Identifier Systems Security Stability and
Resiliency!
!
Champika Wijayatunga, ICANN!
MyNOG4 – Malaysia 21 August 2014 !
2
What does ICANN do?!
3
ICANN	
  is	
  a	
  global	
  organiza0on	
  that	
  coordinates	
  the	
  
Internet’s	
  unique	
  iden0fier	
  systems	...
4
+ Domain Name System (DNS)
+ Internet Protocol (IP) Address Allocation
+ Protocol-Parameter Registry
+ Root Server Syste...
SSR	
  Framework	
  
	
  
•  Security	
  –	
  the	
  capacity	
  to	
  protect	
  and	
  prevent	
  
misuse	
  of	
  Inter...
The	
  Challenge	
  
•  Misuse	
  of	
  and	
  aCacks	
  against	
  the	
  DNS	
  and	
  global	
  
networks	
  challenge	...
Coordina;on	
  &	
  Collabora;on	
  
•  Generic	
  Top	
  Level	
  Domain	
  Operators	
  (gTLDs)	
  
–  .com,	
  .net,	
 ...
8
!
Functional Areas!
Threat	
  Awareness	
  
and	
  
	
  Preparedness	
  
Trust-­‐based	
  
Collabora;on	
  
Iden;fier	
  ...
Iden;fier	
  Systems	
  Threat	
  Awareness	
  
•  Exchange	
  of	
  threat	
  intelligence	
  
rela;ng	
  to	
  security	
...
•  Ac;ve	
  engagement	
  with	
  global	
  
actors	
  who	
  monitor	
  DNS	
  health	
  or	
  
iden;fy	
  imminent	
  th...
Iden;fier	
  SSR	
  Analy;cs	
  
•  Projects	
  in	
  infancy	
  	
  
•  Develop	
  metrics	
  and	
  analy;cs	
  for	
  
i...
Trust-­‐based	
  Collabora;on	
  
•  Global	
  Cybersecurity	
  coopera;on	
  
–  Coordinate	
  engagement	
  through	
  I...
Capability	
  Building	
  
•  DNS	
  training	
  
–  Security,	
  opera;ons,	
  and	
  DNSSEC	
  deployment	
  
training	
...
Ac;vi;es	
  in	
  Malaysia	
  
•  Suppor;ng	
  Network	
  Opera;onal	
  and	
  
Technical	
  Communi;es	
  
– MyNOG,	
  AP...
Ac;vi;es	
  in	
  Malaysia	
  
•  MyNIC	
  (ccTLD)	
  
– Encouraging	
  DNSSEC	
  Deployment	
  	
  
•  Registrars,	
  ISP...
16
Growing the Asia Pacific Network!
•  ICANN APAC Hub
•  apachub@icann.org
•  SSR issues: 
•  champika.wijayatunga@icann.o...
Upcoming SlideShare
Loading in...5
×

Identifier Systems Security, Stability and Resiliency by Champika Wijayatunga

194

Published on

Published in: Internet
0 Comments
1 Like
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total Views
194
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
12
Comments
0
Likes
1
Embeds 0
No embeds

No notes for slide

Identifier Systems Security, Stability and Resiliency by Champika Wijayatunga

  1. 1. Identifier Systems Security Stability and Resiliency! ! Champika Wijayatunga, ICANN! MyNOG4 – Malaysia 21 August 2014 !
  2. 2. 2 What does ICANN do?!
  3. 3. 3 ICANN  is  a  global  organiza0on  that  coordinates  the   Internet’s  unique  iden0fier  systems  for  worldwide  public   benefit,  enabling  a  single  interoperable  Internet.  
  4. 4. 4 + Domain Name System (DNS) + Internet Protocol (IP) Address Allocation + Protocol-Parameter Registry + Root Server Systems + Generic Top-Level Domain Names (gTLD) system management + Country-code Top-Level Domain Name (ccTLD) DNS + Time Zone Database Management Functions that ICANN Coordinates!
  5. 5. SSR  Framework     •  Security  –  the  capacity  to  protect  and  prevent   misuse  of  Internet  unique  iden;fiers.   •  Stability  –  the  capacity  to  ensure  that  the  system   operates  as  expected,  and  that  users  of  the  unique   iden;fiers  have  confidence  that  the  system  operates   as  expected.     •  Resiliency  –  the  capacity  of  the  unique  iden;fier   system  to  effec;vely  withstand/tolerate/survive   malicious  aCacks  and  other  disrup;ve  events   without  disrup;on  or  cessa;on  of  service.    
  6. 6. The  Challenge   •  Misuse  of  and  aCacks  against  the  DNS  and  global   networks  challenge  overall  unique  iden;fier  security   –  Affect  the  broad  range  of  users,  individuals,  businesses,   civil  society  and  governments   •  Security  in  the  context  of  the  Internet's  unique   iden;fiers  should  be  addressed  through  a  healthy   Internet  ecosystem.     –  an  Internet  that  is  sustainable  or  healthy,  stable  and   resilient   6  
  7. 7. Coordina;on  &  Collabora;on   •  Generic  Top  Level  Domain  Operators  (gTLDs)   –  .com,  .net,  .org  etc.   •  Country  Code  Top  Level  Domain  Operators  (ccTLDs)   –  .bd,  .in,  .sg  etc.   •  CERTs   •  Regional  Internet  Registries  (RIRs)   •  Governments  /  Law  Enforcement   •  Interna;onal  Organisa;ons   •  Research  Organisa;ons  /  Experts   •  Etc.   7  
  8. 8. 8 ! Functional Areas! Threat  Awareness   and    Preparedness   Trust-­‐based   Collabora;on   Iden;fier  SSR  Analy;cs   Capability  Building   Iden;fier   Systems  SSR  
  9. 9. Iden;fier  Systems  Threat  Awareness   •  Exchange  of  threat  intelligence   rela;ng  to  security  events  of   global  nature  involving  iden;fier   systems   •  Par;cipa;on  in  response  to   threats  or  aCacks  against   iden;fier  systems,  see     hCps://www.icann.org/en/about/staff/security/ vulnerability-­‐disclosure-­‐05aug13-­‐en.pdf     Threat   Awareness  and   Response   Threat   Intelligence   • Trust  networks   Coordinated   Response   • Vulnerability   Disclosure   • Facilita;on  
  10. 10. •  Ac;ve  engagement  with  global   actors  who  monitor  DNS  health  or   iden;fy  imminent  threats   •  DNS  vulnerability  iden;fica;on,   repor;ng,  and  resolu;on   •  Examples   –  ACacks  against  ccTLDs,  registrars   –  Root  system  DDoS  (Anonymous)     Threat  awareness   and  response  
  11. 11. Iden;fier  SSR  Analy;cs   •  Projects  in  infancy     •  Develop  metrics  and  analy;cs  for   iden;fier  systems,  e.g.,     –  Root  system  measurements,  analysis   –  Analysis  of  DNS  or  registra;on  abuse  or   misuse     –  Crea;ve  uses  of  DNS  data   Iden;fier  SSR   Analy;cs   Metrics   •   “CVEs”   • Root   System   analy;cs   • Incidents  
  12. 12. Trust-­‐based  Collabora;on   •  Global  Cybersecurity  coopera;on   –  Coordinate  engagement  through  ICANN     Global  Stakeholder  Engagement   –  Coordinate  cybersecurity  message  with   Global  Stakeholder  Engagement   •  Global  Security  &  Opera;ons   –  Daily  interac;on  on  DNS  abuse/misuse   maCers  with  first  responders,  law   enforcement,  operators   –  Coopera;on  with  DNS  research  ac;vi;es         •  Examples   –  Engage  with  registrars  and  repor;ng  par;es   to  mi;gate  DNS  abuse/misuse   –  Lend  subject  maCer  exper;se  during   incident  response   Trust-­‐based   Collabora;on   Global  SecOps   •  An;Phishing   •  An;spam   •  An;crime   •  Opera;ons   Research   Global  CyberSec   •  CCI   •  OECD  
  13. 13. Capability  Building   •  DNS  training   –  Security,  opera;ons,  and  DNSSEC  deployment   training  for  TLD  registry  operators   –  Informa;on  gathering  to  iden;fy  DNS  abuse/ misuse     –  Delivered  by  contracted  par;es,  ICANN  staff   (digital  delivery  under  study)   •  Training  for  Law  Enforcement  bodies   •  Knowledge  Transfer   –  Exchange  of  informa;on  gathering  or   inves;ga;ng  techniques   Capability   Building   DNS  Training   •  Security   •  OAM   •  Abuse/ Misuse   Knowledge   Transfer   •  Europol   •  Interpol   •  RIRs  
  14. 14. Ac;vi;es  in  Malaysia   •  Suppor;ng  Network  Opera;onal  and   Technical  Communi;es   – MyNOG,  APRICOT,  APT  Cyber  Security  Forum  etc.   •  Collabora;on  with  Malaysian  Communica;ons   and  Mul;media  Commission  (MCMC)   – Online  Safety,  Security  Educa;on  &  Awareness   Ini;a;ves   – Capacity  building  and  Outreach   14  
  15. 15. Ac;vi;es  in  Malaysia   •  MyNIC  (ccTLD)   – Encouraging  DNSSEC  Deployment     •  Registrars,  ISPs  etc.   – IDN  delega;on     •  Poten;al  L-­‐root  Server  instance   15  
  16. 16. 16 Growing the Asia Pacific Network! •  ICANN APAC Hub •  apachub@icann.org •  SSR issues: •  champika.wijayatunga@icann.org Thank You!
  1. A particular slide catching your eye?

    Clipping is a handy way to collect important slides you want to go back to later.

×