DNS

Noteworthy

 Today, professional services teams must help clients do more with less — less staff, smaller budgets and fewer resources in general.

 As protests of all kinds seem to be gaining momentum these days, it will be interesting to see what develops next with DDoS attacks.

 Real people are reporting attacks and real people are responding.

 While the danger is hardly over, these larger institutions have learned some painful lessons that smaller firms might heed as they seek to minimize risks.

 As Neustar sees it, there are three key elements to dedicated DDoS protection: people, process and technology.

 Why Can't a Product or Service Meet All My Needs??? With Professional Services, It Can!

Blogs

Verisign's Preliminary Comments on ICANN's Name Collisions Phase One Report

Verisign posted preliminary public comments on the "Mitigating the Risk of DNS Namespace Collisions" Phase One Report released by ICANN earlier this month. JAS Global Advisors, authors of the report contracted by ICANN, have done solid work putting together a set of recommendations to address the name collisions problem, which is not an easy one, given the uncertainty for how installed systems actually interact with the global DNS. However, there is still much work to be done. I have outlined the four main observations... more»

Black Helicopters for the DNS: What Happens In 2025?

When Steve delBianco from NetChoice testified (April 2, 2014) in the Subcommittee on Communications and Technology of the US House of Representatives on "Ensuring the Security, Stability, Resilience, and Freedom of the Global Internet", he proposed a stresstest for new mechanisms which could substitute the role of the NTIA in overseeing the IANA contract with ICANN. Stresstests are good. It is good for cars, it is good for banks and it is good for new mechanisms... more»

What the US Government Said About IANA in Singapore

Two weeks ago, the US government announced it would transition its role in the IANA functions to the global Internet community. It tasked ICANN with the job of arriving at a transition plan and noted that the current contract runs out in 18 months' time, 30 September 2015. This week, ICANN started that process at its meeting in Singapore. And on the ground were the two key US government officials behind the decision. more»

IANA: The World Loses if the Technical Industry Checks Out

On Friday, 14 March 2014, the U.S. Department of Commerce National Telecommunications and Information Administration (NTIA) announced its intention to transition the IANA functions to the global multistakeholder community. As expected, the announcement has sent adrenaline coursing through the veins of Internet governance experts and government policy people the world over. I'd argue, however, that it is an important point for the Internet's technical experts to sit up and take notice, as well: the fact that you are probably saying "what problem does this solve?" is a testimony to how much works well today, and we want to make sure it continues to work well in any future arrangements. more»

Proceedings of Name Collisions Workshop Available

Keynote speaker, and noted security industry commentator, Bruce Schneier (Co3 Systems ) set the tone for the two days with a discussion on how humans name things and the shortcomings of computers in doing the same. Names require context, he observed, and "computers are really bad at this" because "everything defaults to global." Referring to the potential that new gTLDs could conflict with internal names in installed systems, he commented, "It would be great if we could go back 20 years and say 'Don't do that'," but concluded that policymakers have to work with DNS the way it is today. more»

DNSSEC Workshop on March 26 to Be Streamed Live from ICANN 49 in Singapore

If you are interested in DNSSEC and how it can make the Internet more secure, the DNSSEC Workshop at ICANN 49 in Singapore will be streamed live for anyone to listen and view. One of three DNSSEC-related technical events at ICANN 49, the DNSSEC Workshop takes place on Wednesday, March 26, from 8:30am - 2:45pm Singapore time. more»

NTIA & You: NTIA's Intention to Transfer IANA Functions to the Global Community Is Welcome, But…

It is no secret that both the US government, ICANN, and the global Internet community have argued and worked tirelessly for the past 15 odd years on the vexing issue of globalizing the US government's role in the IANA function. Despite the desire, long-held by many, for the US to relinquish its control of the IANA function, it is clear that getting to full multistakeholder control of the function is not going to be easy. more»

Questions and No Answers to US Oversight transition, ICANN's Role and Future of Internet Governance

Traditionally, the Internet Corporation for Assigned Names and Numbers (ICANN) coordinates the Internet Assigned Numbers Authority (IANA) functions, which are key technical services critical to the continued operations of the Domain Name System (DNS)... ICANN has also evolved in its structures to use the 'Multistakeholder Model' in the dissemination of some of its functions and this has seen the creation of working groups and constituencies. more»

Policy Advisory Board Model Now a Test of Multistakeholder Model

In early November 2013, prior to ICANN's Buenos Aires meeting, I published an article at this forum, Policy Advisory Boards – A Cornerstone PICS (Public Interest Commitment Specification), that extoled the advantages of adopting a Policy Advisory Board (PAB) model as a practical, effective, and least burdensome means of effectively implementing the request of ICANN's Governmental Advisory Committee (GAC) for consumer and competitive safeguards at sensitive new gTLD "strings" - especially those that are related to regulated industries and professions. It is deeply gratifying that the article has received nearly 9,000 views since first being posted and inspired considerable discussion. more»

Dynamic DNS Customers, Check Your Router Settings!

There have been quite a few news stories released over the last 24 hours regarding a wide-scale compromise of 300,00 Internet gateway devices. Here's the executive summary of what happened, how to check if you are vulnerable, and what you can do to fix it... If you use any of these devices, you should check it to ensure your device has not been compromised. more»

Jeff Schmidt to Present Name Collision Management Framework at Research Workshop

I'm delighted to announce that the name collisions workshop this weekend will include Jeff Schmidt, CEO of JAS Global Advisors, presenting the Name Collision Occurrence Management Framework that his firm just released for public review. Jeff's presentation is one of several on the program announced by the program committee for the Workshop and Prize on Root Causes and Mitigations of Name Collisions (WPNC). more»

Keynote Speaker for Name Collisions Workshop: Bruce Schneier

There may still be a few security practitioners working in the field who didn't have a copy of Bruce Schneier's Applied Cryptography on their bookshelf the day they started their careers. Bruce's practical guide to cryptographic algorithms, key management techniques and security protocols, first published in 1993, was a landmark volume for the newly emerging field, and has been a reference to developers ever since. more»

Namecoin Decentralized DNS Research

The holidays open up a block of time to catch up on "I meant to read that" bookmarks, RSS feeds, and all the favorited and forgotten tweets. I made it through 50 before a NormanShark blog post kicked off a research project. The analysts found a malware sample which was using .bit domains in their communications infrastructure, but .bit ... what is that? .bit is a TLD operating outside of ICANN. Some would say they are TLD squatting, but I leave that opinion up to the reader. more»

More Problems Crop Up With Universal Acceptance of Top Level Domains

I've often found truth in the famous George Santayana quote, "Those that cannot remember the past are doomed to repeat it." That's an apt warning for what is currently happening - again - with the hundreds of new generic Top Level Domains (gTLDs) that are launching ... and failing to work as expected on the Internet. First, a quick refresher: As most CircleID readers know, in the early 2000s, seven new gTLDs were launched: .AERO, .BIZ, .COOP, .INFO, .MUSEUM, .NAME and .PRO. Aside from Country Code TLDs (ccTLDs), these were the first top-level changes to the DNS since the early days of the Internet. more»

Extreme Vulnerability at the Edge of the Internet - A Fresh New Universal Human-Rights Problem

By design, the Internet core is stupid, and the edge is smart. This design decision has enabled the Internet's wildcat growth, since without complexity the core can grow at the speed of demand. On the downside, the decision to put all smartness at the edge means we're at the mercy of scale when it comes to the quality of the Internet's aggregate traffic load. Not all device and software builders have the skills - and the quality assurance budgets - that something the size of the Internet deserves. more»

News Briefs

Secure Domain Foundation Launched to Help Internet Infrastructure Operators Fight Cybercrime

US Ambassador and US Commerce Dept Assistant Secretary Defend Transition of IANA Oversight

U.S. Government Announces Intent to Transition DNS Functions to Global Community

Widespread Compromised Routers Discovered With Altered DNS Configurations

Asia Pac Digital Marketing & gTLD Strategy Congress to Be Held in Hong Kong on May 14-15

SPECIAL: Video Interviews from NamesCon 2014 in Las Vegas

Upcoming Latin America and Caribbean DNS Forum

Google DNS to Be Discontinued in Brazil Ahead of New Law

Paul Mockapetris to Serve as Senior Security Advisor to ICANN's Generic Domains Division

GSA Looking Into .gov Outages

ICANN, NTIA, Verisign and ANA Weighing In on 'Name Collisions' and the Readiness of New gTLD Program

Dotless Domains Considered Harmful, Says IAB

LinkedIn Outage Due to DNS Issue

UNESCO Director-General on Linguistic Diversity on the Internet: Main Challenges Are Technical

U.S. CERT Issues Alert on DNS Amplification Attacks

Google Announces DNSSEC Support for Public DNS Service

ICANN Releases Guideline for Coordinated Vulnerability Disclosure Reporting

FBI Agent Thomas X. Grasso Receives First J.D. Falk Award for Establishing DNS Changer Working Group

Twitter's t.co Domain Outage Caused by Human Error

The Tale of Thousands of Hacked Modems in Brazil, Affecting Millions

Most Viewed

Most Commented

Taking Back the DNS

Domain Tasting Target of US Federal Cybersquatting Lawsuit

When Registrars Look the Other Way, Drug-Dealers Get Paid

Squeegee Domains

Ask Vint Cerf: The Road Ahead for Top-Level Domains

Neustar Updates – Sponsor

Why Managed DNS Means Secure DNS

The current DNS protocol, "if my packets don't get through I'll just retransmit them and they're not critical" will no longer cut it in today's ever-changing security landscape. ›››

Rodney Joffe on Why DNS Has Become a Favorite Attack Vector

DDoS attacks have continuously been on the rise and as you may have heard plenty already, more and more attackers are targeting DNS. In the following video, Rodney Joffe, Neustar's Senior Vice-President and Technologist, explain how hardened DNS can keep your business safe. ›››

Neustar's Proposal for New gTLD Collision Risk Mitigation

Neustar has a vested interest in ensuring that the domain name system is as secure and stable as possible. We have been operating top level domains (TLDs) for more than a decade, and we intend to provide the same level of service as the back-end registry provider for more than 350 applicants for the new generic TLDs that we hope will become available in the coming months. ›››

Neustar Launches Global Partner Program

Neustar has launched a new program to allow partners to resell Neustar's cloud-based infrastructure services, including managed DNS and DDoS protection offerings, to their online customers. ›››

Neustar Launches Enterprise Professional Services Offerings

Neustar announces the launch of Neustar Professional Services with a comprehensive suite of IT service offerings for enterprise organizations of all sizes. Neustar's seasoned team of professionals provides the expertise and resources organizations need to ensure the performance, security and reliability of their IT infrastructure. ›››

Neustar Labs Innovation Center Grand Opening (Video)

In March, Neustar announced the opening of the Neustar Labs Innovation Center at the University of Illinois Urbana-Champaign. Friends of Neustar at Illinois have prepared the following video from the grand opening day. ›››

Neustar Selected as Registry Services Provider for 358 Top-Level Domain Applications

Neustar today announced that it has been selected as the registry services provider for 358 applications for new generic Top-Level domains (gTLDs). Additionally, Neustar has been selected by the City of New York as the registry service provider to manage the application process and operate .nyc. ›››

Industry Updates

Participants – Random Selection