Monday, April 03, 2006

ICANN Releases Reports on Alternative TLD Systems and DDoS Amplification Attacks

Via CircleID.

In the report, “Alternative TLD Name Systems and Roots: Conflict, Control and Consequences [.pdf]”, ICANN Security and Stability Advisory Committee (SSAC) considers conditions and factors that could accelerate fragmentation, destabilize root name service and alter the existing name system management framework to a much greater degree than pure for-profit initiatives. It presents a rudimentary classification of alternative root name server systems and alternative TLD name system administrators. For each class, it attempts to identify the stated or implied incentives for operating an alternative root name service and managing alternative TLDs. It describes the operational models and the technical mechanisms each class of operators employs to provide name resolution and registration services. It then considers the impact on Internet users and service providers (ISPs), domain name registrants, and registries that operate under agreements with ICANN.

In early February 2006, name servers hosting Top Level Domain zones were the repeated recipients of extraordinary heavy traffic loads. Analysis of traffic by TLD name server operators and security experts at large confirmed that DNS packets comprising the attack traffic exhibited characteristics associated with previously attempted DDoS attacks collectively known as amplification attacks. In the report, “Security Advisory for DNS Distributed Denial of Service Amplification Attacks [.pdf]”, the advisory describes representative incidents, identifies the impacts, and recommends countermeasures that TLD name server operators can employ for immediate and long-term relief from the harmful effects of these attacks.

0 Comments:

Post a Comment

<< Home