Presentation is loading. Please wait.

Presentation is loading. Please wait.

Paul M Kane Director, www.CommunityDNS.net Issues to think about! APTLD Members’ Meeting in Kuala Lumpur 1 – 2 March 2010 Contingency Planning.

Published bySilas Roberts Modified over 9 years ago

Similar presentations

Presentation on theme: "Paul M Kane Director, www.CommunityDNS.net Issues to think about! APTLD Members’ Meeting in Kuala Lumpur 1 – 2 March 2010 Contingency Planning."— Presentation transcript:

1 Paul M Kane Director, www.CommunityDNS.net Issues to think about! APTLD Members’ Meeting in Kuala Lumpur 1 – 2 March 2010 Contingency Planning

2 APTLD Contingency Planning –- 1 st March 2010 2 Blame management – not my fault! Prevention Measures > These measures require avoidance planning to avoid something from occurring. Detection Measures; > These controls are designed for detecting or discovering unwanted events. Corrective measures; > These controls are designed to correct or restore service after an event has occurred.

3 APTLD Contingency Planning –- 1 st March 2010 3 Prevention Management How much of your operation is controlled internally? > Do you practice, “what if” scenarios? The mere thinking about and practicing scenarios will identify possible hardware, system or process flow failures – leading to operational improvements. > Are multiple staff able and authorised to undertake each other’s roles? Staff go on holiday, or work away from the office so making sure multiple people can undertake a given task leads to process improvements and operational redundancy. > Contingency Plans need to be developed and understood to ensure that in the event of a disaster, everyone knows what to do and how to do it. Hardware will fail, storm damage will occur, power supplies and transit carrier services will break – all outside of your control.

4 APTLD Contingency Planning –- 1 st March 2010 4 Prevention Management How much of your operation is outsourced? > Upstream ISP – do you use multiple carriers under SLA’s? > Are you using Provider Independent IP space, so it is easy to multi-home your service in different geographical locations for redundancy? > Do you use multiple communications mediums for dialogue with users; Blog, Twitter, forums etc > Do you supplement your internally operated DNS resolution provision with external subcontractors using multiple application software – ie not all of your DNS resolvers should be open source such as BIND or NSD – diversity builds resiliency.

5 APTLD Contingency Planning –- 1 st March 2010 5 Spread the risk with outsourcing partners With financial support from the Prevention, Preparedness and Consequence Management of Terrorism and other Security Related Risks Programme European Commission - Directorate-General Justice, Freedom and Security

6 APTLD Contingency Planning –- 1 st March 2010 6 Detection Measures Monitoring > Do you use third party monitoring servers to check the availability and external access to your services such as BGP scans, POP, Web, EPP, DNS, Ticketing systems? > Do you periodically undertake Port scans to make sure your services are secure from both internal and external attacks? > Do you Quality Assess the software your staff have written and use? > When an issue is raised by a customer for an example do you have an operations team assigned to look into, and potentially resolve, the issue?

7 APTLD Contingency Planning –- 1 st March 2010 7 Service delivery and external monitoring Command and Control Monitoring Locations: Active Anycast nodes (blue pins) Currently being Installed: (yellow pins) Command and Control Monitoring Locations: Chicago, USABuenos Aires, ArgentinaLondon, UKTokyo, Japan

8 APTLD Contingency Planning –- 1 st March 2010 8 Offices and Data Centres

9 APTLD Contingency Planning –- 1 st March 2010 9 Quick Service Overview Our TLD customers: > In this region: SG VN IR PH > In other regions: EU > 3m names IT > 2m names PL BE FI HU LU LT LV many more – total of 92 zones (many SLDs) Raw Stats: > Yesterday, 23.8 million authoritative names 28/2/2010 ~54k updates 28/2/2010 308 NSEC or NSEC3 signed zones ~6 billion queries / day (28/2/2010 - 5,973,886,722) 100% SLA NSEC and NSEC3 supported Free IPv4 and IPv6 address allocated

10 APTLD Contingency Planning –- 1 st March 2010 10 Corrective Measures Practice then Practice some more! > What is your organisation’s process for activating a Plan and notifying recovery personnel? > Do you test the recovery plan on a regular basis? Do the back up systems and back-up data stores (including off- site) recover correctly? > When back-up power or bandwidth is required is service disruption avoided? > If failure cannot be contained, do you have an effective and rehearsed communications strategy, telling users the status and what action if any is required to restore their service?

11 APTLD Contingency Planning –- 1 st March 2010 11 Summary Impact Assessment of multiple scenarios Develop your Contingency Plan Testing your Contingency Plan Personnel Training Maintaining the Contingency Plan Be sure to be able to blame someone else!

12 APTLD Contingency Planning –- 1 st March 2010 12 Thank you ? Paul.Kane AT CommunityDNS.net

Download ppt "Paul M Kane Director, www.CommunityDNS.net Issues to think about! APTLD Members’ Meeting in Kuala Lumpur 1 – 2 March 2010 Contingency Planning."

Similar presentations

Presented by Peter Gubarevich Optimal Solutions, Ltd Conference Microsoft IT Pro Tallinn, December 01, 2011 Something About Restoring Your Server.

Presented by Peter Gubarevich Optimal Solutions, Ltd Conference Microsoft IT Pro Tallinn, December 01, 2011 Something About Restoring Your Server.
Information Technology Disaster Recovery Awareness Program.

Information Technology Disaster Recovery Awareness Program.
Chapter 13 Managing Computer and Data Resources. Introduction A disciplined, systematic approach is needed for management success Problem Management,

Chapter 13 Managing Computer and Data Resources. Introduction A disciplined, systematic approach is needed for management success Problem Management,
Service Design – Section 4.5 Service Continuity Management.

Service Design – Section 4.5 Service Continuity Management.
Welcome to RAI, the future of collaborative Project Risk Management Overview of Project Risk and Issue Management RAI for the Project Manager RAI for the.

Welcome to RAI, the future of collaborative Project Risk Management Overview of Project Risk and Issue Management RAI for the Project Manager RAI for the.
Reliability Week 11 - Lecture 2. What do we mean by reliability? Correctness – system/application does what it has to do correctly. Availability – Be.

Reliability Week 11 - Lecture 2. What do we mean by reliability? Correctness – system/application does what it has to do correctly. Availability – Be.
Introduction Security is a major networking concern. 90% of the respondents to the 2004 Computer Security Institute/FBI Computer Crime and Security Survey.

Introduction Security is a major networking concern. 90% of the respondents to the 2004 Computer Security Institute/FBI Computer Crime and Security Survey.
Lesson 11 – NETWORK DISASTER RECOVERY Disaster recovery plans Network backup and restoration OVERVIEW.

Lesson 11 – NETWORK DISASTER RECOVERY Disaster recovery plans Network backup and restoration OVERVIEW.
Best Practices – Overview

Best Practices – Overview
Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.

Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.
Stephen S. Yau CSE 465-591, Fall 2006 1 Security Strategies.

Stephen S. Yau CSE , Fall Security Strategies.
Disaster Recovery and Business Continuity Ensuring Member Service in Times of Crisis.

Disaster Recovery and Business Continuity Ensuring Member Service in Times of Crisis.
Mitun PatelMXP07U. Organisational structure Top management; this includes the organisation’s general manager and its executives Department managers; this.

Mitun PatelMXP07U. Organisational structure Top management; this includes the organisation’s general manager and its executives Department managers; this.
1 Disaster Recovery Planning & Cross-Border Backup of Data among AMEDA Members Vipin Mahabirsingh Managing Director, CDS Mauritius For Workgroup on Cross-Border.

1 Disaster Recovery Planning & Cross-Border Backup of Data among AMEDA Members Vipin Mahabirsingh Managing Director, CDS Mauritius For Workgroup on Cross-Border.
Outsourcing Policy & Procedures An Overview for Staff Prepared by MSM Compliance Services Pty Ltd.

Outsourcing Policy & Procedures An Overview for Staff Prepared by MSM Compliance Services Pty Ltd.
Disaster Recovery Policy & Procedures An Overview for Staff Prepared by MSM Compliance Services Pty Ltd.

Disaster Recovery Policy & Procedures An Overview for Staff Prepared by MSM Compliance Services Pty Ltd.
Network security policy: best practices

Network security policy: best practices
John Graham – STRATEGIC Information Group Steve Lamb - QAD Disaster Recovery Planning MMUG Spring 2013 March 19, 2013 Cleveland, OH 03/19/2013MMUG Cleveland.

John Graham – STRATEGIC Information Group Steve Lamb - QAD Disaster Recovery Planning MMUG Spring 2013 March 19, 2013 Cleveland, OH 03/19/2013MMUG Cleveland.
Cloud Computing How secure is it? Author: Marziyeh Arabnejad Revised/Edited: James Childress April 2014 Tandy School of Computer Science.

Cloud Computing How secure is it? Author: Marziyeh Arabnejad Revised/Edited: James Childress April 2014 Tandy School of Computer Science.
Term 2, 2011 Week 3. CONTENTS The physical design of a network Network diagrams People who develop and support networks Developing a network Supporting.

Term 2, 2011 Week 3. CONTENTS The physical design of a network Network diagrams People who develop and support networks Developing a network Supporting.

Similar presentations

Ads by Google