APNIC, profile picture
Uploaded byAPNIC
PDF, PPTX1,829 views

apnic handling-network-abuse

APNIC is the regional internet registry for Asia and the Pacific. It distributes internet resources like IP addresses and maintains the APNIC Whois database. While some abuse reports list APNIC as the source of addresses, APNIC does not operate networks or investigate abuse directly. It can provide contact information for the organization responsible but cannot reclaim addresses or stop abuse itself. The document outlines how to use the Whois database to identify contacts and proper procedures for reporting invalid information or abuse.

Embed presentation

Download as PDF, PPTX
Handling Internet Network Abuse Reports at APNIC 21 October 2010 LAP-CNSA Workshop, Melbourne George Kuo
Overview • Introduction to APNIC • Internet registry structure • Common network abuse questions APNIC receives • APNIC Whois Database registration
What is APNIC? • Internet registry for the Asia Pacific • One of the five Regional Internet Registries • Membership-based organization • Not for profit and services focused • Internet resource policy coordination body • Consensus-based policy development • Open and transparent decision making
APNIC’s Role • Distributes Internet resources • Maintains APNIC Whois Database • Facilitates resource policy development • Manages Reverse DNS delegations • But NOT a domain name registry • Provides training and outreach on resource management and APNIC services • Supports Internet development
APNIC from a Global Perspective
Internet Registry Structure whois whois.apnic.net
Internet Resource Delegation APNIC Delegates to APNIC Member APNIC Member Customer / End User Delegates to customers ISP customer Delegates to end-user /8 APNIC Allocation /22 Member Allocation Sub- Allocation /24 /26/27 /25 Customer Assignments /26 /27
Common Questions… • Why does APNIC appear as the source in some abuse search reports? • Can APNIC investigate or stop the network abuse? • Can APNIC reclaim the Internet resources used for the network abuse? • The contacts information in the APNIC Whois Database is invalid. What do I do?
Is APNIC the culprit? • APNIC is listed by ARIN as holder of all IP space for the AP region • Some search tools look no further than this • For details, need to consult APNIC “whois” • APNIC whois may or may not show specific customer assignments for the addresses in question • But will show the ISP holding APNIC space
Can APNIC stop abuse? • No, because… • APNIC is not an ISP and does not provide network connectivity to other networks • APNIC does not control Internet routing • APNIC is not a law enforcement agency • APNIC has no industry regulatory power
What Can You Do? • Use the APNIC Whois Database to obtain network contact information • Contact the network responsible and also its ISP/upstream • Contact APNIC for help, advice, training or support
How to use APNIC whois • Web browser • http://www.apnic.net/whois • whois client or query tool • whois.apnic.net • Identify network contacts from the registration records • IRT (Incident Response Team) if present • Contact persons: “tech-c” or “admin-c”
What if whois info is invalid? • Members (ISPs) are responsible for reporting changes to APNIC • Under formal membership agreement • Report invalid ISP contacts to APNIC • http://www.apnic.net/invalidcontact • APNIC will contact member and update registration details
What if whois info is invalid? • Customer assignment information is the responsibility of ISPs • ISPs are responsible for updating their customer network registrations • Tools such as „traceroute‟, „lookingglass‟ and RIS may be used to track the upstream provider if needed • More information available from APNIC
Can APNIC reclaim addresses? • Sometimes… • Where IP space has been obtained fraudulently or under false pretences (which is often the case) • But… • APNIC does not regulate Internet activity • Current address management policy do not cover network abuse
APNIC Whois Registration
APNIC Whois Registration
APNIC Whois Registration
APNIC Whois Registration
Questions? • APNIC Whois inquiry • www.apnic.net/helpdesk • More information on network abuse • www.apnic.net/abuse • Report invalid contacts • www.apnic.net/invalidcontacts • Or • Send email to helpdesk@apnic.net
You’re invited… • http://www.apnic.net/meetings
Thanks George Kuo, APNIC

More Related Content

PPTX
Whois - Addressing the Asia Pacifc
byAPNIC
 
PDF
How APNIC can support law enforcement agencies in cybercrime investigtaion
byAPNIC
 
PDF
Internet Resource Management Tutorial at SANOG 24
byAPNIC
 
PPTX
APNIC Update - PacNOG20
byAPNIC
 
PDF
36th TWNIC OPM: BGP security threats and challenges
byAPNIC
 
PDF
Supporting internet growth and evolution
byAPNIC
 
PPTX
APNIC Update @ ARM, Mongolia
byAPNIC
 
PDF
36th TWNIC OPM: APNIC 52 Policy Update
byAPNIC
 
Whois - Addressing the Asia Pacifc
byAPNIC
 
How APNIC can support law enforcement agencies in cybercrime investigtaion
byAPNIC
 
Internet Resource Management Tutorial at SANOG 24
byAPNIC
 
APNIC Update - PacNOG20
byAPNIC
 
36th TWNIC OPM: BGP security threats and challenges
byAPNIC
 
Supporting internet growth and evolution
byAPNIC
 
APNIC Update @ ARM, Mongolia
byAPNIC
 
36th TWNIC OPM: APNIC 52 Policy Update
byAPNIC
 

What's hot

PDF
APNIC's Resource Certification Service
byAPNIC
 
PPTX
PacNOG 18/APNIC Regional Meeting, Guam: APNIC Activities Update
byAPNIC
 
PDF
RIPE NCC Measurements Tools Workshop: RIPEstat and RIPE Atlas
byAPNIC
 
PDF
Internet Measurement Networks - SANOG 24
byAPNIC
 
PPTX
Universal Acceptance of Internationalized Domain Names (IDN), Email Addresses...
byAPNIC
 
PPTX
Whois organization object
byAPNIC
 
PDF
IPv6 at 6connect, PTC17
byAPNIC
 
PPTX
APNIC Update: Infotel 2014
byAPNIC
 
PPTX
APNIC Update, NPNOG 0.5
byAPNIC
 
PDF
Government
byAPNIC
 
PDF
APNIC Update: btNOG 3
byAPNIC
 
PPTX
IOT, It's the Internet...only bigger
byAPNIC
 
PPTX
IDNOG 2: AS interconnection in indonesia
byAPNIC
 
PDF
npNOG 2: APNIC activity report
byAPNIC
 
PPTX
APNIC Update for ARIN 35
byAPNIC
 
PDF
IANA Transition Update, August 2016
byAPNIC
 
PPTX
Universal Acceptance: APNIC system readiness
byAPNIC
 
PPTX
APNIC Policy Update, LACNIC 26
byAPNIC
 
PDF
BKNIX Peering Forum: Quick introduction of HKIX
byAPNIC
 
PPTX
Strengthen DNS Through Infrastructure Design
byAPNIC
 
APNIC's Resource Certification Service
byAPNIC
 
PacNOG 18/APNIC Regional Meeting, Guam: APNIC Activities Update
byAPNIC
 
RIPE NCC Measurements Tools Workshop: RIPEstat and RIPE Atlas
byAPNIC
 
Internet Measurement Networks - SANOG 24
byAPNIC
 
Universal Acceptance of Internationalized Domain Names (IDN), Email Addresses...
byAPNIC
 
Whois organization object
byAPNIC
 
IPv6 at 6connect, PTC17
byAPNIC
 
APNIC Update: Infotel 2014
byAPNIC
 
APNIC Update, NPNOG 0.5
byAPNIC
 
Government
byAPNIC
 
APNIC Update: btNOG 3
byAPNIC
 
IOT, It's the Internet...only bigger
byAPNIC
 
IDNOG 2: AS interconnection in indonesia
byAPNIC
 
npNOG 2: APNIC activity report
byAPNIC
 
APNIC Update for ARIN 35
byAPNIC
 
IANA Transition Update, August 2016
byAPNIC
 
Universal Acceptance: APNIC system readiness
byAPNIC
 
APNIC Policy Update, LACNIC 26
byAPNIC
 
BKNIX Peering Forum: Quick introduction of HKIX
byAPNIC
 
Strengthen DNS Through Infrastructure Design
byAPNIC
 

Viewers also liked

PDF
DESIGN THE PRIORITY, PERFORMANCE 
AND UX
byPeter Rozek
 
PDF
Spoofing and Denial of Service: A risk to the decentralized Internet
byAPNIC
 
PDF
Network Automation: Ansible 102
byAPNIC
 
PDF
Community Networks: An Alternative Paradigm for Developing Network Infrastruc...
byAPNIC
 
PDF
Cellular V2X
byQualcomm Research
 
PDF
LPWA – Giving a Voice to Things
byAPNIC
 
PDF
Evolving the network for 5G
byAPNIC
 
PPTX
IPv4 to IPv6
bymithilak
 
PDF
APNIC Update - MMNOG 2017
byAPNIC
 
PDF
Technical and Business Considerations for DNSSEC Deployment
byAPNIC
 
PDF
APIX Update
byAPNIC
 
PDF
Japan IPv6 Measurement
byAPNIC
 
KEY
IPv6 Tutorial RIPE 60
byRIPE Meetings
 
PDF
Supporting Global Discussion: IANA Stewardship Transition
byICANN
 
PDF
Case Studies: TakNet
byAPNIC
 
PDF
DNSSEC/DANE/TLS Testing in Go6Lab
byAPNIC
 
PPT
IPv6 Deployment In Enterprise Networks
byIvan Pepelnjak
 
PDF
Korea IPv6 Measurement
byAPNIC
 
PDF
Valentine's Day
byIngenico ePayments
 
PDF
Health and Well-Being on the Social Web
byron mader
 
DESIGN THE PRIORITY, PERFORMANCE 
AND UX
byPeter Rozek
 
Spoofing and Denial of Service: A risk to the decentralized Internet
byAPNIC
 
Network Automation: Ansible 102
byAPNIC
 
Community Networks: An Alternative Paradigm for Developing Network Infrastruc...
byAPNIC
 
Cellular V2X
byQualcomm Research
 
LPWA – Giving a Voice to Things
byAPNIC
 
Evolving the network for 5G
byAPNIC
 
IPv4 to IPv6
bymithilak
 
APNIC Update - MMNOG 2017
byAPNIC
 
Technical and Business Considerations for DNSSEC Deployment
byAPNIC
 
APIX Update
byAPNIC
 
Japan IPv6 Measurement
byAPNIC
 
IPv6 Tutorial RIPE 60
byRIPE Meetings
 
Supporting Global Discussion: IANA Stewardship Transition
byICANN
 
Case Studies: TakNet
byAPNIC
 
DNSSEC/DANE/TLS Testing in Go6Lab
byAPNIC
 
IPv6 Deployment In Enterprise Networks
byIvan Pepelnjak
 
Korea IPv6 Measurement
byAPNIC
 
Valentine's Day
byIngenico ePayments
 
Health and Well-Being on the Social Web
byron mader
 

Similar to apnic handling-network-abuse

PDF
LEA Workshop dated 09052013
byAPNIC
 
PDF
APNIC's role in stability and security - 4th APT Cybersecurity Forum
byAPNIC
 
PDF
UN INCB: RIRs and LEAs
byAPNIC
 
PDF
APNIC IRM Tutorial, by Sheryl Hermoso [APRICOT 2015]
byAPNIC
 
PDF
Apnic-irme
byNguyen Minh Thu
 
PDF
Reporting Network Abuse and APNIC Whois Database Accuracy by Aftab Siddiqui [...
byAPNIC
 
PDF
Cybersecurity Opportunities Challenges APNIC
byAPNIC
 
PPTX
APNIC Whois Database Updates
byBangladesh Network Operators Group
 
PDF
Regional Internet Registry and Whois
byAPNIC
 
PDF
APNIC Services Roadmap, by George Kuo [APNIC 38]
byAPNIC
 
PDF
LEA Workshop 11/12/2013
byAPNIC
 
PPTX
PacNOG 23: APNIC Regional Update
byAPNIC
 
PDF
Law Enforcement engagement capacity building
byAPNIC
 
PPTX
bdNOG 7: APNIC whois data quality
byAPNIC
 
PPTX
BdNOG 2015: APNIC Service Improvement 2015
byAPNIC
 
PDF
APNIC Update @ SANOG 27
byAPNIC
 
PDF
Improving APNIC Whois Data Quality
byAPNIC
 
PPTX
IGFA 2017: Introduction to APNIC and Regional Internet Registries
byAPNIC
 
PDF
APNIC Secretariat Report
byAPNIC
 
PDF
WHOIS Database for Incident Response & Handling
byAPNIC
 
LEA Workshop dated 09052013
byAPNIC
 
APNIC's role in stability and security - 4th APT Cybersecurity Forum
byAPNIC
 
UN INCB: RIRs and LEAs
byAPNIC
 
APNIC IRM Tutorial, by Sheryl Hermoso [APRICOT 2015]
byAPNIC
 
Apnic-irme
byNguyen Minh Thu
 
Reporting Network Abuse and APNIC Whois Database Accuracy by Aftab Siddiqui [...
byAPNIC
 
Cybersecurity Opportunities Challenges APNIC
byAPNIC
 
APNIC Whois Database Updates
byBangladesh Network Operators Group
 
Regional Internet Registry and Whois
byAPNIC
 
APNIC Services Roadmap, by George Kuo [APNIC 38]
byAPNIC
 
LEA Workshop 11/12/2013
byAPNIC
 
PacNOG 23: APNIC Regional Update
byAPNIC
 
Law Enforcement engagement capacity building
byAPNIC
 
bdNOG 7: APNIC whois data quality
byAPNIC
 
BdNOG 2015: APNIC Service Improvement 2015
byAPNIC
 
APNIC Update @ SANOG 27
byAPNIC
 
Improving APNIC Whois Data Quality
byAPNIC
 
IGFA 2017: Introduction to APNIC and Regional Internet Registries
byAPNIC
 
APNIC Secretariat Report
byAPNIC
 
WHOIS Database for Incident Response & Handling
byAPNIC
 

More from APNIC

PDF
APNIC Update, presented at PHNOG 2025 by Shane Hermoso
byAPNIC
 
PDF
Cleaning up your RPKI invalids, presented at PacNOG 35
byAPNIC
 
PDF
IPv6 Deployment and Best Practices, presented by Makito Lay
byAPNIC
 
PDF
ICP -2 Review – What It Is, and How to Participate and Provide Your Feedback
byAPNIC
 
PDF
The Internet - By the numbers, presented at npNOG 11
byAPNIC
 
PDF
Global Networking Trends, presented at the India ISP Conclave 2025
byAPNIC
 
PDF
The Internet -By the Numbers, Sri Lanka Edition
byAPNIC
 
PDF
Triggering QUIC, presented by Geoff Huston at IETF 123
byAPNIC
 
PDF
DDoS in India, presented at INNOG 8 by Dave Phelan
byAPNIC
 
PPTX
APNIC Report, presented at APAN 60 by Thy Boskovic
byAPNIC
 
PDF
RPKI Status Update, presented by Makito Lay at IDNOG 10
byAPNIC
 
PDF
APNIC's Role in the Pacific Islands, presented at Pacific IGF 2205
byAPNIC
 
PDF
APNIC Update - Global Synergy among the RIRs: Connecting the Regions
byAPNIC
 
PDF
DNSSEC Made Easy, presented at PHNOG 2025
byAPNIC
 
PDF
BGP Security Best Practices that Matter, presented at PHNOG 2025
byAPNIC
 
PDF
Make DDoS expensive for the threat actors
byAPNIC
 
PDF
DDos Mitigation Strategie, presented at bdNOG 19
byAPNIC
 
PDF
Transmission Control Protocol (TCP) and Starlink
byAPNIC
 
PDF
Measuring Starlink Protocol Performance, presented at LACNIC 43
byAPNIC
 
PDF
Fast Reroute in SR-MPLS, presented at bdNOG 19
byAPNIC
 
APNIC Update, presented at PHNOG 2025 by Shane Hermoso
byAPNIC
 
Cleaning up your RPKI invalids, presented at PacNOG 35
byAPNIC
 
IPv6 Deployment and Best Practices, presented by Makito Lay
byAPNIC
 
ICP -2 Review – What It Is, and How to Participate and Provide Your Feedback
byAPNIC
 
The Internet - By the numbers, presented at npNOG 11
byAPNIC
 
Global Networking Trends, presented at the India ISP Conclave 2025
byAPNIC
 
The Internet -By the Numbers, Sri Lanka Edition
byAPNIC
 
Triggering QUIC, presented by Geoff Huston at IETF 123
byAPNIC
 
DDoS in India, presented at INNOG 8 by Dave Phelan
byAPNIC
 
APNIC Report, presented at APAN 60 by Thy Boskovic
byAPNIC
 
RPKI Status Update, presented by Makito Lay at IDNOG 10
byAPNIC
 
APNIC's Role in the Pacific Islands, presented at Pacific IGF 2205
byAPNIC
 
APNIC Update - Global Synergy among the RIRs: Connecting the Regions
byAPNIC
 
DNSSEC Made Easy, presented at PHNOG 2025
byAPNIC
 
BGP Security Best Practices that Matter, presented at PHNOG 2025
byAPNIC
 
Make DDoS expensive for the threat actors
byAPNIC
 
DDos Mitigation Strategie, presented at bdNOG 19
byAPNIC
 
Transmission Control Protocol (TCP) and Starlink
byAPNIC
 
Measuring Starlink Protocol Performance, presented at LACNIC 43
byAPNIC
 
Fast Reroute in SR-MPLS, presented at bdNOG 19
byAPNIC
 

Recently uploaded

PPTX
UNIT 1- Introduction to Basic of Computer Fundamentals
bypawarbhaktiit
 
PDF
Requestly or Postman: What’s the Right API Tool for Your Team?
byhenrycavill30521
 
PPTX
Lecture 05. API Security for DevSecOps Eng.pptx
byvinocol222
 
PDF
SEO in Charleston SC | Local SEO Strategies to Grow Your Business.pdf
bycustomdigitalsolutio1
 
PPTX
Full course that Prymehat uploads for you version 2
byOhenebaManu1
 
PDF
A "Kill Switch" (Emergency Off Switch) for AI?
byScott M. Graffius
 
PDF
Best-Travel-Portal-Development-Solutions-for-Online-Growth
bykashishnagarrajput
 
PDF
Best Bank Statement Converter Software - A Documentation-Based Meta-Analysis ...
bylewisconrada
 
PPTX
Unit 1 Introduction of Computer Networks
bySuvarnaSharma5
 
PDF
Governing Agentic Enterprise - From Shadow AI to Autonomous Security.pdf
bysajjasridhar1990
 
PDF
Effective Ai powered mock interview .pdf
byamazingnishusingh766
 
PPTX
Lecture 04. about Black heads and Hackerss.pptx
byvinocol222
 
PPTX
DVCON24-IBM ai/ml driven hardware verification
byArun Joseph
 
PDF
Purple Team - Active Directory and AzureAD v1
byVICTOR MAESTRE RAMIREZ
 
PDF
JR : Quality Random Data from the Command line
byGiovanni Marigi
 
PPT
Waste water treatment plant operation and maintenance
byDuggineniRamakrishna
 
PPTX
TechSprint Kickoff - Everything You Need to Know
bygdgcodecellcmpn
 
PDF
65 AI-related Posts Catalog https://tinyurl.com/mpavkr8z
byBob Marcus
 
PPTX
JAVA Programming Lecture 1 C 4 Yourself.pptx
byyvsbglfaeahuyldzhq
 
PPTX
On-Device AI with Gemma 3n and PaliGemma 2 Session Slides - GDG VESIT
bygdgcodecellcmpn
 
UNIT 1- Introduction to Basic of Computer Fundamentals
bypawarbhaktiit
 
Requestly or Postman: What’s the Right API Tool for Your Team?
byhenrycavill30521
 
Lecture 05. API Security for DevSecOps Eng.pptx
byvinocol222
 
SEO in Charleston SC | Local SEO Strategies to Grow Your Business.pdf
bycustomdigitalsolutio1
 
Full course that Prymehat uploads for you version 2
byOhenebaManu1
 
A "Kill Switch" (Emergency Off Switch) for AI?
byScott M. Graffius
 
Best-Travel-Portal-Development-Solutions-for-Online-Growth
bykashishnagarrajput
 
Best Bank Statement Converter Software - A Documentation-Based Meta-Analysis ...
bylewisconrada
 
Unit 1 Introduction of Computer Networks
bySuvarnaSharma5
 
Governing Agentic Enterprise - From Shadow AI to Autonomous Security.pdf
bysajjasridhar1990
 
Effective Ai powered mock interview .pdf
byamazingnishusingh766
 
Lecture 04. about Black heads and Hackerss.pptx
byvinocol222
 
DVCON24-IBM ai/ml driven hardware verification
byArun Joseph
 
Purple Team - Active Directory and AzureAD v1
byVICTOR MAESTRE RAMIREZ
 
JR : Quality Random Data from the Command line
byGiovanni Marigi
 
Waste water treatment plant operation and maintenance
byDuggineniRamakrishna
 
TechSprint Kickoff - Everything You Need to Know
bygdgcodecellcmpn
 
65 AI-related Posts Catalog https://tinyurl.com/mpavkr8z
byBob Marcus
 
JAVA Programming Lecture 1 C 4 Yourself.pptx
byyvsbglfaeahuyldzhq
 
On-Device AI with Gemma 3n and PaliGemma 2 Session Slides - GDG VESIT
bygdgcodecellcmpn
 

apnic handling-network-abuse

  • 1.
    Handling Internet Network AbuseReports at APNIC 21 October 2010 LAP-CNSA Workshop, Melbourne George Kuo
  • 2.
    Overview • Introduction toAPNIC • Internet registry structure • Common network abuse questions APNIC receives • APNIC Whois Database registration
  • 3.
    What is APNIC? •Internet registry for the Asia Pacific • One of the five Regional Internet Registries • Membership-based organization • Not for profit and services focused • Internet resource policy coordination body • Consensus-based policy development • Open and transparent decision making
  • 4.
    APNIC’s Role • DistributesInternet resources • Maintains APNIC Whois Database • Facilitates resource policy development • Manages Reverse DNS delegations • But NOT a domain name registry • Provides training and outreach on resource management and APNIC services • Supports Internet development
  • 5.
    APNIC from aGlobal Perspective
  • 6.
  • 7.
    Internet Resource Delegation APNIC Delegates toAPNIC Member APNIC Member Customer / End User Delegates to customers ISP customer Delegates to end-user /8 APNIC Allocation /22 Member Allocation Sub- Allocation /24 /26/27 /25 Customer Assignments /26 /27
  • 8.
    Common Questions… • Whydoes APNIC appear as the source in some abuse search reports? • Can APNIC investigate or stop the network abuse? • Can APNIC reclaim the Internet resources used for the network abuse? • The contacts information in the APNIC Whois Database is invalid. What do I do?
  • 9.
    Is APNIC theculprit? • APNIC is listed by ARIN as holder of all IP space for the AP region • Some search tools look no further than this • For details, need to consult APNIC “whois” • APNIC whois may or may not show specific customer assignments for the addresses in question • But will show the ISP holding APNIC space
  • 10.
    Can APNIC stopabuse? • No, because… • APNIC is not an ISP and does not provide network connectivity to other networks • APNIC does not control Internet routing • APNIC is not a law enforcement agency • APNIC has no industry regulatory power
  • 11.
    What Can YouDo? • Use the APNIC Whois Database to obtain network contact information • Contact the network responsible and also its ISP/upstream • Contact APNIC for help, advice, training or support
  • 12.
    How to useAPNIC whois • Web browser • http://www.apnic.net/whois • whois client or query tool • whois.apnic.net • Identify network contacts from the registration records • IRT (Incident Response Team) if present • Contact persons: “tech-c” or “admin-c”
  • 13.
    What if whoisinfo is invalid? • Members (ISPs) are responsible for reporting changes to APNIC • Under formal membership agreement • Report invalid ISP contacts to APNIC • http://www.apnic.net/invalidcontact • APNIC will contact member and update registration details
  • 14.
    What if whoisinfo is invalid? • Customer assignment information is the responsibility of ISPs • ISPs are responsible for updating their customer network registrations • Tools such as „traceroute‟, „lookingglass‟ and RIS may be used to track the upstream provider if needed • More information available from APNIC
  • 15.
    Can APNIC reclaimaddresses? • Sometimes… • Where IP space has been obtained fraudulently or under false pretences (which is often the case) • But… • APNIC does not regulate Internet activity • Current address management policy do not cover network abuse
  • 16.
  • 17.
  • 18.
  • 19.
  • 20.
    Questions? • APNIC Whoisinquiry • www.apnic.net/helpdesk • More information on network abuse • www.apnic.net/abuse • Report invalid contacts • www.apnic.net/invalidcontacts • Or • Send email to helpdesk@apnic.net
  • 21.
  • 22.