Session: Mitigating Domain Name System Cyberattacks

Time: 
Fri, 2011-09-30 14:30 - 16:00

Concise Description:
Cyberattacks have been increasing both in number and ferocity.
Top-level domains are particularly at risk because of the breadth of
the consequences when failures or service degradations occur. When
a country code top-level domain is attacked, both its economy and
its citizens are at risk. A failure or degradation of the country's
domain name system has a direct impact on all Internet services both
within the country and those outside who have a name that is
registered within the country.

SSAC has published several reports with many recommendations for
improving the quality of domain name system services. In this
session we propose to target senior government officials with the
collection of issues and, in some cases, recommended solutions for
the issues. We will include a look at the threat landscape to
explain why the issues are important to consider.

Here is a list of relevant documents published by SSAC:

[SAC041]: Recommendation to prohibit use of redirection and
synthesized responses by new TLDs (10 June 2009)

[SAC038]: Registrar Abuse Contacts (26 February 2009)

[SAC032]: Preliminary Report on DNS Response Modification (20 June
2008)

[SAC031]: SSAC Review of the After Action Report for the gTLD
Registry Failover Exercise conducted 24-25 January 2008 (23 April
2008)

[SAC015]: Why Top Level Domains Should Not Use Wildcard Resource
Records

[SAC008]: DNS Distributed Denial of Service (DDoS) Attacks

[SAC005]: DNS Infrastructure Recommendation (1 November 2003)

[SAC004]: Securing The Edge (17 October 2002)

From twitter...


paulitrix (p8ul1tr3x )

#igf11 #180 There is no definitive list to the number of security threats to DNS

2 years 29 weeks ago

asteris (Asteris Masouras)

Last #igf11 panels cont'd: #180 DNS attacks, #60 Mobile impact in Africa, #12 Sub-Saharan access, #OF6 UNESCO analysis

2 years 29 weeks ago

marcohv20 (MarcoH v 2.0)

.@adielakplogan "clear correlation between #IPv6 capacity building efforts and deployment" #IGF11 #CIR

2 years 29 weeks ago

moreiras (Antonio M. Moreiras)

RT @sgdickinson: Emily Taylor: In remaining 10 mins of #CIR main session, will cover capacity building & IPv6. Speak fast everyone! #IGF11

2 years 29 weeks ago

sgdickinson (Samantha Dickinson)

Emily Taylor: In remaining 10 mins of #CIR main session, will cover capacity building & IPv6. Speak fast everyone! #IGF11

2 years 29 weeks ago

paulitrix (p8ul1tr3x )

Serious debate on the management of Critical Internet Resources and whether some functions should be centralized #CIR #igf11

2 years 29 weeks ago

sgdickinson (Samantha Dickinson)

Tulika Pandey: the IBSA proposal is a 1st draft not ratified by govt yet. #IGF11 #CIR

2 years 29 weeks ago

dotnxtcon (.nxt)

RT @sgdickinson: Esterhuysen: govts in disagreement with each other often reach agreement at expense of non-govt stakeholders #IGF11 #CIR

2 years 29 weeks ago

sgdickinson (Samantha Dickinson)

Esterhuysen: often govts in disagreement with each other will reach agreement at expense of non-govt stakeholders #IGF11 #CIR

2 years 29 weeks ago

sgdickinson (Samantha Dickinson)

Fiona Alexander: IBSA proposal undermines multistakeholder model. There are ways govt can be involved already. eg ICANN GAC. #IGF11 #CIR

2 years 29 weeks ago