Network Abuse Update Frank Salanitri Project & Systems Services Manager, APNIC.

Slides:

Advertisements

Similar presentations

© 2004 APCERT APCERT Activity Update Yurie Ito JPCERT/CC (On behalf of the APCERT Secretariat)

Advertisements

A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E APNIC Work Plan 2000 APNIC Annual Member Meeting Seoul, 3 March 2000.

A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E Network Abuse: The APNIC perspective Network Abuse BOF APNIC 12 th Open Policy Meeting.

Open action items Database SIG APNIC 18 Nadi, Fiji.

Major Activities in JPNIC Since APNIC17 Izumi Okutani Japan Network Information Center NIR 18, Fiji 31 August – 3 September, 2004.

Anti-Spam Management for Service Provider in Malaysia Alan Lee NTT MSC.

Handling Internet Network Abuse Reports at APNIC 21 October 2010 LAP-CNSA Workshop, Melbourne George Kuo.

Joint efforts in incident response in AP region and future work with RIR Suguru Yamaguchi JPCERT/CC.

Sweeping lame DNS reverse delegations APNIC16 – DNS Operations SIG Seoul, Korea, 20 August 2003.

ISSC Quarterly Supplier Meetings

1 Korea status and future plan on spam & hacking complaints August 30, 2001 Yong Wan Ju Korea Network Information Center.

Communications Area Report German Valdez Communications Area Director.

APNIC Update LACNIC XVI 7 October 2011 Buenos Aires Geoff Huston, APNIC 1.

APNIC Last /8 Policy Implementation Report Sanjaya Services Area Director.

Policy Documentation Adam Gosling APNIC 38 Policy SIG Meeting 18 September 2014.

A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E Database SIG APNIC Database Privacy Issues 1 March 2001 APRICOT, Malaysia Fabrina.

Network Abuse Handling in CNNIC and JPNIC Terence Zhang, CNNIC Izumi Okutani, JPNIC.

Prepared by The Regional Internet Registries [APNIC, ARIN, LACNIC and RIPE NCC]

APNIC Update Paul Wilson Director General. APNIC RIR for Asia Pacific –IP address allocation and management –Open policy development Support for Internet.

APNIC Update AfriNIC June 2011 Sanjaya Services Director, APNIC 1.

Copyright © 2008 Japan Network Information Center JPNIC's review of IPv4 address transfer  Izumi Okutani  Japan Network Information.

What is WHOIS?. 2  Internet Protocol you can use to search registry and registrar databases and discover who registered a domain name or IP address 

APNIC Update ARIN XXVI 8 October 2010 Geoff Huston Chief Scientist, APNIC.

APNIC Update AfriNIC 12 May 2010 Sanjaya Services Director, APNIC.

IP Policy in APNIC and What about TWNIC ? Kuo-Wei Wu.

Consultation on Policy Documentation Adam Gosling APNIC 40 Policy SIG 10 September 2015.

APNIC Update 15 th TWNIC OPM 2 December 2010 Taipei, Taiwan George Kuo Member Services Manager, APNIC.

What is WHOIS?. 2  Internet Protocol you can use to search registry and registrar databases and discover who registered a domain name or IP address 

APNIC Activity Highlights NZNOG’11 28 January 2011 Elly Tawhai Senior Internet Resource Analyst/Liaison Officer, Pacific, APNIC 1.

Inaccuracy of IRT-Objects Aftab A. Siddiqui Cyber Internet Services (Pvt) Ltd/ IPv6 Task Force Pakistan/ NRO NC/ASO AC.

APNIC Security Update APSIRCC 2002 Tokyo, 25 March 2002.

Izumi Okutani JPNIC IP Department NIR Meeting Feb 2004 JPNIC Open Policy Meeting Update.

IP Addressing and ICT Development in the Pacific Islands Anne Lord and Save Vocea, APNIC ICT Workshop, Fiji, November, 2002.

Addressing Prefix Reachability Issues Frank Salanitri Project & Systems Services Manager, APNIC.

Update of WHOIS Data Privacy in JP Izumi Okutani Japan Network Information Center (JPNIC) DB SIG APNIC Indonesia.

Current Policy Topics Emilio Madaio RIPE NCC RIPE November 2010, Rome.

APNIC 32 AMM Policy SIG Report Andy Linton Thursday 1 September 2011.

1 APNIC Survey 2007 Summary Report May APNIC Surveys Three surveys previously… –Members and other stakeholders –Conducted independently (KPMG)

A week in the life of (IRT address) Frank Salanitri Project & Systems Services Manager, APNIC.

APNIC abuse procedures Network abuse BOF. Types of abuse reported Spam Hacking Viruses Identity/credit card fraud Threats and stalking.

APNIC Update RIPE November 2010 Rome, Italy Geoff Huston Chief Scientist, APNIC.

Services Area Report Sanjaya Services Area Director.

JPNIC UPDATE ~ Personal Data Protection in JPNIC WHOIS ~ Toshiyuki Hosaka Japan Network Information Center (JPNIC) September 7 th, 2005 NIR SIG APNIC

1 Command Center Management (CCM) Training. 2 Objective  To understand the following: – IT Manager Role – Exam Day Process – iAEC Solution – iARC – Post.

Proposed APNIC protocol for handling of abuse complaints Network abuse BOF Gerard Ross, APNIC.

1 Welcome to the Policy SIG Policy SIG 1 March 2007 APNIC 23, Bali, Indonesia Kenny Huang.

APNIC Update The state of IP address distribution and its impact to business operations Elly Tawhai Senior Internet Resource Analyst/Liaison Officer, Pacific,

APNIC Member and Stakeholder Survey 2009 Paul Wilson, Director General.

Network Abuse Bof Tuesday 15 th September 5:30pm – 7:00pm Lincoln Room.

1 [prop-037] Proposal to deprecate updates for APNIC registry and whois data Policy SIG 7 Sep 2006 APNIC 22, Kaohsiung, Taiwan Terry Manderson.

I-NAMES Corporation Database Privacy Policy Database Policy SIG, APNIC Meeting at Taipei, Taiwan Lee, Seung-Min.

1 Welcome to the Policy SIG 6 Sep 2006 APNIC 22, Kaohsiung, Taiwan.

APNIC member survey 2007 Paul Wilson Director General.

Whois Update Guangliang Pan. Overview Differences between APNIC and RIPE Whois Databases Change mnt-by from member’s maintainer to APNIC-HM for aut-num.

APNIC Update and future planned initiatives

IEPG Minneapolis, March 1999

Whois Data Privacy Issues in Japan

Research & Liaison Officer (Pacific)

Enhanced participation in sharing and learning international experiences

APNIC 29 Policy SIG report

Enhanced participation in sharing and learning international experiences

Sanjaya, Project Manager, APNIC Secretariat

Policy SIG Wednesday 3 March 2010

A week in the life of (IRT address)

A Proposal to Protect Historical Records in APNIC Whois Database

Richard Hill Partner, Hill & Associates

Privacy of Customer Assignment Records

Status Report on Policy Implementation at the APNIC Secretariat

IPv6 Policy Update ~ APNIC community ~

Presentation transcript:

Network Abuse Update Frank Salanitri Project & Systems Services Manager, APNIC

What is APNIC role in preventing network abuse? As a registry, APNIC adopts and applies policies for it’s community which address network abuse. APNIC does not have the capacity to investigate abuse complaints or the legal powers to regulate Internet activity. APNIC seeks to raise awareness of the need for responsible network management in the Asia Pacific region, through training and communication. 2

IRT Object Reporting of network abuse can be directed to specialized teams such as Incident Response Teams (IRTs) Implemented in AP region by policy Prop-079 in November –Mandatory for inetnum, inet6num and aut-num objects created and updated in whois database. –South Asia has approximately inetnum objects with missing IRT maintainer. 3

Complaints to 4

Distribution of Complaints March

Distribution of type complains by region 6

Distribution of Non- type complains by region 7

5900 Complaints March – South Asia

300,000 Complaints by Region 09/2011

In Conclusion The most frequent complaint type received for South Area is Spams(87%) IRT objects are registered in APNIC Whois to reach the appropriate people for abuse complaints We understand there are issues with POCs in handling these complaints: –POCs are always not uptodate/reachable –POCs receive a large amout of spams We need to ensure that the mechanism in place is adequate in helping resolve these complaints

What can you do? We need your co-operation to maintain correct contacts in WHOIS –Please review your contacts in Whois - /phone. –Report incorrect contacts in APNIC WHOIS to Give us your feedback about effectiveness of IRT objects, or if any problems/suggested solutions in abuse handling –APNIC secretariat : –You can make policy proposals to improve IRT and POCs in Whois if you feel there is a need for change.

Thank you