Presentation is loading. Please wait.

Presentation is loading. Please wait.

Working Group #4: Network Security Best Practices March 22, 2012 Presenter: Tony Tauber, Comcast WG #4 Member Via teleconference: Rod Rasmussen, Internet.

Published byMary Lindsey Modified over 9 years ago

Similar presentations

Presentation on theme: "Working Group #4: Network Security Best Practices March 22, 2012 Presenter: Tony Tauber, Comcast WG #4 Member Via teleconference: Rod Rasmussen, Internet."— Presentation transcript:

1 Working Group #4: Network Security Best Practices March 22, 2012 Presenter: Tony Tauber, Comcast WG #4 Member Via teleconference: Rod Rasmussen, Internet Identity WG #4 Co-Chair

2 2 Working Group #4: Network Security  Description: This Working Group will examine and make recommendations to the Council regarding best practices to secure the Domain Name System (DNS) and routing system of the Internet during the period leading up to the successful global implementation of the Domain Name System Security Extensions (DNSSEC) and Secure BGP (Border Gateway Protocol) extensions.  Duration: Sept. 2011 – Mar. 2013

3 Working Group #4 – Participants  Co-Chairs  Rod Rasmussen – Internet Identity  Rodney Joffe – Neustar  Participants  30 Organizations represented  Service Providers  Network Operators  Academia  Government  IT Consultants 3

4 Working Group #4 - Current Work Activity  Clarification of Scope  Things we can do “now” – current HW/SW, no changes in protocols or new technologies needed  Focus on things that will be of value even if/when protocol extensions (DNSSEC/Secure Routing) are implemented  Domain Name Service (DNS)  BGP and Inter-Domain Routing  Issues requiring CSRIC membership input: potential overlaps with WG-5 and WG-6 – will monitor and seek advice as necessary 4

5 Working Group 4 - Work Completed  Preliminary “matrix” of DNS issues including problem space, ISP roles, challenges and started on short list of solutions  Identified candidate issues affecting the routing space (BGP) that can be addressed today via BCP’s and operational updates.  Created workspace for group collaboration and documentation 5

6 Working Group 4 - Work Completed  Primary DNS issues identified  DNS Cache poisoning attacks  Hacking or misconfiguration of DNS servers  DNS and domain name hijacking  DNS servers used for reflective, DNS amplification DDOS attacks  Rewriting of authoritative DNS responses to other values  Customers infected with DNS manipulating malware  Insecure zone transfers  Routing issues identified  Spoofing of addresses not routed by customer/peer  Hijacking/falsification of IP ownership by customers  Route hijacking via peering partners or on the wider Internet 6

7 Working Group 4 - Next Steps  Preliminary report to be drafted for June 2012 CSRIC meeting  Flesh out issues/actors/recommendations matrices for DNS and routing  Final agreement within the group on issues to be covered and reported out from the working group  Collection and collation of solutions and practices to provide advisory portion of the report 7

8 Working Group 4 – Project Timeline  Identify stakeholders; detail problem space and challenges of stakeholders; provide example solutions – June, 2012  Identify full set of potential solutions- September, 2012  Draft report on recommendations for best practices – December, 2012  Final report – March, 2013  Teleconferences bi-weekly – Fridays 1330 Eastern 8

Download ppt "Working Group #4: Network Security Best Practices March 22, 2012 Presenter: Tony Tauber, Comcast WG #4 Member Via teleconference: Rod Rasmussen, Internet."

Similar presentations

ICANN Plan for Enhancing Internet Security, Stability and Resiliency.

ICANN Plan for Enhancing Internet Security, Stability and Resiliency.
Sergei Komarov. DNS  Mechanism for IP hostname resolution  Globally distributed database  Hierarchical structure  Comprised of three components.

Sergei Komarov. DNS  Mechanism for IP hostname resolution  Globally distributed database  Hierarchical structure  Comprised of three components.
DirectAccess Infrastructure Planning and Design Published: October 2009 Updated: November 2011.

DirectAccess Infrastructure Planning and Design Published: October 2009 Updated: November 2011.
Implementation Council Meeting Structure and Resources Background: The Implementation Council (Council) roles and responsibilities are described in the.

Implementation Council Meeting Structure and Resources Background: The Implementation Council (Council) roles and responsibilities are described in the.
FCC CSRIC III Working Group 4 Network Security Best Practices Rodney Joffe SVP and Senior Technologist, Neustar, Inc.

FCC CSRIC III Working Group 4 Network Security Best Practices Rodney Joffe SVP and Senior Technologist, Neustar, Inc.
ICANN/ccTLD Agreements: Why and How Andrew McLaughlin Monday, January 21, 2002 TWNIC.

ICANN/ccTLD Agreements: Why and How Andrew McLaughlin Monday, January 21, 2002 TWNIC.
Working Group 11: Consensus Cyber Security Controls March 14, 2013 Alan Paller, SANS Institute Marcus Sachs, Verizon Communications WG 11 Co-Chairs.

Working Group 11: Consensus Cyber Security Controls March 14, 2013 Alan Paller, SANS Institute Marcus Sachs, Verizon Communications WG 11 Co-Chairs.
Working Group #3 E9-1-1 Location Accuracy December 16, 2011 Craig Frost, Verizon Wireless, Co-Chair Stephen J. Wisely, APCO International, Co-Chair.

Working Group #3 E9-1-1 Location Accuracy December 16, 2011 Craig Frost, Verizon Wireless, Co-Chair Stephen J. Wisely, APCO International, Co-Chair.
ChowSCOLD1 Secure Collective Defense Network (SCOLD) C. Edward Chow Yu Cai Dave Wilkinson Sarah Jelinek Part of this project is sponsored by a grant from.

ChowSCOLD1 Secure Collective Defense Network (SCOLD) C. Edward Chow Yu Cai Dave Wilkinson Sarah Jelinek Part of this project is sponsored by a grant from.
Arbor Multi-Layer Cloud DDoS Protection

Arbor Multi-Layer Cloud DDoS Protection
1 Secure DNS Solutions Rooster. 2 Introduction What does security mean for DNS? What security problems exist for DNS, what is being done about them, and.

1 Secure DNS Solutions Rooster. 2 Introduction What does security mean for DNS? What security problems exist for DNS, what is being done about them, and.
Introduction to ICANN’s new gTLD program. A practical example: the Dot Deloitte case. Jan Corstens, Partner, Deloitte WIPO Moscow, 9 Dec 2011.

Introduction to ICANN’s new gTLD program. A practical example: the Dot Deloitte case. Jan Corstens, Partner, Deloitte WIPO Moscow, 9 Dec 2011.
New.net and Multilingual Names Andrew Duff Director of Mktg and Policy, New.net December 2001.

New.net and Multilingual Names Andrew Duff Director of Mktg and Policy, New.net December 2001.
Domain Name System | DNSSEC. 2  Internet Protocol address uniquely identifies laptops or phones or other devices  The Domain Name System matches IP.

Domain Name System | DNSSEC. 2  Internet Protocol address uniquely identifies laptops or phones or other devices  The Domain Name System matches IP.
Transition of U.S. Commerce Department’s National Telecommunications and Information Administration (NTIA) Stewardship of the IANA Functions to the Global.

Transition of U.S. Commerce Department’s National Telecommunications and Information Administration (NTIA) Stewardship of the IANA Functions to the Global.
Addressing of Internet Koji OKAMURA Kyushu University.

Addressing of Internet Koji OKAMURA Kyushu University.
Harness Your Internet Activity. Zeroing in On Zero Days DNS OARC Spring 2014 Ralf Weber

Harness Your Internet Activity. Zeroing in On Zero Days DNS OARC Spring 2014 Ralf Weber
1 ARIN: Mission, Role and Services John Curran ARIN President and CEO.

1 ARIN: Mission, Role and Services John Curran ARIN President and CEO.
Working Group #4: Network Security – Best Practices March 6, 2013 Presenters: Rod Rasmussen, Internet Identity Tony Tauber, Comcast WG #4.

Working Group #4: Network Security – Best Practices March 6, 2013 Presenters: Rod Rasmussen, Internet Identity Tony Tauber, Comcast WG #4.
GOMC Organizational Assessment Progress to Date Joan LeBlanc GOMC Council Coordinator.

GOMC Organizational Assessment Progress to Date Joan LeBlanc GOMC Council Coordinator.

Similar presentations

Ads by Google