The Icelandic registry (.is) plans on introducing extra levels of protection to some domains and their registrants. The new program is called "Very Important Domains" or VID for short (yes another acronym and you'll have to excuse my childish snigger when I misread it as VDS) It's not clear from the registry's announcement how exactly this service will work, though it's … [Read more...] about Icelandic Registry To Introduce “Very Important Domains”
security
.Nz Registry Enables DNSSEC
The .nz domain registry has announced that they have enabled DNSSEC in the New Zealand namespace: New Zealanders will be able to better secure their web presence from today, thanks to a major technical security deployment by InternetNZ subsidiaries .nz Registry Services (NZRS) and the Domain Name Commission (DNCL). Following more than two years of behind-the-scenes work, … [Read more...] about .Nz Registry Enables DNSSEC
RIPE RPKI Breaks 1000 Barrier
RIPE have announced that the 1000th LIR has signed up for RPKI. Considering that only a few months ago there was a distinct possibility that RPKI would be halted entirely in the RIPE region this milestone is of extra significance. Resource Certification offers LIRs validatable proof of holdership. In addition, it allows LIRs to make cryptographically verifiable statements … [Read more...] about RIPE RPKI Breaks 1000 Barrier
Iran Blocks SSL
The Iranian government has blocked secure sites ie. ones using SSL with "https". The blocking means that any service or website based outside Iran that uses a security certificate is inaccessible from within Iran. Whether Iranians are able to circumvent this via other means or not isn't clear, though there are probably ways that the geekier types can get around … [Read more...] about Iran Blocks SSL
StopBadware.org Introduces Program For Hosting Providers
Malware, hacked sites, defacements etc., are all nasty. Getting all stakeholders in the Internet Community to take ownership and ultimately to take action is not easy. A new program from StopBadware might be a move in the right direction, though ultimately it will come down to how well it's promoted. In short, hosting providers who agree to certain standards … [Read more...] about StopBadware.org Introduces Program For Hosting Providers
Nominet Research Team Finds DNS Bug
Simon McCalla has posted some details on the Nominet management blog about how their research team and in particular Roy Arends were instrumental in finding the latest bug in BIND. Disclosure: As a registrar I was informed about the bug before it was made public, but couldn't speak of it in public Related articles UK Registry Opens Consultation on Registration Periods … [Read more...] about Nominet Research Team Finds DNS Bug
ICANN Security and Stability Advisory Committee On DNS Blocking
ICANN's Security and Stability Advisory Committee (SSAC) has published a paper on DNS Blocking. SSAC 50: DNS Blocking: Benefits Versus Harms is available for download in PDF here The paper isn't very long and has a short list of points that people should be aware of when considering implementing DNS blocking: 1. The organization imposes a policy on a network and its … [Read more...] about ICANN Security and Stability Advisory Committee On DNS Blocking
ICANN Hires New CSO – Jeff Moss
ICANN has apparently hired Jeff Moss (aka Dark Tangent) as CSO. Moss is a well known figure in the internet security community and was founder of Black Hat and the Def Con conferences. However isn't Moss a bit conflicted? Isn't he on one of the review teams? So how can he work for ICANN whilst also reviewing it? I suspect this will be clarified when a more official … [Read more...] about ICANN Hires New CSO – Jeff Moss
High Profile DNS Still Vulnerable To Kaminsky Exploit
Image via Wikipedia Dan Kaminsky's discovery of a nasty bug in DNS rocked the security world in 2008. It's now 2010, so you would be forgiven for thinking that most DNS servers should have been updated, patched or configured in such a manner as to render the Kaminsky hole null and void. Unfortunately that is not the case. Several medium sized DNS providers, … [Read more...] about High Profile DNS Still Vulnerable To Kaminsky Exploit
NL Registry Introduces Phishing Alert Service
SIDN, the registry operator for .nl, has announced the introduction of a new service for its registrars. The new phishing alert service harnesses data provided by Netcraft and will automatically email the registrar of record of any .nl domain name that is flagged as being used in a phishing attack.Every five minutes or so, SIDN checks Netcraft's suspect URL database,which is … [Read more...] about NL Registry Introduces Phishing Alert Service