IGF 2024 in Riyadh: AI, WSIS+20 and the Global South

"Building our Multistakeholder Digital Future" was the theme of the 19th edition of the UN-based Internet Governance Forum (IGF). It attracted more than 11.000 participants (Offline and Online) from all over the world in Riyadh/Saudi Arabia, December 15-19, 2024. In the 307 plenaries, workshops, open fora, lightening talks and other conversations in the meeting rooms and the lobby halls of the King Abdulaziz International Conference Center (KAICC), nearly everything... more

66 Percent of Mobile Device Connections Will be IPv6 Capable by 2020, Says Cisco Report

IPv6 traffic is expected to reach 54 percent of total mobile data traffic, up from 13 percent in 2015, according to Cisco Visual Networking Index (VNI) Global Mobile Data Traffic Forecast, 2015-2020 which has since being updated with additional study. The report also predicts by 2020, 66 percent of mobile devices/connections will be IPv6-capable - up from 36 percent in 2015. more

IPv4: Business As Usual

This year, we expect that the RIPE NCC's pool of unallocated IPv4 addresses will reach the "last /8", meaning that we have 16,777,216 IPv4 addresses left in the available pool. At that point it will no longer be possible for RIPE NCC members to obtain the amount of IPv4 addresses they will require to expand their current and future networks. When we hit the last /8, the RIPE NCC will only be able to distribute IPv6 addresses and a one-off allocation of IPv4 address space... Has this caused a last minute rush? more

DNS, Domain Names, and Certificates: The Missing Links in Most Cybersecurity Risk Postures

In 2019, we've seen a surge in domain name system (DNS) hijacking attempts and have relayed warnings from the U.S. Cybersecurity and Infrastructure Agency, U.K.'s Cybersecurity Centre, ICANN, and other notable security experts. Although the topic has gained popularity amongst CIOs and CISOs, most companies are still overlooking important security blind spots when it comes to securing their digital assets outside the enterprise firewalls -- domains, DNS, digital certificates. more

Industry Association: An Implementation Model

We read carefully Scott Hollenbeck's call to form a Domain Name Industry association to promote consistency in technical operations across the many moving parts of the industry and we, the Board and members of the Domain Name Association, largely agree. More formal coordination among registry operators and domain name registrars would improve the domain name registration experience for registrants and business operations for the domain name industry in general. more

ICANN Turning 25 - It’s the People that Make a Difference

Ali's invitation to post reflections on the past 25 years of ICANN is very welcome. No doubt, some will write about major shifts in how ICANN is governed, for example, the end of United States government oversight. While others will write about changes to the industry that ICANN has catalyzed, for example, the 2012 round of new gTLDs and the upcoming next application process. more

Comcast Announces Completion of DNSSEC Deployment

Comcast, a leading ISP in the U.S., has fully deployed Domain Name System Security Extensions (DNSSEC) according to a company announcement today. Jason Livingood, Comcast's Vice President of Internet Systems writes: "As of today, over 17.8M residential customers of our Xfinity Internet service are using DNSSEC-validating DNS servers. In addition, all of the domain names owned by Comcast, numbering over 5,000, have been cryptographically signed. All of our servers, both the ones that customers use and the ones authoritative for our domain names, also fully support IPv6." more

Thinking Outside The ICANN Box: Creating A Prototype Based On Internet Experience - Part II

The proposal "The Internet an International Public Treasure" ("Public Treasure") offers a means of creating a prototype for an international collaborative management structure for the Internet (see Part I of this article).
 more

Toughest State-Level Net Neutrality Bill in the US Approved by California Senate

The California Senate on Friday voted to approve the toughest state-level net neutrality bill in the U.S. and now with both legislative houses having approved the bill, California Governor Jerry Brown has until September 30 to sign it into law. more

The Purple Team Pentest

It's not particularly clear whether a marketing intern thought he was being clever or a fatigued pentester thought she was being cynical when the term "Purple Team Pentest" was first thrown around like spaghetti at the fridge door, but it appears we're now stuck with the term for better or worse. Just as the definition of penetration testing has broadened to the point that we commonly label a full-scope penetration of a target's systems with the prospect of lateral compromise and social engineering as a Red Team Pentest -- delivered by a "Red Team" entity operating from a sophisticated hacker's playbook. more

The End of Net Neutrality Regulation COULD Mean the End of Last-Mile Oligopolies

Landline networks like the old phone system and the new(er) cable systems do lend themselves to monopoly or at least duopoly outcomes. Building these networks is both very expensive and requires myriad government approvals. Once a system is in place, it is hard for anyone to raise the capital to duplicate it. Even a network of wireless towers is hard to compete with. more

What Are New gTLD Governance Councils?

Many generic, community and other geographic new domain name extensions (also called "gTLDs" or "generic Top Level Domains") will soon become a focal point for the industry or sector they represent. These simple denominators which define a vertical sector, profession, geographic, ethnic or other delineated group on the Internet have not existed on the Internet until now. These new domain name extensions are moving from the realm of science fiction to science fact: in fact a domain name ending in ".science" will soon exist on the Internet and will clearly contain web sites with a relationship to science. more

Researchers Uncover Massive Underground Link-Shortening Service Used by Malicious Actors

New research indicates that the .US top-level domain contains numerous domains linked to a malicious link-shortening service dubbed 'Prolific Puma' promoting malware and phishing. Infoblox has been monitoring this three-year-old service, which uses short domains hosted on uncooperative providers to disguise harmful landing pages. more

KnujOn Releases New Security, Abuse and Compliance Report

We have just issued a new report detailing abuse of the Domain Name System and Registrar contract compliance issues. The report specifically discusses several items including: Registrars with current legal issues; Illicit Use of Privacy-Proxy WHOIS Registration; A study on the contracted obligation for Bulk WHOIS Access; and more. more

.COM - The Riskiest Top-Level Domain?

A couple of weeks ago, NetworkWorld published an article indicating that the .com TLD was the riskiest TLD in terms of containing code that can steal passwords or take advantage of browser vulnerabilities to distribute malware... It is unclear to me what they mean by TLD's being risky. The number of domains, 31.3% of .com's being considered risky, what does this actually mean? Is it that 31% of .com's are actually serving up malware or something similar? If so, that seems like a lot because for many of us, nearly 1 in every 3 pages that most people visit would be insecure... more