NetBeacon Reporter: Difference between revisions

(5 intermediate revisions by the same user not shown)

Line 3:

==History==

NetBeacon grew out of a ~~genuine~~ need in the domain community about how to approach the problems DNS abuse presents. For this reason, the Net Beacon Institute (at the time named DNS Abuse Institute) worked to understand the complexities of mitigating DNS Abuse and the came up with programs and goals to fulfill their mission.<ref name="netbeacon1">[https://netbeacon.org/introducing-netbeacon/ Introducing NetBeacon]</ref>

NetBeacon grew out of a need in the domain community about how to approach the problems DNS abuse presents. For this reason, the Net Beacon Institute (at the time named DNS Abuse Institute) worked to understand the complexities of mitigating DNS Abuse and the came up with programs and goals to fulfill their mission.<ref name="netbeacon1">[https://netbeacon.org/introducing-netbeacon/ Introducing NetBeacon]</ref>

In November 2021, [[Graeme Bunton]], Director of the Institute, published that they were developing a Centralized Abuse Reporting Tool (CART). The intention of this tool was to provide a single platform to report DNS Abuse by outlining the evidence requirements for each abuse type, properly formatting and enriching the request details provided, and then forwarding it to the appropriate [[registry]] or [[registrar]]. The goal was to standardize reliable processes to improve both the act of reporting abuse and the abuse reports that registrars and registries receive. As part of it’s requirements gathering, the Institute researched the reporting processes of the largest registries and registrars in order to better understand how they accept reports of abuse. Publicly available information from registry and registrar websites was collected to obtain data on their abuse reporting implementations and processes.<ref>https://netbeacon.org/the-current-state-of-dns-abuse-reporting/</ref> They concluded that there two main - and interrelated - problems:

In November 2021, [[Graeme Bunton]], Director of the Institute, published that they were developing a Centralized Abuse Reporting Tool (CART). The intention of this tool was to provide a single platform to report DNS Abuse by outlining the evidence requirements for each abuse type, properly formatting and enriching the request details provided, and then forwarding it to the appropriate [[registry]] or [[registrar]]. The goal was to standardize reliable processes to improve both the act of reporting abuse and the abuse reports that registrars and registries receive. As part of it’s requirements gathering, the Institute researched the reporting processes of the largest registries and registrars in order to better understand how they accept reports of abuse. Publicly available information from registry and registrar websites was collected to obtain data on their abuse reporting implementations and processes.<ref name="netbeacon2">[https://netbeacon.org/the-current-state-of-dns-abuse-reporting/ Current state]</ref> They concluded that there two main - and interrelated - problems:

* '''Complexity''': Reporting DNS Abuse to registrars and registries ~~currently requires~~ technical knowledge and ability to navigate the entire ecosystem~~. This is~~ onerous, confusing, non-standardized, and extremely difficult to do at Internet-scale.

* '''Complexity''': Reporting DNS Abuse to registrars and registries required technical knowledge and ability to navigate the entire ecosystem, which could be onerous, confusing, non-standardized, and extremely difficult to do at Internet-scale.

* '''Quality''': The DNS Abuse reports that registrars and registries ~~receive are~~ frequently duplicative, unevidenced, unactionable, and often ~~contain~~ domains that aren’t related to them. This ~~can consume~~ time and resources with little of that effort improving the Internet. <ref name="netbeacon1"></ref>

* '''Quality''': The DNS Abuse reports that registrars and registries received were frequently duplicative, unevidenced, unactionable, and often contained domains that aren’t related to them. This consumed time and resources with little of that effort improving the Internet. <ref name="netbeacon1"></ref>

In April 2022, they provided updates and what the tool was going to be: an abuse reporting intermediary, which would improve the experience for people who want to report abuse by providing a single place to report DNS Abuse across the ecosystem in a simple, standardized fashion. A centralized solution had been called for in several important cross-community outputs, including in the recommendations of the [[SSR2|Second Security and Stability Review Team (SSR2)]] and in the [https://itp.cdn.icann.org/en/files/security-and-stability-advisory-committee-ssac-reports/sac-115-en.pdf SAC 115: Report on an Interoperable Approach to Addressing Abuse], a report from [[SSAC|ICANN’s Security and Stability Advisory Committee (SSAC)]]. They also announced that the name CART would be changed to NetBeacon.<ref>https://netbeacon.org/centralized_abuse_reporting_update/</ref>

In April 2022, they provided updates and what the tool was going to be: an abuse reporting intermediary, which would improve the experience for people who want to report abuse by providing a single place to report DNS Abuse across the ecosystem in a simple, standardized fashion. A centralized solution had been called for in several important cross-community outputs, including in the recommendations of the [[SSR2|Second Security and Stability Review Team (SSR2)]] and in the [https://itp.cdn.icann.org/en/files/security-and-stability-advisory-committee-ssac-reports/sac-115-en.pdf SAC 115: Report on an Interoperable Approach to Addressing Abuse], a report from [[SSAC|ICANN’s Security and Stability Advisory Committee (SSAC)]]. They also announced that the name CART would be changed to NetBeacon.<ref name="update">[https://netbeacon.org/centralized_abuse_reporting_update/ Update]</ref>

In June 2022, the Institute, supported by [[PIR|Public Interest Registry (PIR)]] and CleanDNS launched NetBeacon.

In June 2022, the Institute, supported by [[PIR|Public Interest Registry (PIR)]] and CleanDNS launched NetBeacon Reporter, mostly called only NetBeacon.

The service is free and was directed at registrars. NetBeacon aimed to make it easier for registrars to receive actionable, high quality reports of phishing, malware, botnets, and spam. It also included customization to individual needs.

The service is free and was mainly directed at registrars. NetBeacon aimed to make it easier for registrars to receive actionable, high quality reports of phishing, malware, botnets, and spam. It also included customization to individual needs.

They claimed that their reports were:

Line 26:

==Function==

NetBeacon’s core functions are designed to make it easier for registrars to receive and process abuse claims. By providing a single venue, with standardized fields and evidence requirements, NetBeacon aims to improve the quality of reports. Each report includes fields for the domain in question, the type of abuse, a description of abuse, date of abuse, and any additional evidence. The Institute accepts DNS Abuse reports through three core mechanisms. Reports can be submitted via NetBeacon’s website (www.netbeacon.org).

NetBeacon’s core functions are designed to make it easier for registrars to receive and process abuse claims. By providing a single venue, with standardized fields and evidence requirements, NetBeacon aims to improve the quality of reports. Each report includes fields for the domain in question, the type of abuse, a description of abuse, date of abuse, and any additional evidence. The Institute accepts DNS Abuse reports through three core mechanisms. Reports can be submitted via NetBeacon’s website (www.netbeacon.org).<ref name="service">[https://netbeacon.org/dns-abuse-institute-launches-netbeacon-first-ever-centralized-dns-abuse-reporting-service/ Service]</ref>

In April 2023 came the second Annual Report from the Institute, which included content about NetBeacon Reporter. It said that the reception of NetBeacon was overwhelmingly positive, with multiple references from the [[GAC|ICANN Governmental Advisory Committee]], and positive press. Although report recipients, primarily registrars, were generally well served by the service, there was also the need more features to help abuse reporters. As such, new features started being developed to:

* Allow registries to use NetBeacon to distribute reports to their registrar channel

* Enable the verification of DNS Abuse reporters

* Enable branded reports with boilerplate text for verified abuse reporters <ref name="annual">[https://netbeacon.org/wp-content/uploads/2024/04/DNSAI-Annual-Report-2022.pdf Annual report]</ref>.

==References==

[[Category:DNS Abuse Responses]]

@@ Line 3: / Line 3: @@
 ==History==
-NetBeacon grew out of a genuine need in the domain community about how to approach the problems DNS abuse presents. For this reason, the Net Beacon Institute (at the time named DNS Abuse Institute) worked to understand the complexities of mitigating DNS Abuse and the came up with programs and goals to fulfill their mission.<ref name="netbeacon1">[https://netbeacon.org/introducing-netbeacon/ Introducing NetBeacon]</ref>
+NetBeacon grew out of a need in the domain community about how to approach the problems DNS abuse presents. For this reason, the Net Beacon Institute (at the time named DNS Abuse Institute) worked to understand the complexities of mitigating DNS Abuse and the came up with programs and goals to fulfill their mission.<ref name="netbeacon1">[https://netbeacon.org/introducing-netbeacon/ Introducing NetBeacon]</ref>
-In November 2021, [[Graeme Bunton]], Director of the Institute, published that they were developing a Centralized Abuse Reporting Tool (CART).  The intention of this tool was to provide a single platform to report DNS Abuse by outlining the evidence requirements for each abuse type, properly formatting and enriching the request details provided, and then forwarding it to the appropriate [[registry]] or [[registrar]].  The goal was to standardize reliable processes to improve both the act of reporting abuse and the abuse reports that registrars and registries receive. As part of it’s requirements gathering, the Institute researched the reporting processes of the largest registries and registrars in order to better understand how they accept reports of abuse.  Publicly available information from registry and registrar websites was collected to obtain data on their abuse reporting implementations and processes.<ref>https://netbeacon.org/the-current-state-of-dns-abuse-reporting/</ref> They concluded that there two main - and interrelated - problems:
+In November 2021, [[Graeme Bunton]], Director of the Institute, published that they were developing a Centralized Abuse Reporting Tool (CART).  The intention of this tool was to provide a single platform to report DNS Abuse by outlining the evidence requirements for each abuse type, properly formatting and enriching the request details provided, and then forwarding it to the appropriate [[registry]] or [[registrar]].  The goal was to standardize reliable processes to improve both the act of reporting abuse and the abuse reports that registrars and registries receive. As part of it’s requirements gathering, the Institute researched the reporting processes of the largest registries and registrars in order to better understand how they accept reports of abuse.  Publicly available information from registry and registrar websites was collected to obtain data on their abuse reporting implementations and processes.<ref name="netbeacon2">[https://netbeacon.org/the-current-state-of-dns-abuse-reporting/ Current state]</ref> They concluded that there two main - and interrelated - problems:
-* '''Complexity''': Reporting DNS Abuse to registrars and registries currently requires technical knowledge and ability to navigate the entire ecosystem. This is onerous, confusing, non-standardized, and extremely difficult to do at Internet-scale.
+* '''Complexity''': Reporting DNS Abuse to registrars and registries required technical knowledge and ability to navigate the entire ecosystem, which could be onerous, confusing, non-standardized, and extremely difficult to do at Internet-scale.
-* '''Quality''': The DNS Abuse reports that registrars and registries receive are frequently duplicative, unevidenced, unactionable, and often contain domains that aren’t related to them. This can consume time and resources with little of that effort improving the Internet. <ref name="netbeacon1"></ref>
+* '''Quality''': The DNS Abuse reports that registrars and registries received were frequently duplicative, unevidenced, unactionable, and often contained domains that aren’t related to them. This consumed time and resources with little of that effort improving the Internet. <ref name="netbeacon1"></ref>
-In April 2022, they provided updates and what the tool was going to be: an abuse reporting intermediary, which would improve the experience for people who want to report abuse by providing a single place to report DNS Abuse across the ecosystem in a simple, standardized fashion. A centralized solution had been called for in several important cross-community outputs, including in the recommendations of the [[SSR2|Second Security and Stability Review Team (SSR2)]] and in the [https://itp.cdn.icann.org/en/files/security-and-stability-advisory-committee-ssac-reports/sac-115-en.pdf SAC 115: Report on an Interoperable Approach to Addressing Abuse], a report from [[SSAC|ICANN’s Security and Stability Advisory Committee (SSAC)]]. They also announced that the name CART would be changed to NetBeacon.<ref>https://netbeacon.org/centralized_abuse_reporting_update/</ref>
+In April 2022, they provided updates and what the tool was going to be: an abuse reporting intermediary, which would improve the experience for people who want to report abuse by providing a single place to report DNS Abuse across the ecosystem in a simple, standardized fashion. A centralized solution had been called for in several important cross-community outputs, including in the recommendations of the [[SSR2|Second Security and Stability Review Team (SSR2)]] and in the [https://itp.cdn.icann.org/en/files/security-and-stability-advisory-committee-ssac-reports/sac-115-en.pdf SAC 115: Report on an Interoperable Approach to Addressing Abuse], a report from [[SSAC|ICANN’s Security and Stability Advisory Committee (SSAC)]]. They also announced that the name CART would be changed to NetBeacon.<ref name="update">[https://netbeacon.org/centralized_abuse_reporting_update/ Update]</ref>
-In June 2022, the Institute, supported by [[PIR|Public Interest Registry (PIR)]] and CleanDNS launched NetBeacon.
+In June 2022, the Institute, supported by [[PIR|Public Interest Registry (PIR)]] and CleanDNS launched NetBeacon Reporter, mostly called only NetBeacon.
-The service is free and was directed at registrars. NetBeacon aimed to make it easier for registrars to receive actionable, high quality reports of phishing, malware, botnets, and spam. It also included customization to individual needs.
+The service is free and was mainly directed at registrars. NetBeacon aimed to make it easier for registrars to receive actionable, high quality reports of phishing, malware, botnets, and spam. It also included customization to individual needs.
 They claimed that their reports were:
@@ Line 26: / Line 26: @@
 ==Function==
-NetBeacon’s core functions are designed to make it easier for registrars to receive and process abuse claims. By providing a single venue, with standardized fields and evidence requirements, NetBeacon aims to improve the quality of reports. Each report includes fields for the domain in question, the type of abuse, a description of abuse, date of abuse, and any additional evidence. The Institute accepts DNS Abuse reports through three core mechanisms. Reports can be submitted via NetBeacon’s website (www.netbeacon.org).
+NetBeacon’s core functions are designed to make it easier for registrars to receive and process abuse claims. By providing a single venue, with standardized fields and evidence requirements, NetBeacon aims to improve the quality of reports. Each report includes fields for the domain in question, the type of abuse, a description of abuse, date of abuse, and any additional evidence. The Institute accepts DNS Abuse reports through three core mechanisms. Reports can be submitted via NetBeacon’s website (www.netbeacon.org).<ref name="service">[https://netbeacon.org/dns-abuse-institute-launches-netbeacon-first-ever-centralized-dns-abuse-reporting-service/ Service]</ref>
+In April 2023 came the second Annual Report from the Institute, which included content about NetBeacon Reporter. It said that the reception of NetBeacon was overwhelmingly positive, with multiple references from the [[GAC|ICANN Governmental Advisory Committee]], and positive press. Although report recipients, primarily registrars, were generally well served by the service, there was also the need more features to help abuse reporters. As such, new features started being developed to:
+* Allow registries to use NetBeacon to distribute reports to their registrar channel
+* Enable the verification of DNS Abuse reporters
+* Enable branded reports with boilerplate text for verified abuse reporters <ref name="annual">[https://netbeacon.org/wp-content/uploads/2024/04/DNSAI-Annual-Report-2022.pdf Annual report]</ref>.
 ==References==
 {{reflist}}
+[[Category:DNS Abuse Responses]]