Your SlideShare is downloading. ×

ICANN ccNSO Tech Day in Cairo

1,204

Published on

Presentation given on November 2008 at the Cairo ICANN Meeting. Overview of registry (ccTLD mostly) best practices and recommendations.

Presentation given on November 2008 at the Cairo ICANN Meeting. Overview of registry (ccTLD mostly) best practices and recommendations.

0 Comments
1 Like
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total Views
1,204
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
4
Comments
0
Likes
1
Embeds 0
No embeds

Report content
Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
No notes for slide

Transcript

  • 1. Registry Best Practices Jeremy Hitchcock Dynamic Network Services
  • 2. Overview
    • Registries are published zonefiles
    • Real time, always available
    • “ Critical Infrastructure”
    • More than just trademark registrations
    • Overview of best practices
  • 3. Registry Operations
    • Users modifying domains and contacts
    • Live provisioning online
    • Security model based on email (not good)
      • comcast.net hijacking earlier this year
    • Interface for registrars (open it up)
    • Use CoCCA (or something else)
  • 4. Registrar Relations
    • Registrars are good
    • Open up your TLD to the world
    • Speak EPP?
    • Make it easy for them, serve them
  • 5. Registrant Relations
    • Make it easy to register and renew
    • Email notifications are important
    • Serve them well
  • 6. DNS Delivery
    • Operating systems
    • Server software (BIND/NSD)
      • Just tools
    • Requires care and feeding
    • Anycast v. unicast (video example)
      • Helps avoid outages, reduce latency
  • 7. Network Operations
    • In country/out of country, reduce latency
    • Network and geographical diversity
    • Use requested IP and AS, not ISP
    • Graph and record query trending
    • Provide contact information
  • 8. WHOIS Data
    • Reduce data harvesting for spammers
    • Rate limit queries
    • Monitor for mechanized collection
  • 9. Availability
    • In order of importance
      • DNS operations
      • Registry operations (website and registrar)
      • WHOIS and other services
  • 10. Monitoring
    • More than just ping
    • Network/servers/applications
    • Latency checking from multiple places (Smokeping)
    • Website applications (can you register domain names?)
  • 11. Abuse
    • It happens
    • Fraud/Trademark/Phishing
    • Cybersquatting/(There’s the UDRP)
    • Free domains == bad
    • Provide contact information
    • React quickly and fairly (reputation)
  • 12. DNSSEC
    • Not a technical question next to the policy (key management)
    • Keep the keys safe (out of country?)
    • Solves some security issues when fully implemented (resolvers need to be aware)
    • Pretty easy to sign, just ask
    • Just implement it
  • 13. IPv6
    • World is going IPv6
    • Someday just going to happen
    • Pretty easy to do, just ask
    • Also, just implement it
  • 14. Vendors and Software
    • Pick what you want to be great/best
    • Lot of great open source tools
    • Choose a mix of providers
    • Diversity is good to prevent outages
  • 15. IDNs and Symmetry
    • Interested in hearing what operators have in mind for IDNs
    • What about xn--IDN.TLD and xn--IDN.xn--TLD?
      • Be nice to see symmetry between
  • 16. Shameless Plug
    • Dynamic Network Services provides DNS for .coop and a dozen other ccTLDs (maybe yours tomorrow?)
    • We do registry services
    • DynDNS.com - operator of dynamic DNS for individuals (2 million+ users)
    • Dynect Platform - Corporations with global server load balancing, etc)
    • Based in New Hampshire, USA
  • 17. Questions
    • [email_address]
    • +1-603-391-4494

×