DNS Abuse Chapter Draft

VersionAuthorDate

v9

v8

v7

v6

v5

v4

v3

v2

v1

Drew

Oct 18, 2017

Oct 13, 2017

Sept 27, 2017

Sept 26, 2017

Sept 6, 2017

Aug 30, 2017

Aug 24, 2017



Resources

 

Sources
APWG New Center
APWG Phishing Attacks Trends Reports
APWG- Global Phishing Survey: Trends and Domain Name Use in 1H2014
APWG- Making Waves in the Phisher's Harbor: Exposing the dark side of subdomain registries
Measuring Perpertrators and Funders of Typosquatting
Measuring the Global DNS

Notice and takedowns in everyday practice - Online takedowns study

SAC 045 Invalid Top Level Domain Queries at the Root Level of the Domain Name System
SAC 062 SSAC Advisory Concerning the Mitigation of Name Collision Risk
SAC 066 SSAC Comment Concerning JAS Phase One Report on Mitigating the Risk of DNS Namespace Collisions
SAC074 SSAC Advisory Registrant on Protection: Best Practices for Preserving Security and Stability in the Credential Management Lifecycle
Knujon March 2016: Internet Limbo Report
SSAC Comment on Orphan Glue Records in the Draft Applicant Guidebook
High-security Zone Top-Level Domain Advocacy Group
IETF- RFC List
The NameSENTRY Abuse Report
Potential for Phishing in Sensitive-String Top-Level Domains
DNSSEC Deployment Report
TLD DNSSEC Report
Deployment Guide: DNSSEC for Internet Service Providers (ISPs)

CloudFlare: How DNSSEC works

DNSSEC- What it is and why is it important?
Afilias Anti Abuse Policy
.RICH Anti Abuse Policy
SAC041- Recommendation to prohibit use of redirection and synthesized responses by new TLDs
SSAC Advisory on Registrant Protection - Best Practices for Securing Security and Stability in the Credential Management Lifecycle
Techniques to Break the Botnet Attack
ISTR 20: Internet Security Threat Report

Secure Domain Foundation, The Cost of Doing Nothing: The Business Case for Proactive Anti-Abuse

DNS Stability, Security, and Resiliency

Registration Abuse Policies Working Group Final Report
Search Engine Poisoning (SEP)

Spoofing Attack : IP, DNS & ARP

fTLD Enhanced Security
The Curse of the URL Shorteners: How Safe Are They?
Symantec Intelligence Report November 2015
Redirecting DNS for Ads and Profit
Best Practices to Address Online and Mobile Threats
A Profitless Endeavor: Phishing as Tragedy of the Commons 
What is SpyWare?
About the DNS Seal Project
SSAC Advisory on DDoS Attacks Leveraging DNS Infrastructure
SSAC Advisory on DDoS Attacks Leveraging DNS Infrastructure
2017: Phishing Trends & Intelligence Report - Hacking the Human

 

 

 

Discussion papers

Is there more or less DNS abuse in the new gTLDs? Drew (lead), Fabro, Calvin

  • No labels