Recent Posts
- Over 6,000 Brexit domains snapped up after mass delete
- Verisign saw MASSIVE query spike during Facebook outage
- .xxx shows up in botnet top-five TLDs for the first time
- ICANN splits $9 million new gTLD ODP into nine tracks
- “We fell short” — Tucows says sorry for Enom downtime
- Crain named ICANN CTO
- Bank spends $800,000 to move from a .bank to the exact-match .com
- Battle for .web “far from over”, says Afilias lawyer
- BMW porn site leads to registrar getting suspended
- CentralNic grows revenue 70% in 2021
- Nightmare downtime weekend for some eNom and Google customers
- XYZ bosses agree to pay $1.5 million to settle Fed’s loan scam claims
- New gTLD pioneer MMX to wind up
- ICANN trying to strangle SSAD in the crib?
- ICANN trying to water down its transparency obligations
- A decade after the last new gTLD round, Marby starts the clock on the next one
- Monte Cahn revealed as third new gTLD buyer
- “National security” cited as registry says you have to ask its CEO if you want to register more than TWO domains
- Whois reform to take four years, cost up to $107 million A YEAR, and may still be pointless
- New year, new server, new functionality
- ICANN is blocking 23 gTLD transfers over blockchain fears
- GoDaddy gets another year to negotiate .xxx contract
- GoDaddy wins .tv contract after Verisign blows off 20-year deal
- EURid’s CEO is retiring
- Omicron domain sells for $5,000
- Hamburg to have second crack at hosting ICANN meeting
- .org back-end deal will come up for re-bid, PIR says as it acquires four new gTLDs
- ICANN budget: staff bloat making a comeback
- ICANN budget: no more new gTLDs before 2028
- ICANN budget: mild optimism amid maturing industry
- ICANN says ODP will speed up new gTLDs in the long run
- Be the next “face” of dot-brands
- CentralNic makes another registrar acquisition
- ICANN takes the lamest swipe at Namecheap et al over blockchain domains
- GoDaddy hack exposed a million customer passwords
- EURid to drop 48,000 Brexit domains in one day
- Google to release another new gTLD next month
- XYZ counting standard sales as “premiums” because its fees are so expensive
- Nominet names Paul Fletcher new CEO
- CentralNic takes over a dead dot-brand
- Delta variant cranks up Aussie domain regs in Q3
- .music goes live, plots 2022 launch
- Three ICANN directors wanted to go to Puerto Rico
- Architect of Nominet boardroom bloodbath and Tucows backer win director seats
- Virgin territory as GoDaddy pushes $30 million porn domain renewals
- ICANN abandons face-to-face plan for Puerto Rico
- ICANN teases prices for private Whois lookups
- ICANN adds another six months to Whois reform roadmap
- ICANN domains revenue ahead of estimates again
- GoDaddy says it turned around Neustar, and .biz numbers seem to confirm that
- If you guessed Facebook’s “Meta” rebrand, you’re probably still a cybersquatter
- Almost 300,000 UK .eu regs disappeared because of Brexit
- Whois rule changes that nobody likes get approved anyway
- ICANN 72 has lowest turnout since records began
- CSC (not that one) scraps its dot-brand
- Verisign boss talks .web launch, timing and pricing
- First UNR gTLD buyer outs itself
- ICANN boss warns over existential “threat” from Russia
- Big dose of reality for gTLD-hungry dot-brand applicants
- UDRP respondent has name hidden on mental health grounds
- Facebook rebrand: did one new gTLD or domainer just hit the jackpot?
- .basketball domain emerges under GoDaddy with fewer hoops
- Donuts shuts down 14 registrars, but it’s “not related to DropZone”
- EURid fends off rivals for .eu contract
- Guy fills exact-match domain with porn, wins UDRP anyway
- Bahrain to relaunch ccTLD globally
- CentralNic says it’s making more money than expected
- Most registrars did NOT “fail” abuse audit, ICANN says
- Surprise eleventh-hour picks for NomCom leadership after ICANN U-turn
- Man with broken shift key sues ICANN and GoDaddy over Bitcoin domain
- Alice’s Registry disappears down the rabbit hole
- Nominet rebels dominate directorship slate
- 10 Years Ago… new gTLDs, ICANN pay, DNS abuse and ethics
- Nominet to purge £50 million from war chest for good causes as new chair outlines strategy
- .club — the whole TLD just went down
- Donuts’ DropZone approved despite competition fears
- I’m not kidding, ICANN is flirting with banning jokes
- DotConnectAfrica slammed for two-faced strategy as it loses .africa appeal
- PIR poaches new CTO from Verisign
- Marby finds his pandemic pessimism
- James Bond domains listed for sale by .bond registry
- Afnic gets renewed for .fr
- Tucows buys UNR’s registry business as Schilling bows out
- Neustar exec fingered in Trump’s Russian “collusion” probe
- Donuts’ drop-catching service not anti-competitive, ICANN says
- Almost no security researchers asking for Whois records – Tucows
- Price of Whois lookups could rise as ICANN delays reform work
- Cloudflare goes all-in with at-cost domains
- Hold on to your stats! ShortDot gets two gTLDs approved in China
- CentralNic spends $6.5 million on traffic network
- Nothing but losses ahead for MMX
- Afilias appeals .web ruling, Verisign responds with “rigging” claims
- ICANN won’t vote on new gTLDs for another year
- ICANN now has half a billion bucks in the bank after huge pandemic profits
- Dead dot-brands top 100. Here’s the list and breakdown
- I had a stroke
- Volkswagen drives IDN dot-brand off a cliff
- CTO Conrad quits ICANN
- France gets more domain takedown powers
- MMX to return GoDaddy cash to investors
- Could registrars get sued under new Texas abortion law?
- DropCatch raises antitrust concerns about Donuts’ Dropzone proposal
- ICANN could get the ball rolling on next new gTLD round this weekend
- Domain industry SHRINKS again… except of course it doesn’t
- Toilet-maker’s dot-brand gets flushed
- Latest geo-gTLD goes to sunrise
- NameSilo says it’s growing too fast to be acquired
- Most registrars fail ICANN abuse audit
- More privacy headaches? UK to withdraw from GDPR
- Bizarre redactions in Pirate Bay founder’s ICANN registrar ban
- ICANN cuts the weekend from next public meeting
- DotKids signs very weird new gTLD contract
- Dropping domains might get more expensive at Donuts
- .sucks registry probably “connected” to mass cybersquatter, panel rules
- As Kabul falls, Whois could present a danger to ordinary Afghans
- Second-level .au names coming next March with tight deadline
- ICANN director picks for 2021 revealed
- Over 2,000 attendees for ICANN 73?
- .za back-end deal up for grabs
- ICANN spills beans on Marby’s million-dollar payday
- ICANN 73 will be “virtual first”
- Registrars to get more domain takedown powers
- Irish domain sales closely track pandemic restrictions
- MMX drops two registrars
- “Crimes against humanity” claims against Afilias
Architelos offers entry-level NameSentry
Kevin Murphy,
November 24, 2013, 11:45:58 (UTC),
Domain Services
New gTLD software provider Architelos has released a cheaper version of its flagship NameSentry security compliance tool.
NameSentry Lite strips out the automated workflow and mitigation components found in the original, leaving the core threat reports and statistics intact.
It’s designed for smaller TLDs that don’t expect to see a lot of malware or phishing in their zones and it’s priced starting at $139 a month for a TLD with under 5,000 domains under management.
That’s about $100 cheaper than the standard NameSentry, which is geared more towards mitigation and has monthly charges ranging from $249 to $3,999, depending on zone size.
Boutique gTLDs and large portfolio registries such as DotKiwi and Donuts are early customers of the more-expensive version.
Is Architelos the only company providing this kind of tool? I need something like this for my TLD, but it would be nice to see some other options.
I’m not aware of anyone else doing the workflow stuff, but DI PRO has TLD Health Check if it’s metrics you’re looking for.
Artemis / NCC Group Safe TLD service seems to be targeted to the new RA specs as well, but I couldn’t find something online about it.
Netcraft and Team Cymru also have commercial offerings that combined can fulfill the requirements, but combining can also be done on cheaper or free alternatives to build a DIY solution.
Rubens et al.
Netcraft is a great service and you can find more info on their anti-phishing service here http://www.netcraft.com/anti-phishing/
To be clear, NameSentry is different as it encompasses a wider range of abuse types (not just phishing, but also malware, botnets and even spam).
The NameSentry portal option includes automated mitigation workflows which can be customized to the abuse policies and procedures of any given gTLD or ccTLD. Lastly, our prices are posted on our website, as are the terms. A TLD can even choose a month to month option (so no long term contract or financial commitment).
So to compare – a DIY option would involve not only buying various datafeeds, (or standalone monitoring and analysis services for say phishing) for different abuse types, but also aggregating and normalizing the info, and then either doing notification and mitigation steps manually (so personnel in ops/customer service, or abuse analysts) or building and maintaining the system to automate mitigation steps and then document and archive an audit record. In terms of core competencies (and putting the issue of upfront and continued commitment of capital and HR resources aside) not every registry or registrar has the core competency to do this, and do it well enough to stake their contractual compliance on it.
So it is a question of what do you want to focus on and what should be outsourced.
Hope that helps
RA specs on this do not require specific accuracy levels, so contractual compliance is not that much of a risk in this regard. I can see reasons for either DIY or outsourcing considering the whole picture, including end-user perception and corporate social responsibility, but they are all carrots. No actual sticks here.
Thanks for this info. I’m running a single registrant, closed TLD and not expecting too many domains, so I just need whatever is considered compliant.
http://www.selectrealsecurity.com/public-block-lists and http://www.surbl.org/lists have lists of lists and getting thru those would already qualify as going thru reported threats. It needs to go somewhat beyond what is reported directly to the registry, but there is no actual service level or accuracy target on the agreement, so you don’t need to know all threats or try knowing an specified % of those.
The text in the agreement is very non-specific as can be seen below.
FYI
I have copied the specific Spec in the Registry Agreement below.
Specification 11 3.b:. “Registry Operator will periodically conduct a technical analysis to assess whether domains in the TLD are being used to perpetrate security threats, such as pharming, phishing, malware, and botnets. Registry Operator will maintain statistical reports on the number of security threats identified and the actions taken as a result of the periodic security checks. Registry Operator will maintain these reports for the term of the Agreement unless a shorter period is required by law or approved by ICANN, and will provide them to ICANN upon request.”