While threat actors can use any domain across thousands of top-level domains (TLDs), they often have favorites. For instance, you may be familiar with Spamhaus's 10 most-abused TLDs for spamming. WhoisXML API researchers recently built on this list by analyzing 40,000 newly registered domains (NRDs) that sported some of the listed unreputable TLDs. We called this study "DNS Abuse Trends: Dissecting the Domains Under the Most-Abused TLDs." more
In 1949 a Bell Laboratory researcher, Claude Shannon, published a paper on a new science of "Information". Bell Labs had sponsored the research with the goal of improving phone networks but was not prepared to embrace the full implications of the new science which made explicit the distinction between information in the information sense and information encoded in numbers or bits... more
A week ago, Paul Vixie wrote a thoughtful piece on the morality of DDos, for both sides of the equation of the Wikileaks issues. In it he summarizes things nicely: "Denial of service is not merely a peaceful protest meant to garner attention for a cause. Denial of service is forcible and it is injurious. It is not like any form of civil disobedience, but rather it is criminal behaviour more like looting." Well said, Paul... more
Bulgaria is a nation which is directly impacted by the current Fast Track automatic disqualification when Top-Level Domain (TLD) strings are "confusingly similar" to other TLDs, in this case an Internationalized Domain Name (IDN) country code Top-Level Domain (ccTLD). Bulgaria has already been declined twice (in late 2009, and in May of 2010) to register the *.?? Cyrillic IDN on the premise that it looks confusingly similar to Brazil's *.br ASCII TLD. Being a native Bulgarian, I did not see how these two strings are similar more
In a recent article, eWeek reports on researchers at Microsoft revealing large-scale, typo-squatting schemes that use "multi-layer URL redirection to game Google's AdSense for domains program". According to this report, the Microsoft Research Systems Management Research Group succeeded in tracking a ring of typo-squatters registering misspelled domain names that generated traffic for serving advertising from Google. more
I never thought I'd see the day when the difference in capability between a wireless and a wireline Internet would become a core policy differentiator in a national election, but this has now happened in Australia. ... It seems that everyone has an interest in a ubiquitous, fast and cheap internet. Now that interest has been taken up as a major policy differentiator by both sides of the political spectrum in the recent Australian election. What was this all about? more
One of the major problems for brand owners is protecting the brand in new TLDs. Most new Top-Level Domain (TLD) registries will depend on brand protection registrations for a major part of their registration volume and some may become almost completely dependent on these registrations if the new TLD fails to capture the public's imagination. Short of comparing the registrant data for each individual domain, there is no 100% accurate method of measuring the level of brand protection registrations in a TLD. more
New domain names are now on the market and you start to realize that you may have missed the train by not submitting your own new gTLD application. So why not get your part of the cake and consider applying for your own new Top-Level Domain in the second Round of the ICANN new gTLD program? Why not become a "Registry" and sell domain names... to the world? more
From the perspective of Internet security operations, here is what Net Neutrality means to me. I am not saying these issues aren't important, I am saying they are basically arguing over the colour of bits and self-marginalizing themselves. For a while now I tried not to comment on the Net Neutrality non-issue, much like I didn't comment much on the whole "owning the Internet by owning the Domain Name System" thingie. Here it goes anyway. Two years ago I strongly advocated that consumer ISP's should block some ports, either as incident response measures or as permanent security measures... more
Maybe you've seen one of the news stories about the revised Georgia statute (Georgia Code ยง 41-1-12) that now requires sex offenders to turn their Internet passwords, screen names and email addresses over to authorities. The purpose of the revised statute is to give authorities the ability to track what sex offenders are doing online, to, in the words of one news story, "make sure" they "aren't stalking children online or chatting with them about off-limits topics." more
What will the cost and capability of these antennas be in ten or twenty years? What would be the applications and implications of ubiquitous wireless networks? You might have some short-term guesses, like smart cities, but farther out it's science fiction -- Gaia, the Noosphere, 1984? ... Three companies, OneWeb, SpaceX and Telesat, plan to provide global, low-latency broadband Internet service using constellations of low-Earth orbit (LEO) satellites. more
Excerpts from the recent address of the President and CEO of ICANN to the Working Group for Internet Governance (WGIG). "ICANN's establishment in California is a consequence of history. Jon Postel, the long standing coordinator of the IANA functions was based at the University of Southern California. Jon was designated ICANN's first Chief Technology Officer but was preempted from taking the position due to his untimely death. The legal instrument available in California to establish such a public benefit function, including its multi-stakeholder expression, is a not-for-profit, public benefit corporation..." more
Being approved by the Internet Corporation for Assigned Names and Numbers (ICANN) as the owner of a new generic top-level domain (gTLD) extension requires considerable analysis before the application is submitted. You must understand the sources of risk, gauge your risk tolerance, and you must obtain an estimate of the value of your proposed TLD's future revenues (with the effects of potential competitors factored in, a step too many applicants ignore). more
Google News now shows more than 300 stories about Spamhaus, most about a proposed court order following a district court default judgment. To me, the most interesting is the meta-story -- why the non-event of a proposed order has the blogs scrambling with claims of constitutional crisis and even the notoriously close-lipped ICANN issuing an announcement "in response to community interest expressed on this topic." more
The purpose of the Uniform Dispute Resolution Policy, known as the UDRP (hereafter the "Policy"), is to determine disputes relating to the registration or acquisition of domain names in bad faith. To succeed in a UDRP action (i.e. to obtain cancellation or transfer of the disputed domain name) it is necessary for the party bringing the complaint (the complainant) to show that (i) the disputed domain name is identical with or confusingly similar to a trademark or service mark in which the complainant has rights; (ii) the domain name holder (known as the respondent) has no right or legitimate interest in respect of the domain name; and (iii) the domain name was registered and is being used in bad faith. Each of the aforesaid three elements must be proved by the complainant to warrant relief.
more
Sponsored byWhoisXML API
Sponsored byVerisign
Sponsored byRadix
Sponsored byIPv4.Global
Sponsored byCSC
Sponsored byDNIB.com
Sponsored byVerisign
A World-Renowned Source for Internet Developments. Serving Since 2002.