An information sharing and analysis centre for the global DNS. DNS OARC.

Slides:

Advertisements

Similar presentations

Managing IP addresses for your private clouds 2013 ASEAN CAS Summit Bangkok, Thailand 7 February 2013 George Kuo Member Services Manager.

Advertisements

WORKSHOP SLA SPECIFICATION BY ETIENNE WERY Lawyer at the Paris & Brussels Bar, Partner ULYS IT OUTSOURCING SUMMIT 27/11/2003.

InfraGard Update SSA John V. Gillies SA Matthew E. Morin.

CSE 4482, 2009 Session 21 Personal Information Protection and Electronic Documents Act Payment Card Industry standard Web Trust Sys Trust.

Health IT RESTful Application Programming Interface (API) Security Considerations Transport & Security Standards Workgroup March 18, 2015.

Join Our Research Efforts in CCAA to Improve Cybersecurity Robustness, Resiliency and Management in Enterprises Information Slides to Encourage Your Organization.

Domain Name System | DNSSEC. 2  Internet Protocol address uniquely identifies laptops or phones or other devices  The Domain Name System matches IP.

National Governor’s Association September 29-30, 2003 Salt Lake City, Utah.

David B. McDonagh Portfolio and Background. A Unique Blend of Experience Top-Achieving Senior Executive Sales and Business Development Leader Socially.

Peter Burnett Head of Information Sharing National Infrastructure Security Co-ordination Centre.

Scaling IXPs Scalable Infrastructure Workshop. Objectives  To explain scaling options within the IXP  To introduce the Internet Routing Registry at.

US-CERT National Cyber Security Division/ U.S. Computer Emergency Readiness Team (US-CERT) Overview Lawrence Hale Deputy Director, US-CERT.

BITS Proprietary and Confidential © BITS Security and Technology Risks: Risk Mitigation Activities of US Financial Institutions John Carlson Senior.

Network Security Resources from the Department of Homeland Security National Cyber Security Division.

Review of Technology Transfer at The University of Texas System Margaret Sampson Partner, Vinson & Elkins LLP U. T. System Board of Regents’ Meeting Technology.

The United States National Spatial Data Infrastructure.

Australia Cybercrime Capacity Building Conference April 2010 Brunei Darussalam Ms Marcella Hawkes Director, Cyber Security Policy Australian Government.

International Forum on Investment in Private Higher Education IFC The World Bank, January 21 – 23, 2004 “ Moving Beyond The Hypothetical In Financial.

August Mr. Mike Finley, CISSP Senior Security Engineer Computer Science Corporation.

Microsoft Operations Framework Morten Lauridsen Engagement Manager Microsoft Consulting Services Morten Lauridsen Engagement Manager.

© 2007 Open Grid Forum Data Grid Management Systems: Standard API - community development Arun Jagatheesan, San Diego Supercomputer Center & iRODS.org.

Joseph Richardson Senior Fellow, ICC ICC Survey of CERT Capacity in Africa July 2010.

1 Direction scientifique Networks of Excellence objectives  Reinforce or strengthen scientific and technological excellence on a given research topic.

Ruth Pordes November 2004TeraGrid GIG Site Review1 TeraGrid and Open Science Grid Ruth Pordes, Fermilab representing the Open Science.

A Global Approach to Protecting the Global Critical Infrastructure Dr. Stephen D. Bryen.

Introduction to Grids By: Fetahi Z. Wuhib [CSD2004-Team19]

ICANN Strategic Initiatives for Security, Stability and Resiliency - DNS CERT Posted for Public Comment at 1.

Sara Vickerman May 10, 2012 Defenders of Wildlife Proposed Habitat/Biodiversity Metric Framework Agreement.

A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E Emerging Registry Criteria ASO General Assembly Budapest, 19 May 2000.

CISC 849 : Applications in Fintech Namami Shukla Dept of Computer & Information Sciences University of Delaware A Cloud Computing Methodology Study of.

PHDSC Privacy, Security, and Data Sharing Committee Letter to Governors.

PARTNERSHIP FOR TB CARE AND CONTROL IN INDIA Inception : The Partnership has its roots in a Round 8 proposal for the Global Fund. In August 2008, USAID.

EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI Funding Global Tasks.

1  Carnegie Mellon University Overview of the CERT/CC and the Survivable Systems Initiative Andrew P. Moore CERT Coordination Center.

The technology behind the USPS EPM. AND COMPLIANCE March 25, 2004 Adam Hoffman.

Incident Response Strategy and Implementation Anthony J. Scaturro University IT Security Officer September 22, 2004.

Passive DNS at OARC Keith Mitchell, OARC Paul Vixie, ISC DNS Operations Meeting Chicago, 28 th Jul 2007.

Performing Risk Analysis and Testing: Outsource or In-house

Security Issues with Domain Name Systems

Defining Key Performance Indicators

Regional Optical Networks and The Quilt

Ghana Academic and Research Network (GARNET)

KSK Rollover Update David Conrad, CTO ICANN 59 – GAC 29 June 2017.

CASE BACKGROUND On September 27, 2012, an explosion occurred and right tons of hydrofluoric acid (HF) leaked from the Hube Global plant in Gumi, South.

Domain Name System (DNS)

From Diagnostic to Reform

Deputy Executive Officer: Insurance Financial Services Board

Global Coordination Platform

California Cybersecurity Integration Center (Cal-CSIC)

Global Registry Knowledge Update Leslie Nobile

Global Spatial Data Infrastructure Capacity Building

Unit 5: Providing Network Services

The Forum of Incident Response and Security Teams (FIRST)

Global Coordination Platform

The Forum of Incident Response and Security Teams (FIRST)

The Obermeier Software SNMP OPC Server 3.0

The U.S. Department of Homeland Security

Financial Abuse Specialist Team (FAST): A Collaborative Opportunity with Unique Challenges Donata Mikulik, Elder Justice Coordinator (Sonoma), Senior Advocacy.

Federated Environments and Incident Response: The Worst of Both Worlds

Security week 1 Introductions Class website Syllabus review

Project Background What is your project? What sector?

Data and Applications Security Developments and Directions

Beyond the e-Government

APNIC’s Engagement on Security

The Danish Platform: "Food for Life.dk"

The Forum of Incident Response and Security Teams (FIRST)

DNS operations SIG APNIC 17 Kuala Lumpur, Malaysia

Karmen Hren Statistical Office of Slovenia

Review of Technology Transfer at The University of Texas System

Discussion Government Private Business Tools for prevention Congress

Presentation transcript:

An information sharing and analysis centre for the global DNS. DNS OARC

Background Information Sharing and Analysis Center –Concept originates with US homeland security efforts. –Allow industry participants to share potentially proprietary information during times of crisis. –ISACs in many different sectors BUT: ISAC not global enough, needed to expand the concept

Key Functions Incident response –Shared, trusted platform for information exchange Operational characterization –Data collection infrastructure for consistency across time and multiple operators Testing –Interoperability of implementations –Debugging configuration and service options

Key Functions (2) Analysis –Characterize normal functioning –Analyse attacks against DNS –Analyse backscatter to DNS from other attacks Outreach –Assist efforts to defend against attacks, malfunctions –Improved knowledge for operators everywhere

Information Exchange Vendors Need to Share Information –Information needed to solve problems during times of crisis may be proprietary. –Strong, binding membership agreement and trusted, secure information sharing platform insures proper coordination of efforts. Operators need to share experience too Complements CERTs, law enforcement

Secretariat for OARC OARC provided as public service by the Internet Systems Consortium –Not-for-profit corporation. –Long-term track record in public DNS operations insures credibility with participants. Other ISC public services: –BIND software –“F” root server.. –OpenReg Software –DNS Analysis and Measurement

Analysis and Research ISC partnering with CAIDA for research and analysis. CAIDA well-known for ground-breaking analysis on the global DNS –Based at the University of California at San Diego –Funded by NSF, ARPA, vendors. –Strong credibility with ISPs, root operators, and others involved in operation of the global DNS. –Well-known for studies of performance, operation of root servers, DNS queries, measurement. ISC and CAIDA have jointly applied for NSF funding for a long-term research program.

Membership Membership aimed at 4 classes of institutions: –Root and TLD operators. –Other large DNS operators (e.g., ecommerce providers). –Government institutions with responsibility for DNS operations (e.g., law enforcement). –Research and analysis institutions with a strong operational focus. Membership agreement –Fees based on number of Points of Contact assigned. $4,200/year for 3 POCs, $6,800 for 5 POCs. –Signed membership agreement required to insure confidentiality requirements are met.

Questions?