SSAC Overview May 23, 2006 Steve Crocker

Slides:



Advertisements
Similar presentations
ICANN Report Presented by: Dr Paul Twomey CEO and President LACNIC, Montevideo 31 March 2004.
Advertisements

Testing IPv6 Address Records in the DNS Root APNIC 23 February 2007 Geoff Huston Chief Scientist APNIC.
Reverse DNS SIG Summary Report APNIC Annual Member Meeting Bangkok, March
1 MyAPNIC Project update Database SIG APNIC 23, Bali 28 February 2007.
The Global Internet ICTFEST 2006 Antigua and Barbuda Jacob Malthouse Liaison Internet Corporation for Assigned Names and Numbers.
The ICANN Experiment ISOC-Israel 13-March-2000 Andrew McLaughlin.
ICANN Security and Stability Advisory Committee ICANN Meetings Carthage October 30, 2003.
The Wild Card Incident of 9/15/2003 Steve Crocker Chair Security and Stability Advisory Committee.
Generic Names Supporting Organisation Bruce Tonkin Chair, GNSO Council.
ICANN Security and Stability Advisory Committee ICANN Meetings Shanghai October 30, 2002.
GNSO goals Bruce Tonkin Chair, GNSO Council Sao Paulo, 4 Dec 2006.
1 Update on New gTLD PDP Joint GAC/GNSO meeting Avri Doria Chair, GSNO Council San Juan, Puerto Rico.
Whois Task Force GNSO Public Forum Wellington March 28, 2006.
The ICANN Experiment CainetCainet Andrew McLaughlin.
ICANN Plan for Enhancing Internet Security, Stability and Resiliency.
Sep 2008ALAC Webinar 1 DNS Response Modification David Piscitello Senior Security Technologist ICANN.
IDN Variant Issues Project (VIP) Project Update and Next Steps 11 April 2012.
DNS Security and Stability Analysis Working Group (DSSA) DSSA Update Prague – June, 2012.
International Telecommunication Union ENUM Issues and Solutions Houlin Zhao Director Telecommunication Standardization Bureau International Telecommunication.
2001_03_28 SG A contribution– 1 Dept of State ITAC-T Advisory Committee SG-A Ad Hoc Meeting on ENUM March 28th & 29th, 2001 ENUM CONTRIBUTION TITLE: ENUM.
The Role of Governments Caribbean Telecommunications Union Ministerial Seminar May 29, 2012 Heather Dryden Chair - Governmental Advisory Committee, ICANN.
INTERNET PROTOCOLS Class 9 CSCI 6433 David C. Roberts Entire contents copyright 2011, David C. Roberts, all rights reserved.
© Copyright 2004, JPRS 1 Community and ccTLD in Japan Joint ICANN/ITU-T ccTLD Workshop July 24, Lumpur Hiro HOTTA Japan Registry.
Some Comments on ccTLD Manager Local & Global Responsibilities Frank March Chair,.nz Oversight Committee (NZOC) (also IT & Telecoms Policy Group)
State of DNS Security Extensions Edward Lewis February 26, 2001 APRICOT 2001 Panel.
Improving DNS contents in the RRR world Ólafur Guðmundsson Steve Crocker Oct.
Volunteer Pathway ISPE Boston Area Chapter 1. Volunteers must be a member of ISPE Join todayJoin today.
ICANN Security and Stability Advisory Committee ICANN Meetings Rio de Janeiro March 26, 2003.
Handling Internet Network Abuse Reports at APNIC 21 October 2010 LAP-CNSA Workshop, Melbourne George Kuo.
Internationalized Domain Names Status Report Prepared for: ICANN Meeting, Lisbon 29 March, 2007 Tina Dam IDN Program Director ICANN
ICANN/ccTLD Agreements: Why and How Andrew McLaughlin Monday, January 21, 2002 TWNIC.
Bangkok October 2005 Slide 1 Whois Services Jaap Akkerhuis
Security Advisory Committee ICANN Meetings Bucharest June 27, 2002.
New gTLD Basics. 2  Overview about domain names, gTLD timeline and the New gTLD Program  Why is ICANN doing this; potential impact of this initiative.
Measuring DANE TLSA Deployment Liang Zhu 1, Duane Wessels 2, Allison Mankin 2, John Heidemann 1 1. USC ISI 2. Verisign Labs 1.
#ICANN49 Security and Stability Advisory Committee Activities Update ICANN Singapore Meeting March 2014.
Domain Name System | DNSSEC. 2  Internet Protocol address uniquely identifies laptops or phones or other devices  The Domain Name System matches IP.
TERENA Networking Conference 2000 Vittore Casarosa, Maurizio Martinelli, Rita Rossi, Daniele Vannozzi, Sterfano Trumpy Evolution of the Management of Top.
DSSA-WG Progress Update Dakar – October Charter: Background At their meetings during the ICANN Brussels meeting the At-Large Advisory Committee.
Update report on GNSO- requested Whois studies Liz Gasster Senior Policy Counselor 7–12 March 2010.
ICANN (Basic Level Webinar) Albert Daniels | | 7 July 2015.
What DNS is Not 0 Kylie Brown, Jordan Eberst, Danielle Franz Drew Hanson, Dennis Kilgore, Charles Newton, Lindsay Romano, Lisa Soros 0 Paul Vixie
IETF 73, 19 November, 2008, Minneapolis, USA1 Internet Architecture Board Update Olaf M. Kolkman IAB Chair.
Organizations, Institutions, the Domain Name and addressing system, Internet Governance… D-day 2005 Milan, Italy 24 November 2005 Theresa Swinehart GM,
1 ICANN & Global Partnerships Baher Esmat Manager, Regional Relations Middle East ccTLD Training, Amman Nov, 2007.
New gTLD Basics. 2  Overview about domain names, gTLD timeline and the New gTLD Program  Why is ICANN doing this; potential impact of this initiative.
Root Server System Advisory Committee Jun Murai, Chair of RSSAC/ICANN Director ICANN cc TLD meeting June 25, 2002 Bucharest, RO.
BCOP on Anti-Spoofing Long known problem Deployment status Reason for this work Where more input needed.
Multistakeholder Policy- & Decision-making
IAB Report Technical Plenary IETF 81 July 25, 2011.
FCC CSRIC III Working Group 5 DNSSEC Implementation Practices Steve Crocker CEO, Shinkuro, Inc. March 6, 2013 Working Group 5: DNSSEC.
SSAC Report on Domain Name Registration Data Model Jim Galvin.
Working Group #4: Network Security Best Practices September 12, 2012 Presenter: Rod Rasmussen, Internet Identity WG #4 Co-Chair.
1 1 The GNSO Role in Internet Governance Presented by: Chuck Gomes Date: 13 May 2010.
DSSA-WG Progress Update Singapore – June Charter: Background At their meetings during the ICANN Brussels meeting the At-Large Advisory Committee.
IDN UPDATE Tina Dam ICANN Chief gTLD Registry Liaison Public Forum, Wellington 30 March 2006.
ICANN 48 Security and Stability Advisory Committee Activities Update ICANN Buenos Aires Meeting November 2013.
Governmental Advisory Committee Public Safety Working Group 1.
IRTP Part B PDP Final Report Overview. Background Inter-Registrar Transfer Policy (IRTP) Straightforward process for registrants to transfer domain names.
Fast Flux Hosting and DNS ICANN SSAC What is Fast Flux Hosting? An evasion technique Goal of all fast flux variants –Avoid detection and take down of.
1 27Apr08 Some thoughts on Internet Governance and expansion of the Domain Name space Paul Twomey President and CEO 9 August 2008 Panel on Internet Governance.
Vice Chair, UK Representative, Governmental Advisory Committee (GAC)
Getting started with ICANN
ICANN Multi-Stakeholder Model
AfICTA CEO Roundtable 2015 ICANN & Business
Principles of Computer Security
ICANN’s Policy Development Activities
Unit 36: Internet Server Management
Rodrigo de la Parra / Laurent Ferrali ICANN org
Parents’ Committee A vital part of the 4-H club leadership team
Presentation transcript:

SSAC Overview May 23, 2006 Steve Crocker

2 SSAC Role Security and stability expertise Advice to… –ICANN board –ICANN staff –ICANN advisory committees –ICANN supporting organizations –Community at large Advice only -- no formal authority Both responsive and proactive

3 History Exploratory meeting in Nov 2001 Decision to form committee Recruiting, kick off in spring 2002 Same chair from beginning Periodic review of membership

4 Structure Advisory committee of experts –Registries, Registrars, Address, Security, Research –Geographic breadth –No bureaucrats, attorneys, politicians Volunteer, unpaid –Staff support -- SSAC Fellow, Exec

5 SSAC Members (1) Alain Aina Jaap Akkerhuis KC Claffy Steve Crocker, chair Johan Ihren Rodney Joffe

6 SSAC Members (2) Mark Kosters Allison Mankin Ram Mohan Russ Mundy Frederico Neves Jon Peterson

7 SSAC Members (3) Ray Plzak, vice chair Mike St. Johns Doron Shikmoni Bruce Tonkin Paul A Vixie Suzanne Woolf

8 Others Dave Piscitello - ICANN Fellow Jim Galvin - Exec Daniel Karrenberg - Invited Guest Patrik Fältström - Invited Guest Lyman Chapin - Invited Guest, SPE Chair Stefano Trumpy - GAC Liaison Olaf Kolkman - IAB Point of Contact

9 Operation & Recruiting Weekly conference calls Team reports –Staff assistance, consensus Presentations at ICANN meetings Looking for experienced, committed experts…

10 SSAC Reports, Advisories Usually related to specific incident/issue –Findings, Recommendations Opportunity for explanation of an area –Useful beyond specific incident/issue Broad sense of security and stability –Protection of registrants, users, end- systems

11 Past Efforts DNSSEC -- spun off separate initiative Wild card (SiteFinder) episode Domain Name Hijacking Alternate Roots Amplified Distributed Denial of Service (DDoS) Attacks Address filtering at edge

12 Current Efforts Whois privacy mechanisms Repurposed domains names

13 Other Concerns Integration of IDNs Address validation, routing security

14... Attacker Target name server at IP = Open recursive servers Name server bar. (3) Open resolvers ask bar. for record foo (4) bar. responds with record foo (4000 byte DNS TXT RR) (5) Open resolvers send DNS response with (4000 byte DNS TXT RR) to target name server (1) Attacker directs zombies to begin attack (2) All zombies send DNS query for record foo in domain bar. to open recursive servers and set source IP= Zombies Anatomy of the DDoS Attack

15 DDoS Recommendations Not just a DNS issue Stop forged return IP addresses –Prior advice -- BCP 38, SAC 004, etc. Take protective action as needed

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.