<<<
Chronological Index
>>> <<<
Thread Index
>>>
[council] Fwd: Transmittal of SAC 025 to GNSO
- To: Council GNSO <council@xxxxxxxxxxxxxx>
- Subject: [council] Fwd: Transmittal of SAC 025 to GNSO
- From: Avri Doria <avri@xxxxxxx>
- Date: Tue, 11 Mar 2008 15:34:08 -0400
- List-id: council@xxxxxxxxxxxxxx
- References: <C3FC4F2D.1254%dave.piscitello@icann.org>
- Sender: owner-council@xxxxxxxxxxxxxx
<html><body style="word-wrap: break-word; -webkit-nbsp-mode: space;
-webkit-line-break: after-white-space; "><br><div><br><div>Begin forwarded
message:</div><br class="Apple-interchange-newline"><blockquote
type="cite"><div><div style="margin-top: 0px; margin-right: 0px; margin-bottom:
0px; margin-left: 0px; "><font face="Helvetica" size="3" color="#000000"
style="font: 12.0px Helvetica; color: #000000"><b>From: </b></font><font
face="Helvetica" size="3" style="font: 12.0px Helvetica">Dave Piscitello <<a
href="mailto:dave.piscitello@xxxxxxxxx">dave.piscitello@xxxxxxxxx</a>></font></div><div
style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left:
0px; "><font face="Helvetica" size="3" color="#000000" style="font: 12.0px
Helvetica; color: #000000"><b>Date: </b></font><font face="Helvetica" size="3"
style="font: 12.0px Helvetica">11 March 2008 15:01:01 EDT</font></div><div
style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left:
0px; "><font face="Helvetica" size="3" color="#000000" style="font: 12.0px
Helvetica; color: #000000"><b>To: </b></font><font face="Helvetica" size="3"
style="font: 12.0px Helvetica">"<a
href="mailto:GNSO.SECRETARIAT@xxxxxxxxxxxxxx">GNSO.SECRETARIAT@xxxxxxxxxxxxxx</a>"
<<a
href="mailto:gnso.secretariat@xxxxxxxxxxxxxx">gnso.secretariat@xxxxxxxxxxxxxx</a>>,
Avri Doria <<a href="mailto:avri@xxxxxxx">avri@xxxxxxx</a>>, "Gomes,
Chuck" <<a
href="mailto:cgomes@xxxxxxxxxxxx">cgomes@xxxxxxxxxxxx</a>></font></div><div
style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left:
0px; "><font face="Helvetica" size="3" color="#000000" style="font: 12.0px
Helvetica; color: #000000"><b>Cc: </b></font><font face="Helvetica" size="3"
style="font: 12.0px Helvetica">Steve Crocker <<a
href="mailto:steve@xxxxxxxxxxxx">steve@xxxxxxxxxxxx</a>></font></div><div
style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left:
0px; "><font face="Helvetica" size="3" color="#000000" style="font: 12.0px
Helvetica; color: #000000"><b>Subject: </b></font><font face="Helvetica"
size="3" style="font: 12.0px Helvetica"><b>Transmittal of SAC 025 to
GNSO</b></font></div><div style="margin-top: 0px; margin-right: 0px;
margin-bottom: 0px; margin-left: 0px; min-height: 14px; "><br></div>
</div><div> <font face="Verdana, Helvetica, Arial"><span
style="font-size:12.0px"> <img height="44" width="178"
src="cid:3288092461_12670908"><br> <br> 11 March 2008<br> <br>
Transmittal of SAC025: Fast Flux Hosting and DNS to the GNSO<br> <br> At
the direction of the ICANN Board of Directors, the Security and Stability
Advisory Committee invites the GNSO to consider the accompanying Advisory,
<i>SAC 025: Fast Flux Hosting and DNS</i>. A PDF of the Advisory may be
downloaded from the ICANN web site at<br> <br> <a
href="http://www.icann.org/committees/security/sac025.pdf">http://www.icann.org/committees/security/sac025.pdf</a><br>
<br> Cyber-criminals and Internet miscreants use Fast Flux hosting to
frustrate anticrime efforts aimed at locating and shutting down web sites used
for illegal purposes. Fast flux hosting supports a wide variety of cyber-crime
activities (fraud, identity theft, online scams) and is considered one of the
most serious threats to online activities today. One variant of fast flux
hosting, "double flux", exploits the domain name registration and name
resolution services. <br> <br> SAC 025 describes the technical aspects of
fast flux hosting and fast flux service networks and explains how the DNS is
exploited to abet criminal activities that employ fast flux hosting. The
Advisory discusses current and possible methods of mitigating fast flux hosting
at various points in the Internet and identifies those methods that SSAC
considers practical and sensible. <br> <br> SSAC asks that the GNSO
consider measures and best practices enumerated in SAC 025 and how these might
be incorporated into standard operating procedures or future policies. While
these measures alone cannot eliminate fast flux hosting, they can greatly
improve the overall Internet security baseline if implemented broadly and
uniformly. <br> <br> We thank you in advance for your time and
consideration.<br> <br> David Piscitello<br> ICANN Senior Security
Technologist,<br> On behalf of the SSAC <br> </span></font> </div>
</blockquote></div><br></body></html>
<<<
Chronological Index
>>> <<<
Thread Index
>>>
|