Home / Industry

DNS Abuse: Finding Our Way Forward Together

Many problem-solving processes say that to solve a problem, the first step is to accurately define it. The International Trademark Association (INTA) did just that earlier this year when they announced their board of directors adopted a resolution whereby they defined domain name system (DNS) abuse with the help of their constituents. One of the experts who helped INTA define DNS abuse was a CSC colleague of mine, Vincent D’Angelo, who served as sub-committee chairperson for the DNS Abuse & Cybersecurity sub-committee at INTA. We are proud to say there were multiple references to CSC’s digital brand abuse insights within the resolution, as CSC proudly advocates for a better way to fight cybercriminals.

DNS Abuse Specification

INTA’s resolution specified that DNS abuse includes “any activity that makes, or intends to make, use of domain names, the [DNS] protocol, or any digital identifiers that are similar in form or function to domain names to carry out deceptive, malicious, or illegal activity.” According to INTA, this definition showcases DNS abuse as a threat to global enterprises and consumers—often involving the misuse of brands, trademarks, and related IP—the resolution fine tunes the definition to clarify the concept within the private sector, provide protections for consumers and brand owners, account for emerging technologies, and advance a standard definition which allows brand owners to protect their brands when they’re targeted.

Addressing Fraudulent Domain Tactics

Fraudsters use malicious domains (e.g., homoglyphs or confusingly similarly named domains or subdomains) and email spoofing to commit fraud and intellectual property abuse—and at some point, we have to ask ourselves why this is so easy to do. Both CSC and INTA welcome other companies to join in support of INTA’s resolution.

Collaborative Action Plan

The more we all coalesce around a common definition, the better chance we have to take meaningful action to curb this internet plague of DNS abuse. There’s no silver bullet here, and mitigating DNS abuse is not any one stakeholder or group’s responsibility. It will take governments, advocacy groups, policy-making bodies, security professionals, and private sector entities—among others, to move their focus from defining the problem to taking urgent action against the problem within their sphere of influence. From higher standards and increased compliance1 in top-level domains, to increased government regulation mandating domain security controls to cybersecurity insurance underwriters baking in enterprise-class best practices for DNS hygiene into premium decisions, there must be a multi-pronged, multi-stakeholder approach to make a real impact.

To help build awareness and advocate for the INTA definition of DNS abuse, contact us using this form to let us know of your interest.

By CSC, We are the business behind business

We help effectively manage, promote, and secure our clients’ valuable brand assets against the threats of the online world. Leading companies around the world choose CSC as their trusted partner to gain control of their digital assets, maximize their online potential, and increase online security against brand risks.

Visit Page

Filed Under

Comments

Commenting is not available in this channel entry.
CircleID Newsletter The Weekly Wrap

More and more professionals are choosing to publish critical posts on CircleID from all corners of the Internet industry. If you find it hard to keep up daily, consider subscribing to our weekly digest. We will provide you a convenient summary report once a week sent directly to your inbox. It's a quick and easy read.

I make a point of reading CircleID. There is no getting around the utility of knowing what thoughtful people are thinking and saying about our industry.

VINTON CERF
Co-designer of the TCP/IP Protocols & the Architecture of the Internet

Related

Topics

IPv4 Markets

Sponsored byIPv4.Global

Threat Intelligence

Sponsored byWhoisXML API

New TLDs

Sponsored byRadix

Cybersecurity

Sponsored byVerisign

DNS

Sponsored byDNIB.com

Brand Protection

Sponsored byCSC

Domain Names

Sponsored byVerisign