[news release] Tuesday, a coalition of law enforcement agencies across the world announced the results of a coordinated operation known as DisrupTor which targeted vendors and buyers of illicit goods on the dark web.
According to an analysis of the Netherlands’ 50 biggest brand names, the number of .nl domain names suspected of being used or intended for use in phishing has been increasing, but monitoring and intervention appears to be suppressing visible abuse such as phishing.
The Dutch ccTLD .nl passed the six million registered domain names last week, a milestone that was reached somewhat earlier as a result of around a quarter of a million new registrations following the COVID-19 pandemic and lockdown.
A couple of reports from the people behind .nz have shown the impact of COVID-19 (coronavirus) on New Zealanders and their internet use in recent months. Statistics for .nz shows increased DNS activity, including a surge in registrations that has taken registrations to close to 715,000.
People are staying at home more now in many countries including the Netherlands, and as a result Dutch people and businesses have registered just over 85,000 .nl domain names since the restrictions came into force. According to the .nl registry, SIDN, that’s ten thousand up on the same period in 2019.Continue reading SIDN Sees Unexpected Jump In .NL Registrations Due To COVID-19
ICANN announced Monday the 2 remaining public meeting locations for 2021 that were yet to be announced: CancÃºn and The Hague.
CancÃºn, Mexico, will host ICANN70 from 20 to 25 March 2021. The Community Forum will be held at the Cancun International Convention Center (CICC).
The Hague, Netherlands will host ICANN71 which will take place from 14 to 17 June 2021. The Policy Forum will be held at the World Forum.
Earlier this year, ICANN announced that Seattle, Washington, U.S., will serve as the location for ICANN72, which will be held from 23-28 October 2021 at the new
Hyatt Regency Seattle.
This makes up the 3 Public Meetings ICANN holds each calendar year in different regions of the globe.
The internet is increasingly playing a part in the lives of Belgians with growing numbers enjoying the freedom it gives them, go online for entertainment and feel the internet is an essential part of their daily lives. But only 1 in 20 Belgians have ever registered a domain name.
This is all part of research conducted by InSites Consulting on behalf of DNS Belgium, the .be ccTLD registry, at the end of 2018. The research found trust is important for Belgian internet users, and .be domain names score high on that front.
When asked what were the most important factors when it comes to trusting a domain name, Belgians responded:
- Language of the domain name
- Extension of the domain name
- The brand of the domain name
- Length of the domain name.
When it came to trusting a website, an encrypted connection (https) was considered the most important, a .be domain name second and a company logo third.
When asked if theyâve ever registered at least one domain name, 5% of Belgians said they had while 95% said not. 60% understood the concept of domain names while one third (35%) said theyâd consider registering a domain name in the future, the remainder said they wouldnât.
For the top level domains Belgians register domain names in, 77% said their own country code top level domain .be, 30% said .com, 16% said .net and 13% said .eu. Following was their neighbour .nl (Netherlands – 8%), .org (7%), .fr (France – 4%), .brussels (2%), .london (1%) and others accounted for 9%.
When it comes to the reasons for registering a domain name, 43% of Belgians said for a website, 40% for website and email and 6% just email.
It also appears Belgians are registering domain names sooner in the process of developing a business or idea with 42% saying they registered a domain name âdirectly at the time of the ideaâ compared to 23% in 2017, 11% âwhen the business is launchedâ (11% in 2017) and 23% after the start (30% in 2017).
Awareness was highest with .be and .com, with both scoring awareness among over 90% of Belgians (94% and 92% respectively) while .vlaanderen and .brussels scored 27% and 19% respectively.
Belgians said they valued the freedom and entertainment the internet offered them with 70% saying they loved the freedom the internet gives them (up from 59% in 2017), 68% said they go online at home for entertainment (57% in 2017) and 67% said they âfeel the internet is an essential part of their daily livesâ (47% in 2017).
Belgians say they surf safely online with almost two thirds (64%) saying they ânever surf to untrustworthy sitesâ while half (50%) âare concerned with safe internet useâ and a quarter (25%) âare aware of the latest online security toolsâ.
To assist their registrars comply with the European Unionâs General Data Protection Regulation, SIDN, the .nl ccTLD manager, has set up a Privacy Portal and a Legal Help Desk. SIDN acknowledges that for registrars, bringing their operations into line with the GDPR — and making sure they stay that way — can be a challenge.
In a blog post on the SIDN website by RA CEO Margreth Verhulst and SIDN’s Key Account Manager Sebastiaan Assink discuss the Privacy Portal and Legal Help Desk now available to registrars.
âAt the start of the year, SIDN organised a webinar on the implications of the GDPR for domain name registration. Participants were asked whether they had set up a data processing register, as required under the new legislation. And no fewer than 66 per cent of the registrars responded by saying that they hadn’t yet set one up. A broadly similar picture emerged when the RA surveyed its members to find out how many were GDPR-compliant. From the survey feedback, it was also clear that registrars would welcome support bringing their activities into line with the directive. The RA and SIDN therefore linked up with the ICTRecht legal consultancy to create the Privacy Portal, which opened for business on 27 September 2018. The Portal is intended to advise registrars on recording and protecting sensitive information and other privacy-related issues. “The Privacy Portal offers registrars free guidance on all aspects of privacy management,” explains Sebastiaan. “You can get answers to legal questions, or help with data processing agreements and other documents.” Dozens of registrars have already turned to the Portal for assistance.
A registrarâs first contact the Privacy Portal sees them being asked a few general questions. Answers are used to build up a profile and then a customised account can be established. Through the account, tailored advice is made available and appropriate measures are suggested. Facilities are also available for organising your enquiries and documents. “The intake privacy scan provides an immediate impression of what you’ve got under control and what still needs attention,” adds Margreth.
âThe Portal also features a tool that can be used to set up and maintain a data processing register, another of the GDPR’s new requirements. There’s a privacy statement generator as well, and a utility for checking the adequacy of your technical data protection measures. Another feature of the Privacy Portal is its data breach registration functionality, which you can use to comply with the GDPR’s requirement that details of all breaches must be recorded. Finally, there’s a tool for generating appropriate data processing agreements to regulate your relationships with any data processors that handle data on your behalf. In other words, the Privacy Portal offers all kinds of assistance with GDPR-compliance.â
“Registrars process a great deal of personal data and cooperate with other actors, including suppliers and partners. They collect registrants’ personal details, for example, and forward the information to us on the registrants’ behalf. That’s how a domain name is registered. Naturally, it’s primarily the registrars’ responsibility to make sure that their data processing complies with the law. However, it’s also very much in our interests to see that registration data is processed and exchanged securely,” continues Sebastiaan. As Margreth points out, registrars have a lot on their plates, even without the GDPR. “Their core business is domain name registration, and compliance with the many rules and regulations that apply to the industry sometimes gets sidelined. So the Portal has been created with the aim of relieving some of the burden and making compliance easier for registrars. For any registrar who sees GDPR compliance as a dauntingly high mountain, the Privacy Portal will act like a Sherpa. You’ve still got to get up the mountain yourself, but the Portal is there to shoulder some of the load.”
âThe Privacy Portal is just one of the ways that the RA and SIDN are working together to support and invest in the registrar community. It is a spin-off from the Legal Help Desk opened earlier in the year. Via the Help Desk, all 1250 or so .nl registrars can get free legal advice regarding issues involving contracts, ICT, terms and conditions and the like. Questions are simply submitted to the Help Desk using a standard form. Another product of cooperation between SIDN and the RA is the SIDN Academy.â
“So far, we’ve run three SIDN Academy sessions for registrars. The one-day sessions are intended for sharing knowledge on particular topics,â said Assink. âThe first round of sessions was devoted to e-mail security, for example.”
Looking forward, the post notes Margreth and Sebastiaan have no preconceptions about how the Help Desk and Portal should develop from here. Both are really still pilot services. “We’ll evaluate the situation after twelve months,” says Margreth. “The future direction of the projects will depend on how registrars use these facilities in practice. A positive response and high levels of use will encourage us to continue and extend the services.”
The full version of this post originally appeared on the SIDN website here. SIDN is the country code top level domain (ccTLD) manager for .nl (Netherlands).
SIDN Labs, Afnic Labs and Grenoble Alps University have commenced a new research project on the âClassification of compromised versus maliciously registered domainsâ (COMAR).
The Franco-Dutch project, which commenced on 1 October, will address the problem of automatically distinguishing between domain names registered by cybercriminals for the purpose of malicious activities, and domain names exploited through vulnerable web applications. The project is designed to help intermediaries such as registrars and ccTLD registries further optimise their anti-abuse processes.
The ultimate goal of COMAR is to develop a machine learning-based classifier that labels blacklisted domains as compromised or maliciously registered, then extensively evaluate its accuracy, and implement it for a production-level environment. They also plan to study the attackersâ profit-maximising behaviour and their business models. The project will apply a classifier to unlabelled domain names of URL blacklists, for example, to answer the following question: do attackers prefer to register malicious domains, compromise vulnerable websites, or misuse domains of legitimate services such as cloud-based file-sharing services in their criminal activities?
COMAR is a joint project of SIDN Labs, Afnic Labs, and Grenoble Alps University. SIDN is the country code top level domain (ccTLD) registry for .nl, Afnic for .fr and Grenoble Alps University is aiming to establish itself as a leading cybersecurity research centre in the RhÃ´ne-Alpes region in France.
For more information on the research project, see:
Registering domain names in a country code top level domain often has benefits to that country’s local internet community. In the case of Canada’s ccTLD, Byron Holland, President and CEO of CIRA who manages .ca, recently explained how in a post on the company blog. Continue reading CIRA Explains Why Registering ccTLD Domains Benefits the Local Internet Community