14,952
edits
Changes
Jump to navigation
Jump to search
Line 39:
Line 39: − + − +
DNS Security Facilitation - Technical Study Group (view source)
Revision as of 19:42, 18 November 2021
, 2 years ago→Work Product
# Educate DNS stakeholders to make available the appropriate standards-based authentication mechanisms for all interactions
# Educate DNS stakeholders to make available the appropriate standards-based authentication mechanisms for all interactions
# Improve documentation and understanding of Registry Lock features and promote their use; explain the differences between Registry and Registrar Lock to registrants; facilitate the standardization of minimum requirements for Registry and Registrar Lock services
# Improve documentation and understanding of Registry Lock features and promote their use; explain the differences between Registry and Registrar Lock to registrants; facilitate the standardization of minimum requirements for Registry and Registrar Lock services
# Raise Awareness of Best Practices for [[ICANN Terms#Infrastructure|Infrastructure]] Security
# Raise Awareness of Best Practices for [[ICANN Terms#Infrastructure|Infrastructure]] Security by participating in initiatives such as [[MANRS]] and [[KINDNS]] and promoting the adoption of [[DMARC]], [[SPF]], [[TLSA]], [[DANE]], and [[DNSSEC]]
# DNS [[RBL|Blocking]] and Filtering
# Help the [[ICANN Community]], contracted parties, and others understand the risks and benefits of DNS [[RBL|Blocking]] and filtering for [[SSR|security and stability reasons]], best practices, tooling for DNS interdependencies to avoid large-scale collateral damage, using the Public Suffix List ([[PSL]]), sharing lists to avoid overblocking, and general reputation hygiene
# Incident Responses
# Incident Responses
# Raise Covert Channel Awareness
# Raise Covert Channel Awareness