Recent Posts
- Nominet may owe its members millions, top lawyer says
- ICANN approves ccTLD-killer policy
- .br tops five million names
- ICANN returning to Puerto Rico
- Ukrainians urged to “de-Russify” their domains
- .au passes four million names as 2LDs surge
- .com and .net are the drag factor on domain industry growth
- Nominet gets new CFO
- It’s ICANN versus the blockchain in Kuala Lumpur
- ICANN to “stand up” to Russia at the ITU
- Surprise new chair for ICANN announced
- PIR will launch .giving next month with unusual landrush rules
- Last-minute bombshell in Nominet election — it may be ILLEGAL
- ICANN finished year $24 million ahead but loses $29 million on the markets
- CentralNic picks up marketing firm for up to $19 million
- Whois Disclosure System to cost up to $3.3 million, run for one year
- ICANN director’s registry CEO job up for grabs
- MarkMonitor to join Newfold in $300 million deal
- New ICANN contracts chart the death throes of Whois
- Kiwi Farms domain lands at Epik
- CentralNic passes on abandoned dot-brand
- Cloudflare blocks anti-trans site for “emergency threat to human life”
- GoCompare makes a big bet on a new gTLD
- Epik replaces Monster with younger clone
- Alt-root .eth is getting very big, very fast
- ZADNA under fire over “heavy-handed” new rules
- Identity Digital to release 5,000 reserved names
- Millions of .cn domains disappear
- ICANN throws out prostitution complaint
- CentralNic revenue almost doubles
- Drug dealer sells blunt.com for $165,000
- Did a sexy Russian spy nerf the o.com auction?
- Cancelled misogynist Andrew Tate moves domain to (drumroll)… Epik!
- Google reveals launch dates for two new gTLDs
- Ducos a shoo-in for GNSO Council chair
- NameSilo reports revenue up 33%
- Adoption light with four weeks to .au’s 2LD deadline
- It’s hustings season at Nominet
- ICANN rushes mystery directors onto board in apparent bylaws breach
- ICANN staffing up for next new gTLD round
- Radix premium revenue hits $3.8 million in first half
- GoDaddy shutters Twitter accounts after MMX deal
- nickel.com sells for a hell of a lot more than a nickel
- German motoring club dot-brand crashes out
- Verisign to crack down on Chinese domains
- Whois Disclosure System likely over a year away
- Belgium slashes its ICANN funding in “mission creep” protest
- Diversity takes a hit as NomCom replaces two ICANN directors with newcomers
- RDNH loser files second appeal
- Group crowdfunding crypto to apply to ICANN for blockchain gTLD
- Buyer “phasing out” domain “bought for $2.2 million”
- ShortDot drops premium fees on millions of domains
- Tucows’ domains business stagnates again in Q2
- Malaysia relaxes travel restrictions ahead of ICANN 75
- GMO to sell Unstoppable’s crypto domains
- More rules, but cozier ICANN 75 expected
- India offers dollar regs to celebrate independence
- auDA updates on 2LD .au sales
- At $15 million, nfts.com becomes second-biggest domain sale ever
- Now Nokia scraps a dot-brand
- InternetNZ appoints new CEO
- Looks like XYZ bought another gTLD
- Bugatti dumps dot-brand under new owners
- In pictures: from tuk-tuks to cheese wheels, every ICANN national stereotype 2016-2022
- Did ICANN pay for most meeting attendees to show up in The Hague?
- Verisign announces ANOTHER price increase as regs slide
- CentralNic signs Greenland deal
- Early “dot-brand” adopter wants to scrap its gTLD
- Verisign to mandate 2FA for .com registrars
- Unstoppable valued at over $1 billion after huge new investment
- ICANN staffer to referee closed generics fight
- Covid vaccine maker takes RDNH loss to ICANN board
- Guy asks ICANN to shut down prostitution site
- No smoking! Rules laid down as .kids reveals launch dates
- Nominet sold security unit for a dollar after blowing $23.5 million
- CentralNic revenue almost doubles
- Feds warn of Covid risk from “dark” Whois
- ICANN names NomCom chairs
- ICANN’s top brass get pay raises
- New gTLD prep work delayed until December
- New gTLDs WILL be delayed by Whois work
- ICANN backtracks on legal waiver for ICANN 75
- Community tells ICANN to walk and chew gum at the same time
- Five things I learned from UK prime minister candidates’ domain names
- Universal unacceptance? ICANN lets XYZ dump languages from UNR gTLDs
- ICANN terminates these three deadbeat registrars
- .xyz kicks France out of the top 10 TLDs — Verisign
- ICANN puts blockchain on the agenda for good
- New gTLD in trouble as largest registrar gets suspended
- ICANN picks comms firm for new gTLDs outreach
- Donuts goes with bland, forgettable, for new company name [rant]
- Broker says it will sue after DNS abuse sting operation
- Unstoppable targets another city gTLD with free domains
- Dynadot takes down its own web site after apparent breach
- The slow crawl to closed generics at ICANN 74
- Controversial Chinese firm among two newly revealed UNR gTLD buyers
- Over 900 people show up for ICANN 74
- Verisign and Afilias spar over .web delays
- Hamburg selected for next year’s ICANN AGM
- Amazon governments not playing ball with Amazon’s .amazon
- High fives, or elbows only? ICANN 74 intros traffic light system for socializing
- NetBeacon goes live for DNS abuse reporting
- As registration closes, many ICANN 74 sessions at bursting point
- Belarusian domains to change hands
- As GoDaddy shutters URL shortener, could x.co come back on the market?
- Nominet opens directorship nominations
- GoDaddy acquires two education-themed gTLDs
- Crypto domains: a feminist issue?
- Turkey name change could free up gTLD string
- Porkbun offering free .gay domains for Pride month
- DNSAI to name most-abused registries, registrars
- NameSilo profitable in Q1
- Meds regulator won’t say why it gets domains suspended
- Porkbun hits a million domains
- Porn names to feature at NamesCon Global
- Pizza company suffers from penisland syndrome
- Seat reservations and waiting lists on the cards for ICANN 74
- New gTLDs or Whois access? What’s more important?
- Domain sales down even as revenue booms at CentralNic
- ICANN kicks the can on .web yet again
- ALAC’s brutal takedown of that “aggressive” ICANN 74 coronavirus waiver
- .link gTLD buyer revealed
- After 10 months, ICANN board “promptly” publishes its own minutes
- China yanks Daily Stormer domain after Buffalo mass shooting
- Fewer domain companies closing down than expected
Architelos offers entry-level NameSentry
Kevin Murphy,
November 24, 2013, 11:45:58 (UTC),
Domain Services
New gTLD software provider Architelos has released a cheaper version of its flagship NameSentry security compliance tool.
NameSentry Lite strips out the automated workflow and mitigation components found in the original, leaving the core threat reports and statistics intact.
It’s designed for smaller TLDs that don’t expect to see a lot of malware or phishing in their zones and it’s priced starting at $139 a month for a TLD with under 5,000 domains under management.
That’s about $100 cheaper than the standard NameSentry, which is geared more towards mitigation and has monthly charges ranging from $249 to $3,999, depending on zone size.
Boutique gTLDs and large portfolio registries such as DotKiwi and Donuts are early customers of the more-expensive version.
Is Architelos the only company providing this kind of tool? I need something like this for my TLD, but it would be nice to see some other options.
I’m not aware of anyone else doing the workflow stuff, but DI PRO has TLD Health Check if it’s metrics you’re looking for.
Artemis / NCC Group Safe TLD service seems to be targeted to the new RA specs as well, but I couldn’t find something online about it.
Netcraft and Team Cymru also have commercial offerings that combined can fulfill the requirements, but combining can also be done on cheaper or free alternatives to build a DIY solution.
Rubens et al.
Netcraft is a great service and you can find more info on their anti-phishing service here http://www.netcraft.com/anti-phishing/
To be clear, NameSentry is different as it encompasses a wider range of abuse types (not just phishing, but also malware, botnets and even spam).
The NameSentry portal option includes automated mitigation workflows which can be customized to the abuse policies and procedures of any given gTLD or ccTLD. Lastly, our prices are posted on our website, as are the terms. A TLD can even choose a month to month option (so no long term contract or financial commitment).
So to compare – a DIY option would involve not only buying various datafeeds, (or standalone monitoring and analysis services for say phishing) for different abuse types, but also aggregating and normalizing the info, and then either doing notification and mitigation steps manually (so personnel in ops/customer service, or abuse analysts) or building and maintaining the system to automate mitigation steps and then document and archive an audit record. In terms of core competencies (and putting the issue of upfront and continued commitment of capital and HR resources aside) not every registry or registrar has the core competency to do this, and do it well enough to stake their contractual compliance on it.
So it is a question of what do you want to focus on and what should be outsourced.
Hope that helps
RA specs on this do not require specific accuracy levels, so contractual compliance is not that much of a risk in this regard. I can see reasons for either DIY or outsourcing considering the whole picture, including end-user perception and corporate social responsibility, but they are all carrots. No actual sticks here.
Thanks for this info. I’m running a single registrant, closed TLD and not expecting too many domains, so I just need whatever is considered compliant.
http://www.selectrealsecurity.com/public-block-lists and http://www.surbl.org/lists have lists of lists and getting thru those would already qualify as going thru reported threats. It needs to go somewhat beyond what is reported directly to the registry, but there is no actual service level or accuracy target on the agreement, so you don’t need to know all threats or try knowing an specified % of those.
The text in the agreement is very non-specific as can be seen below.
FYI
I have copied the specific Spec in the Registry Agreement below.
Specification 11 3.b:. “Registry Operator will periodically conduct a technical analysis to assess whether domains in the TLD are being used to perpetrate security threats, such as pharming, phishing, malware, and botnets. Registry Operator will maintain statistical reports on the number of security threats identified and the actions taken as a result of the periodic security checks. Registry Operator will maintain these reports for the term of the Agreement unless a shorter period is required by law or approved by ICANN, and will provide them to ICANN upon request.”