The.nlyst: DDoS, local anycast and Domain Name Surveillance Service

Published on: Thursday 27 February 2014

Read the latest edition of The.nlyst, SIDN's quarterly magazine.

The success of the internet also has a down side. Its very importance for society and the economy means that the net is increasingly a medium or a target for people intent on crime or mischief. In 2013, we saw more examples of abuse than ever. Various prominent Dutch institutions were the victims of DDoS attacks. SIDN has been working to protect itself against such threats, with countermeasures that include the rollout of a local anycast network. The new edition of The.nlyst features the anycast initiative, plus first-hand accounts from two registrars of their experiences of DDoS attacks and their responses to them. One solution is the anti-DDoS service developed by NBIP, which CEO Alex Bik describes for us. Finally, we introduce our new Domain Name Surveillance Service, which scans for typosquats and draws them to the attention of subscribers.

Subscription

The.nlyst is SIDN's quarterly magazine for everyone with a professional or personal interest in the .nl domain and the internet. And is distributed free of charge to SIDN's registrars and other relations. Each edition is also made available in digital form on this website. If you would prefer to receive printed copies of the magazine by post, please e-mail your name, address and profession to communicatie@sidn.nl. We will then add you to the mailing list for future editions.

Comments

  • Monday 20 March 2017 About SIDN

    Cristian Hesselman joins SSAC

    Security and Stability Advisory Committee

    Afbeelding van Cristian Hesselman joins SSAC
    Read more
  • Tuesday 17 April 2018 Solutions

    Got lots of domain names? Here's how to keep track!

    Easy portfolio management

    Afbeelding van Got lots of domain names? Here's how to keep track!
    Read more
  • Monday 9 April 2018 Knowledge bank

    Support for secure transfer of signed domains now complete

    February 2014 Although DNSSEC was formally introduced to the Netherlands in 2012, the transfer of secure domains remained a problem for a long time. After all, when transferring a signed domain, the registrant will normally want to know that the domain will remain secure, not only after the new registrar takes control, but also while the transfer is in progress. A transfer protocol that made that possible was devised several years ago by Antoin Verschuren, Technical Advisor at SIDN, and has since been standardised by the IETF. However, the new transfer procedure required the receiving registrar and the releasing registrar to exchange key material: something that SIDN's registry interface didn't support at the time. Last year, a new EPP command was therefore developed: key relay. Now that PowerDNS — the most widely used DNS server for signed domains — officially supports the publication of external key material, the chain is complete. Signed domains can now be transferred between registrars securely and automatically. In the summer, Monshouwer became the first registrar to implement and use the entire transfer protocol.

    Afbeelding van Support for secure transfer of signed domains now complete
    Read more