38th CENTR Administrative workshop

Transcription

1 38th CENTR Administrative workshop Welcome and introductions 2. Host presentation (Regina Fuchsová,.eu) 3. OpenData (Benoît Ampeau,.fr) 4. Plans on Dropcatching and trade / transfer operations (Mickaël Vigreux,.fr) 5. Approval of the "Registry requirements towards registrars" table (see Admin 37) 6. Update from the Registrar Requirements Task Force (RARTF) (Stefan Kovač,.rs) 7. Tour de table of registry updates Lunch Lightning Talks 8.1 Registrar accreditation (Unni Solas,.no, Marie Ekh,.se, Stefan Kovač,.rs) followed by a group discussion 8.2 Registrar satisfaction surveys (Jasper Kesteloot,.be; Regina Fuchsová,.eu; Ines Esteves,.pt) followed by a group discussion 9. Types of supportive documents for data within domain registration (Peter Biro,.sk) Coffee break 10. Tour de Table revisited 11. Rush, rush - DENIC's "new system" for domainers (Sascha Kämpf,.de) 12. Feedback round End of workshop 8th CENTR R&D workshop

2 Welcome and introductions (Mohsen Souissi, Alex Mayrhofer, Co-Chairs) 1.1 Tour de Table 1.2 Agenda bashing 1.3 Administrativa Lunch Coffee break 2. Update on members R&D activities 2.1 TLD Labs -.jprs R&D platform (Shoji Noguchi, JPRS) 2.2 Update from other Registries 3. Data & Measurement Research 3.1 DNS & BGP infrastructure measurements and analysis (Dave Knight, Dyn) 3.2 OpenINTEL - Measuring 60% of the DNS name space, everyday (Mattijs Jonker, OpenINTEL Consortium) 3.3 Domain Popularity Ranking Revisited (Sebastian Castro, NZRS) 3.4 TLD Traffic Analysis goes Open Source (Moritz Müller, SIDN) 3.5 cctld Operators sharing zone Data and Summaries (Paul Hoffman, ICANN) 3.6 Panel: Q&A on Data centric Projects and Ideas (Sebastian Castro, NZRS / Moritz Müller, SIDN / Paul Hoff /Mattijs Jonker, OpenINTEL Consortium / Dave Knight, Dyn) 4. Security & Cryptography Research 4.1 Honeypot as a Service (Bedrich Kosata, CZ.NIC) 4.2 Measuring the deployment of Elliptic Curve Cryptography in DNSSEC (Maciej Andzi?ski, NASK) 4.3 Providing support of new cryptographic algorithms in software libraries (Dmitry Belyavsky, TCINET) 5. Emerging Topics 5.1 DNS over TCP: The new frontier (Stéphane Bortzmeyer, AFNIC) 5.2 Other emerging Topics. Panel discussion (Panelists to be confirmed)

3 17.30 End of the workshop 6. Summary, Action plan, and Wrap-up (Mohsen Souissi, Alex Mayrhofer, Co-Chairs) 11th CENTR Security workshop Opening, welcome, what will we learn today 1. Host Introduction (Dirk Jumpertz,.eu) 3. Interactive part Lunch Everybody will be asked to write down: - The most interesting or impacting security incident in general last year? - What was the security incident with the most impact in your organisation last year and why? 4. Security Incidents & Processes 4.1 Major security incidents (case studies) and the incident management handling process in theory and pract Tomek, SBA-Research) 4.2 Encrypting Malware (Ivo Kutts,.lv) 4.3 SYN flood attack against WEB service (Tomas Mackus,.lt) 4.4 IIS Security Incident process (Anne-Marie Eklund Löwinder,.se)) 4.5 DDoS attack to JP DNS (Yoshiro Yoneya,.jp) 5. Mango Dynamic web from text files (Ivo Kutts,.lv) 6. Lightning talks - open format 6.1 Sink holes (Dirk Jumpertz,.eu) 6.2 External pentest (Erwin Lansing,.dk) 6.3 MISP (Zarko Kecic,.rs) 7. Small Registries and Security (Andrej Bagon,.si) 8. GDPR (Dirk Jumpertz,.eu) 9. Randomness and (EC)DSA (Daniel Stirnimann,.ch/.li)

4 15.45 Coffee break 10. SITO (Moritz Muller,.nl) 11. TLP [Red] round - only for CoCs What did we learn today? Wrap up and closing. Day 2: Interactive sessions Data protection / privacy 9.00 Internet of Things 9.00 Use of a domain name 9.00 Security awareness game (group 1) 9.00 Advanced presentation skills 9.00 CENTRstats demo (group 1) Secure Coding Threats to the industry Coffee break Coffee break Hot topics from other regions Innovation culture within registries

5 11.30 EU Commission security expert Crash course on EU policy-making CENTRstats demo (group 2) Zero Growth Lunch Lunch Domain name abuse CENTRstats demo (group 3) Engaging the channel Security awareness game (group 2) Registry liability Break-out room Cybersecurity demo Big Data Crisis management (part 1) Collaboration pitches CENTR RAR Day preparations

6 15.00 Unconference / Open Space (part 1) Coffee break Coffee break NIS Directive Data monetisation Crisis management (part 2) ID federations Security awareness game (group 3) Unconference / Open Space (part 2) 20th CENTR Marketing workshop Welcome and introductions Tour de table of registry updates Statistics & metrics Lunch break From NO plan to A plan CENTRstats, methodology & Data sharing (Patrick Myles, CENTR) Competition law approach to market definition and market shares (Cristina Vila Gisbert, EU and competition lawyer at Cuatrecasas) Comments & Discussion (Michiel Henneke, SIDN) (Malene Hansen,.dk) uk &.wales: segmentation, partnership and celebration (Neil Dagger,.uk)

7 14.30 Customised Reduction Schemes (CRS) and Registrar Club (Daniela Medda & Regina Fuchsová,.eu) New corporate identity of.nl (Marnie van Duijnhoven,.nl) Wrap-up, topics for next meeting Coffee break 34th CENTR Technical workshop Opening and Welcome 1. Tour de Table 2. Zonefile Access for.se (Patrik Wallström, IIS) 3. Updates on TRTF (Stéphane Bortzmeyer, AFNIC) 4. WHOIS No More: The Future of Registration Metadata (Scott Hollenbeck, Verisign) 5. RDAP and other technical work at IANA (Kim Davies, ICANN) 6. Where are we in DNS privacy? (Stéphane Bortzmeyer, AFNIC) Lunch 7. DevOps the AWSome way (Maarten Bosteels, Tom Wouters, DNS Belgium) 8. DNS Anycast Deployment: Lessons from the First Year (Amanda Swain, CIRA) 9. Coming of age of a zone file (Ulrich Wisser, IIS) Coffee break AOB & End of the meeting 50th CENTR Legal & Regulatory workshop Welcome and introductions

8 2. Approval of the Agenda 3. Host Presentation (Geo Van Langenhove,.eu) 4. Open Mic AOB We will try something new which I have decided to dub "Open Mic". The traditional tour de table has become such a big success that it takes very long (the last time we did one, in Belgrade, it was finished at around 3 pm). There's nothing wrong with that - rather to the contrary, many of you have told me that the tour de table and the discussions that derive from it are particularly interesting and helpful. Nevertheless, the sheer duration of the tour de table makes it impossible to have one at every meeting, for there would hardly be any time left for anything else (which is why we didn't have one at the last meeting in Lisbon). 5. "Can an Injunction Against the Domain Name Holder Trigger Registry Liability? - A New Law Suit Against n (Bernhard Erler,.at) 6. "Court Assessment of.be's Terms & Conditions - More Than a Play on Words? (Peter Vergote,.be) 7. "Privacy RFCs - A GDPR Compliance Tool?" (Nathalie Boulvard & Stephane Bortzmeyer,.fr 8. "Hide & Seek - Ways to Hide the Registrant's Identity and How to Cope With Them" (Geo Van Langenhove,.eu) 9. "How.nz Solved Names Registered to Struck Off Companies" (Steven Heath,.nz) 10. "Opening Pandora's Box (?) - Addressing, Blocking, Seizure, and Take-down of Domain Names - Norid's W (Ann-Cathrin Marcussen,.no)