Presentation is loading. Please wait.

Presentation is loading. Please wait.

SGNIC’s Measures Against Domain Name Abuses 26 August 2011 Lim Choon Sai General Manager (SGNIC)

Published byDarlene Morrison Modified over 9 years ago

Similar presentations

Presentation on theme: "SGNIC’s Measures Against Domain Name Abuses 26 August 2011 Lim Choon Sai General Manager (SGNIC)"— Presentation transcript:

1 SGNIC’s Measures Against Domain Name Abuses 26 August 2011 Lim Choon Sai General Manager (SGNIC)

2 Scope Types of Abuse Measures Identity Verification Detection and Tracking Enforcement Conclusion

3 Usage Abuse Registration Abuse Types of Abuse Objectionable Domain Names Registration in Wrong Category Sale of Domain Names Incomplete or Incorrect registration details Identity Theft or Fake Identity Cybersquatting Pornographic Socially or politically sensitive Fake Drugs Copyright violations Scam Spam Malware Phishing Abuses that SGNIC is concerned about:

4 Usage Abuse Registration Abuse Types of Abuse Objectionable Domain Names Registration in Wrong Category Sale of Domain Names Incomplete or Incorrect registration details Identity Theft or Fake Identity Cybersquatting Pornographic Fake Drugs Copyright violations Scam Spam Malware Phishing In some areas, SGNIC feels more effectively measures are required: Socially or politically sensitive

5 Measures Effective Enforcement Effective Detection and Tracking Effective Identity Verification Registration in Wrong Category Incomplete or Incorrect registration details Identity Theft or Fake Identity Malware Phishing

6  “VerifiedID@SG” scheme  Leverages on National online personal ID authentication (SingPass)  All Singapore Citizens, Permanent Residents and Foreign workers have SingPass ID and password issued by Government.  Must use SingPass ID to access government online services.  Domain Name registrations will be linked to the SingPass authentication system. Registrations require the SingPass ID holder to vouch that the submitted details are complete, accurate and truthful Identity Verification Effective Identity Verification

7  Providing inaccurate or incomplete registration information is often a precursor to other domain name abuses  Domain Name Abuse Management System (AMS) provides early warnings by checking the accuracy and completeness of new registrant information – E.g. Checks for address completeness, postal code accuracy Detection and Tracking Effective Detection and Tracking

8 Detection and Tracking abc.sg [OWNER] : ABC Pte Ltd [Com No.:200709805A] [ADDRESS]: 79,ROBINSON RD, ABC BUILDING #03-00 Singapore 111111 [PHONE] : +65.22223333 [EMAIL] : buy@abccompany.sgbuy@abccompany.sg ACRA Database (registry of companies) “Company Name” must match with “Company number” must be valid 1 Postal code Database “Postal code” must be valid “Address” must be ‘similar’ with 2 Singapore phone number must start with ‘2’,’3’,’8’ or ‘9’. Highlight if it looks fake: +65.2221234 +65.98765432 3 Does email contain ‘suspicious’ words? (e.g. ‘buy’, ‘sale’) 4

9 Examines registration trends. Highlights suspicious bulk registrations from same registrant, email, telephone number. e.g. – > 10 domains (all different registrant name) using same email in 1 day – > 50 domains (all different registrant name) using same email in 30 days Detection and Tracking Bulk Registration TagDescription BR4-166 registrations in 30 days using the email ben.xxx@hotmail.com. BR4-254 registrations in 30 days using the phone no. +65.9872XXXX Example of cases detected:

10 Automated scanning of domain name against third party security databases for malware distribution/phishing activities. Detection and Tracking A BC D example.sg Clean Risky Clean

11 AMS continually monitors all domain names  All new names are scanned weekly for 3 months, thereafter monthly scans Detection and Tracking Effective Detection and Trackin Domain names scanned by AMS Flagged as possibly abusive Confirmed Malicious 130,000722131 Initial Run results (in end July) :

12 Actively enforce against all types of abuses. For malware and phishing: Time is of essence: Critical to send quick and timely advices to each party who may be involved (ISP, website hosting provider, registrant, admin and tech contact) for them to take action Formalised collaboration with SingCERT who can provide expert opinion For confirmed cases, will work with SingCERT for further investigation Last straw for serious breaches: suspend or delete - drawing powers from registrant agreement Enforcement Effective Enforce- ment

13 SGNIC’s experience:  Adopt a more proactive approach in dealing with domain name abuses  For the benefit of the community and upholding the ccTLD/country’s reputation  To assusage concern of the authority  DNS abuse management is a long term commitment and concerted effort by relevant stakeholders  New applications over DNS giving rise to new opportunity for exploitation  No single agency has control over all aspects of DNS abuses Conclusion

14 Thank you

Download ppt "SGNIC’s Measures Against Domain Name Abuses 26 August 2011 Lim Choon Sai General Manager (SGNIC)"

Similar presentations

By: Jason Baltazar MIS 304 Credit Card Fraud and Prevention.

By: Jason Baltazar MIS 304 Credit Card Fraud and Prevention.
Reporter: Jing Chiu Advisor: Yuh-Jye Lee 2015/7/181Data Mining & Machine Learning Lab.

Reporter: Jing Chiu Advisor: Yuh-Jye Lee /7/181Data Mining & Machine Learning Lab.
Quality Check Exempt Advisers Group April 2012. Background  Retrospective quality checks to be undertaken to determine if the immigration adviser licence.

Quality Check Exempt Advisers Group April Background  Retrospective quality checks to be undertaken to determine if the immigration adviser licence.
Margie Milam Senior Policy Counselor ICANN 1 ( All views expressed are my own)

Margie Milam Senior Policy Counselor ICANN 1 ( All views expressed are my own)
Addressing spam email and enforcing a Do Not Email Registry using a Certified Electronic Mail System Information Technology Advisory Group, Inc.

Addressing spam and enforcing a Do Not Registry using a Certified Electronic Mail System Information Technology Advisory Group, Inc.
Registrar experiences with WHOIS Bruce Tonkin Melbourne IT Ltd.

Registrar experiences with WHOIS Bruce Tonkin Melbourne IT Ltd.
The Third International Forum on Financial Consumer Protection & Education “Fostering Greater Consumer Protection & Education” Preventing Identity Theft.

The Third International Forum on Financial Consumer Protection & Education “Fostering Greater Consumer Protection & Education” Preventing Identity Theft.
Are You Ready? Identity fraud and identity management are quickly becoming critical operational concerns for the financial industry. The Red Flags Guidelines.

Are You Ready? Identity fraud and identity management are quickly becoming critical operational concerns for the financial industry. The Red Flags Guidelines.
1 Identity Theft and Phishing: What You Need to Know.

1 Identity Theft and Phishing: What You Need to Know.
BEWARE! IDENTITY THEFT CARL JOHNSON FINANCIAL LITERACY JENKS HIGH CSHOOL.

BEWARE! IDENTITY THEFT CARL JOHNSON FINANCIAL LITERACY JENKS HIGH CSHOOL.
Georgia Department of Labor IDENTITY THEFT Presenter: Racquel Robinson.

Georgia Department of Labor IDENTITY THEFT Presenter: Racquel Robinson.
1 Identity Theft: What You Need to Know. 2 Identity Theft Identity theft is a crime of stealing key pieces of someone’s identifying information, such.

1 Identity Theft: What You Need to Know. 2 Identity Theft Identity theft is a crime of stealing key pieces of someone’s identifying information, such.
FIT3105 Security and Identity Management Lecture 1.

FIT3105 Security and Identity Management Lecture 1.
Scams and Schemes. Today’s Objective I can understand what identity theft is and why it is important to guard against it, I can recognize strategies that.

Scams and Schemes. Today’s Objective I can understand what identity theft is and why it is important to guard against it, I can recognize strategies that.
DIGITAL CITIZENSHIP 6 TH – 8 TH UNIT 1 LESSON 3 SCAMS & SCHEMES What is identity theft, and how can you protect yourself from it?

DIGITAL CITIZENSHIP 6 TH – 8 TH UNIT 1 LESSON 3 SCAMS & SCHEMES What is identity theft, and how can you protect yourself from it?
Individual User Logins

Individual User Logins
Text #ICANN51. Text #ICANN51 15 October 2014 At-large policy round table Holly Raiche Panel 1: Privacy and Proxy 1000 – 1045 Hrs.

Text #ICANN51. Text #ICANN51 15 October 2014 At-large policy round table Holly Raiche Panel 1: Privacy and Proxy 1000 – 1045 Hrs.
MKTG 476 SECURITY Lars Perner, Instructor 1 Internet Security  Servers  Hacking  Publicly available information  Information storage  Intrusion methods.

MKTG 476 SECURITY Lars Perner, Instructor 1 Internet Security  Servers  Hacking  Publicly available information  Information storage  Intrusion methods.
PHISHING AND SPAM EMAIL INTRODUCTION There’s a good chance that in the past week you have received at least one email that pretends to be from your bank,

PHISHING AND SPAM INTRODUCTION There’s a good chance that in the past week you have received at least one that pretends to be from your bank,
Cyber crime on the rise. Recent cyber attacks How it happens? Distributed denial of service Whaling Rootkits Keyloggers Trojan horses Botnets Worms Viruses.

Cyber crime on the rise. Recent cyber attacks How it happens? Distributed denial of service Whaling Rootkits Keyloggers Trojan horses Botnets Worms Viruses.

Similar presentations

Ads by Google