briefing for the IETF by Chris Disspain Monday Nov 4, 2013.
.| The Trusted Channel Centric Marketplace Domain Name Transfers & Domain Delegation.
SGNIC’s Measures Against Domain Name Abuses 26 August 2011 Lim Choon Sai General Manager (SGNIC)
Computer Networks: Domain Name System. The domain name system (DNS) is an application-layer protocol for mapping domain names to IP addresses Vacation.
Welcome to IANA Activities Update Elise Gerich | APRICOT 2015 | 4 March 2015.
IANA Activities Update Jean-Jacques Sahel | RIPE 70 Amsterdam| 15 May 2015.
CPSC 441: DNS1 Instructor: Anirban Mahanti Office: ICT Class Location: ICT 121 Lectures: MWF 12:00 – 12:50 Notes derived.
DNS Ecosystem Caitlin Tubergen - Juan Carlos Namis | Webinar
Intro to Computer Networks DNS (Domain Name System) Bob Bradley The University of Tennessee at Martin.
Domain Name System | DNSSEC. 2  Internet Protocol address uniquely identifies laptops or phones or other devices  The Domain Name System matches IP.
Text #ICANN51. Text #ICANN51 15 October 2014 At-large policy round table Holly Raiche Panel 1: Privacy and Proxy 1000 – 1045 Hrs.
RAA Update and WHOIS Validation Workshop Moderated by: Volker Greimann, Gray Chynoweth, Kurt Pritz 12 March 2012.
1 Domain Name System (DNS). 2 DNS: Domain Name System Internet hosts: – IP address (32 bit) - used for addressing datagrams – “name”, e.g.,
DNS Registries. Overview What is a DNS registry? –DNS registries –Data In –Data Out –Transactions Registry Structure –Registry –Registrars –Registrants.
What is WHOIS?. 2  Internet Protocol you can use to search registry and registrar databases and discover who registered a domain name or IP address 
IANA Activities Update Naela Sarras | ARIN 35 San Francisco | 14 April 2015.
CcTLD/ICANN Contract for Services (Draft Agreements) A Comparison.
Chapter 29 Domain Name System (DNS) Allows users to reference computer names via symbolic names translates symbolic host names into associated IP addresses.
RFP for the.aero registry operator DAC 7 April 19, 2005 Geneva.
ICANN Update: What Next for Trademark Owners? 22 nd Annual Fordham Int’l IP Law & Policy Conference 25 April 2014.
Update from ICANN staff on SSR Activities Greg Rattray Tuesday 21 st 2010.
ICANN Update Jia-Rong LOW| Head, Strategy & Initiatives, APAC| Feb 2015.
Text #ICANN51. Text #ICANN51 Potential GNSO Policy Work on gTLD Name Collision Mitigation 12 October 2014 Francisco Arias Director, Technical Services.
Dedicated to preserving the central coordinating functions of the global Internet for the public good. John L. Crain, Chief Technical Officer, ICANN
Global Name Registry Proposal to Modify Appendix O: WHOIS Data Access.
Text #ICANN51. Text #ICANN51 DAY October 2014 Presentation Title Presenter Name Presenter Title Session Name.
Mar 3, 2006APNIC 21 Meeting -- Perth, AU1 IANA Status Report David Conrad, ICANN IANA General Manager.
U.S. General Services Administration Office of Governmentwide Policy GSA EXPO May 4, 2010 Lee Ellis U.S. General Services Administration Office of Governmentwide.
CPSC 441: DNS 1. DNS: Domain Name System Internet hosts: m IP address (32 bit) - used for addressing datagrams m “name”, e.g., - used by.
Text #ICANN51. Text #ICANN51 October 2014 IDN Program Update to GNSO Sarmad Hussain IDN Program Senior Manager.
What is WHOIS?. 2  Internet Protocol you can use to search registry and registrar databases and discover who registered a domain name or IP address 
New gTLD Subsequent Procedures Steve Chan | APRALO-APAC Hub Webinar | 28 September 2015.
Proposals for Improvements to the RAA June 22, 2010.
Multilayer Internet Governance: Some Theory + Practical Implications Michael Yakushev | ENOG 10 (Odessa, Ukraine) | 13 Oct.2015.
Patrik Fältström. ITU Tutorial Workshop on ENUM. Feb 8, 2002, Geneva Explanation of ENUM (RFC 2916) Patrik Fältström Area Director, Applications Area,
New gTLD Program Reviews Karen Lentz | GAC Session | 20 October 2015.
The New gTLD (generic Top Level Domain) Program Krista Papac | LACRALO Webinar | 12 November 2015.
Registration Services Mark Kosters 10 November 1998.
TCOM Information Assurance Management Casing the Establishment.
Governmental Advisory Committee Public Safety Working Group 1.
.ORG, The Public Interest Registry. 2 Proprietary & Confidential What is Domain Security? Domain security is: 1) Responsibility. Any TLD should have a.
Registry Functions Essential components for operating a ccTLD registry.
Update to ALAC on the RAA Negotiations Margie Milam 26 June 2012.
Workshop Overview & Registry Model Model by Jaap Akkerhuis Related by Daniel Karrenberg.
Fast Flux Hosting and DNS ICANN SSAC What is Fast Flux Hosting? An evasion technique Goal of all fast flux variants –Avoid detection and take down of.
ICANN capacity building in regions GE/GSE teams| GAC Capacity Building Session| 27 June 2016.
GAC SESSION 9: Privacy and Proxy (P/P) Services Accreditation Issues.
What’s New at the Development and Public Responsibility Department?
ICANN Africa Strategy FY16 – FY20
New gTLD Program Reviews and Related Work
The DNS Entrepreneurship Center (DNS-EC)
Implementation Review Team Meeting
New gTLD Auction Proceeds CCWG Status Update
Implementation Review Team Meeting
IANA Stewardship Transition
The Dot – JM ccTLD Registry (Jamaica)
ICANN Update APStar Retreat | 21 Feb 2016
Update on ICANN Domain Name Registrant Work
حمایت از علائم تجاری در قانون تجارت الکترونیک ایران
Defining the scope of the ccNSO
The Domain Abuse Activity Reporting System (DAAR)
Presentation transcript:

(An Anti-Abuse Perspective) DNS Fundamentals (An Anti-Abuse Perspective) Carlos Álvarez, IS-SSR Team | Steve Conte , Office of the CTO 18 May 2016

Domain Name System 1 Resolution Process 2 Registration Process 3 Internet Identifiers Structure and Resolution Resolution Process Parties Involved Registration Whois 2 Registration Process 3 Why all this matters: Anti-Abuse

DNS: Internet Identifiers MAC, IP, Domains

SLD – Second Level Domain DNS: Structure and Resolution string.tld. “.” edu org club biz ar any isoc icann gacweb whois root – “.” TLD – “.org.” 2nd Level – “icann.org.” 3rd Level – “gacweb.icann.org.” Top Level Domain SLD – Second Level Domain 4

DNS: Structure and Resolution string.tld. m.root-servers.net a0.org.afilias-nst.info ns1.icann.org dns.icann.org www.icann.org? 1 2 3 4 5 6 7 8 5

DNS: Registration Process Who does what? 6

DNS: Registration Process <command> <create> SRS (market competition) / EPP Availability check / response Provision of account information and WHOIS Registrar receives, adds to own DB, forwards to Registry Registry adds entry in its zone 7

DNS: WHOIS Registration Info Postal address, email, phone, fax Timestamps, statuses, name servers Accuracy Validation, i.e. emails in RFC5322, phone numbers in ITU-T E.164, postal addresses in UPU or S42 format template Verification: Registrant or Account Holder email or telephone requiring affirmative response Contacts: Registrant, Admin Contact, Tech Contact, Billing Contact 8

DNS: Why all this matters Anti-Abuse 9

DNS: Why all this matters Anti-Abuse Some hot topics regarding abuse of registration services: Resellers: Identified by Registrar? Responsive? Privacy/Proxy services: Relay/Reveal Compliance with RAA abuse provisions: Review and Respond Suspension/cancellation of malicious domains? DNS Sinkholing? Not enough data or false positive? Domain Generation Algorithms: Automated! Threats: Botnet command and control Malware distribution Phishing/pharming 10

DNS: Why all this matters Anti-Abuse Some hot topics regarding abuse of resolution services: m.root-servers.net a0.org.afilias-nst.info ns1.icann.org dns.icann.org 1 2 3 4 5 6 7 8 DNS Hijacking / Cache Poisoning 11

x DNS: Why all this matters Anti-Abuse Some hot topics regarding abuse of resolution services: http://string.tld x DNS Servers (ISPs, own) Victim Reflection+Amplification=DDoS 12

ICANN One World. One Internet

Engage with ICANN Questions? carlos.alvarez@icann.org / steve.conte@icann.org @isitreallysafe twitter.com/icann gplus.to/icann facebook.com/icannorg weibo.com/ICANNorg linkedin.com/company/icann flickr.com/photos/icann youtube.com/user/icannnews slideshare.net/icannpresentations

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.