TLD-OPS Standing Committee Meeting cctld Security and Stability Together

Similar documents
Thank you. So, there was the echo.

TLD- OPS Overview. Version 1.2 Mar 2, SECIR Working Group

TLD- OPS Overview. Version 1.0 Jan 31, SECIR Working Group

Root KSK Roll Delay Update

ThaiCERT Incident Response & Phishing cases in Thailand. By Kitisak Jirawannakool Thai Computer Emergency Response team (ThaiCERT)

ICANN PacNOG 11

IANA Update ICANN Meetings, Marrakech Kim Davies Internet Assigned Numbers Authority

Security and Stability Advisory Committee!! Activities Update! ICANN Los Angeles Meeting! October 2014! #ICANN51

President s Report 2009

IANA Stewardship Transition Coordination Group (ICG)!! October 2014! ianacg.org!!!

KENIC Report 2007/8. 33 rd ICANN Meeting, 4 th November 2008, Intercontinental Hotel, Cairo. Ali Hussein

IANA ccnso Update Kim Davies ICANN 55, 8 March 2016

Contractual Compliance Update. Contractual Compliance ICANN 57 5 November 2016

Update on IANA Seoul, Republic of Korea October 2009

The IDN Variant TLD Program: Updated Program Plan 23 August 2012

RDAP Implementation. Francisco Arias & Gustavo Lozano 21 October 2015

Next Steps for WHOIS Accuracy Global Domains Division. ICANN June 2015

ICANN 48 NEWCOMER SESSION

Current procedures, challenges and opportunities for collection and analysis of Criminal Justice statistics CERT-GH

Intellectual Property Constituency (IPC)

New Concept for Article 36 Networking and Management of the List

Name Collision Occurrence Management Framework

SSR REVIEW IMPLEMENTATION REPORT (Public) *DRAFT*

Contractual ICANN. An Overview for Newcomers 11 March 2012

Overview. Coordinating with our partners, we help make the Internet work.

Open Mee'ng of the Security & Stability Advisory Commi=ee. 26 October 2009

Second Security, Stability, and Resiliency of the Domain Name System Review Team (SSR2) ICANN60 October 2017

This report is based on sampled data. Jun 1 Jul 6 Aug 10 Sep 14 Oct 19 Nov 23 Dec 28 Feb 1 Mar 8 Apr 12 May 17 Ju

Examining! the User Experience Implications! of Active Variant TLDs Project! Study Completed in March 2013!

Work in progress in Internet governance: a proposed study on ICANN s opening for new gtlds

Security and Stability Update!

COURSE LISTING. Courses Listed. Training for Database & Technology with Modeling in SAP HANA. 20 November 2017 (12:10 GMT) Beginner.

Cybersecurity is a Team Sport

Universal Acceptance An Update

IDN Variant Issues Project (VIP) Project Update and Next Steps 14 March 2012

NIR February JPNIC Updates. Hiroki Kawabata Japan Network Information Center (JPNIC) Copyright 2016 Japan Network Information Center

Town of Georgetown Comprehensive Plan

AIL Framework for Analysis of Information Leaks From a CSIRT use-case towards a generic analysis open source software

Substance, Product, Organisation and Referential (SPOR) communication update

IGO/INGO Identifiers Protection Policy Implementation. Meeting with the IRT 9 March 2016

Draft Applicant Guidebook, v3

Display and usage of Interna3onalized Registra3on Data. Dave Piscitello

DNS and ICANN. Laurent Ferrali. 27th August 2018

Asks for clarification of whether a GOP must communicate to a TOP that a generator is in manual mode (no AVR) during start up or shut down.

Internet Corporation for Assigned Names & Numbers - Internet Assigned Numbers Authority Update

ccnso activity overview (work plan) Monthly overview Version: August 2016

The Objectiives. Give the UAE an extensive global presence in the cyber world.

APWG Global Phishing Survey 2H2010

software.sci.utah.edu (Select Visitors)

ICANN Identifier System SSR Update 1H 2015

Running A Highly Scaled Registry DNS Platform. ICANN 55 Tech Day Anycast Panel Chris Griffiths -

Wildcards Study Group Report

APNIC History and Overview

SECURE YOUR APPLICATIONS, SIMPLIFY AUTHENTICATION AND CONSOLIDATE YOUR INFRASTRUCTURE

APNIC Status Report. LACNIC III Mexico City 11 November 2002

North American Portability Management, LLC LNPA Transition Contingency Rollback. Industry Working Session January 16 th, 2018

COURSE LISTING. Courses Listed. Training for Cloud with SAP Cloud Platform in Development. 23 November 2017 (08:12 GMT) Beginner.

ICANN and Russia. Dr. Paul Twomey President and CEO. 10 June International Economic Forum St. Petersburg, Russia

COURSE LISTING. Courses Listed. Training for Database & Technology with Development in SAP Cloud Platform. 1 December 2017 (22:41 GMT) Beginner

Russ Housley 21 June 2015

Monthly SEO Report. Example Client 16 November 2012 Scott Lawson. Date. Prepared by

Automatic Renewal Using DIY Technology to Create an Improved Patron Experience

UAE PUBLIC TRAINING CALENDAR

Incident Response WG Status

# ICANN/ISOC cctld workshop # October 2006 # Sofia, Bulgaria. # implementing IDNs. Andrzej Bartosiewicz

Transition Implementation Status Reporting. 12 August 2016

Report on Spamvertising and Phishing using.hk Domain Names and McAfee Report. ccnso Meeting June 24, 2008

Replacing the WHOIS protocol. Tech Day Boungainvillea room 12 March 2012, 16:40-16:55

DNS Risk Framework Update

COURSE LISTING. Courses Listed. with SAP Hybris Marketing Cloud. 24 January 2018 (23:53 GMT) HY760 - SAP Hybris Marketing Cloud

WHOIS Review Team Internationalized Registration Data Expert Working Group. Margie Milam ICANN October 2015

Overview & Update. Manager, Regional Relations Middle East. Internet Festival Hammamet, Tunis August 2008

Root KSK Rollover Update (or, We're really doing it this time)

FREQUENTLY ASKED QUESTIONS

Compliance Enforcement Initiative

10th Maintenance Cost Conference Chairman s Report Athens Sept 10& Tiymor Kalimat Manager Technical Procurement Royal Jordanian Airlines

IPv6 in Sweden Helena Åkerlund Head of the Numbering and Addressing section The Swedish Post and Telecom Authority Swedish Post and Telecom Authority

Dan Lobb CRISC Lisa Gable CISM Katie Friebus

Certificate in Security Management

Work to establish standard ENTSOE STAKEHOLDER COMMITTEE 1

ICANN Update at PacNOG15

Université Cheikh Anta DIOP de Dakar. DNS Ecosystem. IROC Workshop October UCAD II

No domain left behind

Contractual Compliance. Registry Stakeholder Group March 2012

It Internationalized ti Domain Names W3C Track: An International Web

Sophos Central for partners and customers: overview and new features. Jonathan Shaw Senior Product Manager, Sophos Central

IANA Developments ccnso, Wellington Kim Davies Internet Assigned Numbers Authority

Stakeholder consultation process and online consultation platform

Internationalized Domain Names

Update on ICANN Domain Name Registrant Work

ICANN Board Status Advice Report Advice Item Status As of 30 Nov 2017

Statistics Clearinghouse function Infrastructure Alert function

Public Forum. Wellington, New Zealand March 30, Steve Crocker

2014 ITS 3C Summit GDOT TMC Reconfiguration

Ohio Department of Transportation. SMS Update. District Bridge Engineers. Amjad Waheed, PE. Engineering Division Office of Structural Engineering

CIDR. The Life Belt of the Internet 2005/03/11. (C) Herbert Haas

ICANN Overview & Global and Strategic Partnerships

Network Rationalization Update

Gateway Transportation Collaboration Forum. 21/01/2015 Gateway Transportation Collaboration Forum 1

RSSAC Activities Update. Lars Johan Liman and Tripti Sinha RSSAC Chair ICANN-54 October 2015

Transcription:

Meeting cctld Security and Stability Together October 31, 2017 ICANN60, Abu Dhabi Jacques Latour,.ca (Chair)

Agenda TLD-OPS Meeting @ ICANN60, Oct 29, 2017 1. Opening and welcome (Jacques) 2. TLD-OPS introduction (Jacques) 3. Action points (All) 4. TLD-OPS status and operational issues (Kim C., everyone) 5. TLD-OPS DDoS mitigation Workshop readiness (Jacques) 6. Objectives ICANN60 / ICANN61 (All) 7. Summary for TLD-OPS members and ccnso community (All) 8. AOB (All) 9. Closing (Jacques) Open discussion: TLD-OPS DDoS mitigation Workshop readiness

TLD-OPS Introduction cctld Security and Stability Together October 31, 2017 ICANN60, Abu Dhabi Jacques Latour,.ca (Chair)

TLD-OPS Global technical incident response community for and by cctlds, open to all cctlds Brings together 345+ people who are responsible for the operational security and stability of 192 different cctlds Goal: enable cctld operators to collaboratively detect and mitigate incidents that may affect the operational security and stability of cctld services and of the wider Internet Further extends members existing incident response structures, processes, and tools and does not replace them Guidance by cctld reps and Liaisons (SSAC, IANA, ICANN s security team)

Contact Repository Email John Doe, #1,.nl, +31 123456789 john.doe@nic.nl, john@oarc.net Jane Doe, #1,.vn, +84 123456789 jane.doe@nic.vn, jane@oarc.net Stats: 328 subscribers from 186 cctlds

Security Alerts and Queries # Description Month 11 Two DDoS attacks on a registry s name servers Mar-17 10 Registry front-end compromize due to 0-day vulnerability Mar-17 9 Queries on latency problems with DNS anycast operator Dec-16 8 Security warning regarding large volumes of Cutwail Traffic Nov-16 7 Alert: several members reporting large DNS traffic spikes Nov-16 6 Security warning for a cctld that was hacked Aug-16 5 Helped cctld with problems with their DNS anycast service Jul-16 4 Security warning on DDoS attack on DNS root Jun-16 3 Alert: spear-phishing attacks against cctld operators Apr-16 2 Large malvertising campaign targeting popular cctld websites Apr-16 1 A ransomware that used domain names of various cctlds Feb-16

TLD-OPS Membership Stats All Members % Missing % Total Total 192 66% 99 34% 291 ASCII Members % Missing % Total Total 163 67% 82 33% 245 AF 25 49% 26 51% 51 AP 50 61% 32 39% 82 EU 65 100% 0 0% 65 LAC 18 43% 24 57% 42 NA 5 100% 0 0% 5 IDN Members % Missing % Total Total 29 63% 17 37% 46 Last update: October 24, 2017

Summary Open and global incident response community for and by cctlds Builds on standard mailing list (192 cctlds, 345+ subscribers) Enhances local incident response facilities, not a replacement Increases everyone s reachability and security awareness Everyone has everyone else s contact info in their inbox, even offline Exchange security alerts and queries (DDoS attacks, phishing, etc.) Learn from each other Easy to join (through IANA Admin Contact) Difficult to measure effectiveness of contact repository

Agenda TLD-OPS Meeting @ ICANN60, Oct 29, 2017 1. Opening and welcome (Jacques) 2. TLD-OPS introduction (Jacques) 3. Action points (All) 4. TLD-OPS status and operational issues (Kim C., everyone) 5. TLD-OPS DDoS mitigation Workshop readiness (Jacques) 6. Objectives ICANN60 / ICANN61 (All) 7. Summary for TLD-OPS members and ccnso community (All) 8. AOB (All) 9. Closing (Jacques) Open discussion: TLD-OPS DDoS mitigation Workshop readiness

Action Point No. Action Who Deadline Status Date Notes created 66 Contact Greenland once more if they're willing to join Erwin 1-Jun-17 Closed 24-Apr-17 Update 2017.06.02: Erwin will try to contact them through Patrick Miles of CENTR. Deadline: next conference call. Update 2017.06.19: Erwin will drop.gl another email. Update 2017.09.07: Erwin try one more tiem and we close this item. 77 Review TLD-OPS Charter with evolving role 78 Provide outline of new process for "contact update" for secondary email address and other contact changes. 80 The bi-monthly "TLD-OPS Incident Response Community Repository" email does not list one contact per line in outlook. We need to figure out how to have one contact per line. 81 Send Dave Piscitello email to present at TLD-OPS at beginning of block 5 Brett, Erwin, Jacques Kim Jacques 12-Oct-17 Closed 26-Jun-17 First draft was reviewed by committee and a new draft will include working around "non ccnso member" committee member requirements and solicit feedback from Bart. Jacques sent charter to Katerine and Bart for review. 12-Oct-17 Open 01-Aug-17 Contact update process to use a new ICANN TLD-OPS contact change address not to burden the ccnso secretariat email address. - we accept changes from admin or TLD-OPS contact - create a new ICANN address - update documentation with new process Update 2017.09.07: Kim to provide updated documentation Update 2017.10.24: - Please announce we are now accepting secondary emails and to email us at: TLD-OPS-Admin@icann.org - Update the TLD-OPS web site with this new step - Update the leaflet with mention of secondary email address - Send TLD-OPS email with availability of new procedure/feature - Update ccnso update with this mention Fred 9-Sep-17 Open 01-Jan-18 Assigned to Fred? How do we fix mailman to show one line per contact? Update 2017-10-24: Sent email to Fred to propose a resolution solution. Erwin 9-Sep-17 Closed 15-Oct-17 Erwin to send email asking Dave to present with focus on TLD-OPS attendees.

Agenda TLD-OPS Meeting @ ICANN60, Oct 29, 2017 1. Opening and welcome (Jacques) 2. TLD-OPS introduction (Jacques) 3. Action points (All) 4. TLD-OPS status and operational issues (Kim C., everyone) 5. TLD-OPS DDoS mitigation Workshop readiness (Jacques) 6. Objectives ICANN60 / ICANN61 (All) 7. Summary for TLD-OPS members and ccnso community (All) 8. AOB (All) 9. Closing (Jacques) Open discussion: TLD-OPS DDoS mitigation Workshop readiness

TLD-OPS Operations Since ICANN59 - Kim Security alerts None Membership updates Joined: Namibia, Lesotho and Greenland Contact updates: 6 (new, removal) All of Europe and North America now covered Good work!!! Implemented support for secondary email addresses

Agenda TLD-OPS Meeting @ ICANN60, Oct 29, 2017 1. Opening and welcome (Jacques) 2. TLD-OPS introduction (Jacques) 3. Action points (All) 4. TLD-OPS status and operational issues (Kim C., everyone) 5. TLD-OPS DDoS mitigation Workshop readiness (All) 6. Objectives ICANN60 / ICANN61 (All) 7. Summary for TLD-OPS members and ccnso community (All) 8. AOB (All) 9. Closing (Jacques)

Agenda TLD-OPS Meeting @ ICANN60, Oct 29, 2017 1. Opening and welcome (Jacques) 2. TLD-OPS introduction (Jacques) 3. Action points (All) 4. TLD-OPS status and operational issues (Kim C., everyone) 5. TLD-OPS DDoS mitigation Workshop readiness (All) 6. Objectives ICANN60 / ICANN61 (All) 7. Summary for TLD-OPS members and ccnso community (All) 8. AOB (All) 9. Closing (Jacques)

Objectives ICANN60 Develop and present a revised TLD-OPS charter Develop a strategy for TLD-OPS workshops (ICANN workshop and participating in regional workshop) Increase membership by 3 to 190 (now at 192)

Objectives for ICANN61 Summarize the ICANN 60 TLD-OPS workshops outcome into a Document a TLD-OPS workshops strategy for ICANN and regional workshop. Increase membership by 3 to 195

Agenda TLD-OPS Meeting @ ICANN60, Oct 29, 2017 1. Opening and welcome (Jacques) 2. TLD-OPS introduction (Jacques) 3. Action points (All) 4. TLD-OPS status and operational issues (Kim C., everyone) 5. TLD-OPS DDoS mitigation Workshop readiness (All) 6. Objectives ICANN60 / ICANN61 (All) 7. Summary for TLD-OPS members and ccnso community (All) 8. AOB (All) 9. Closing (Jacques)

Q&A Frederico Neves,.br Jacques Latour,.ca (chair) Erwin Lansing,.dk Ali Hadji Mmadi,.km Jay Daley,.nz Abibu Ntahigiye,.tz Brett Carr,.uk Warren Kumari (SSAC contact ) John Crain (ICANN s security team contact) Kim Davies (IANA contact) ICANN Staff Kim Carlson TLD-OPS Home http://ccnso.icann.org/resources/tld-opssecure-communication.htm TLD-OPS Leaflet https://ccnso.icann.org/workinggroups/tldops-enhanced-incident-response-capabilitiescctlds-14apr16-en.pdf Arabic, Chinese, English, French, Russian, Spanish, Russian Contact Jacques Latour Standing Committee Chair +1.613.291.1619 jacques.latour@cira.ca

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback