Working Group 4

decisioncrunchNetworking and Communications

Nov 20, 2013 (3 years and 8 months ago)

86 views

FCC CSRIC III


Working Group 4


Network Security Best Practices

Rodney Joffe

SVP and Senior Technologist, Neustar, Inc.

rodney.joffe@neustar.biz

The Problem

1

© Neustar Inc. / Proprietary and Confidential

Forging of DNS Answers and False Route
Announcements allow fraudulent transactions to
occur:




Phishing


Pharming


DNS Cache Poisoning


Traffic Hijacking


The Solution

2

© Neustar Inc. / Proprietary and Confidential

DNSSEC
-

Authentication of DNS answers WG5






BGPSEC
-

Authentication of routing announcements WG6


Both critical to solving significant issues that exist in

the
wild


Challenge:




Until they are fully implemented, the problem exists



WG4 Objective

3

© Neustar Inc. / Proprietary and Confidential



Identify interim solutions for providers to
implement that will provide some level of
effective security



Dual Parallel Track



The Solution

4

© Neustar Inc. / Proprietary and Confidential

Phase 1, March 2012,


Identify stakeholders


detail problem space and challenges for all stakeholders


E.G. (Service Providers, application developers


end users,
Etc
)

Phase 2, September 2012


Identify potential solutions

Phase 3, December 2012


Draft Final Report on Recommendations for Best Practices,
seek Committee input and comment


Phase 4, March 2012 Final report


Thank You

Rodney Joffe

rodney.joffe@neustar.biz

(202) 533
-
2900

5

© Neustar Inc. / Proprietary and Confidential