ICANN64 | Day 5 – DAAR Update

Exclusive Coverage by Tarun Taunk, Chief Editor ITVoice

Domain Abuse Activity Reporting (DAAR) is a platform for studying domain name registration and reporting abuse behaviour across the top-level domain (TLD) registries and registrars.

Dr Samaneh Tajalizadehkhoob who is the Lead Security, Stability & Resiliency Specialist in ICANN Office of Chief Technology Officer (OCTO) gave the presentation on DAAR. He first introduced himself and told the participants what has he worked on and what’s his preferred working topics.

Then he asked a simple question to the audience why abuse is not being monitored? Further, explained the need for a DAAR system. DAAR isn’t the first abuse reporting system but it’s better than all of the previous systems developed for reporting abuse.

Data sources for DAAR system include:

I. DNS zone data
II. WHOIS data
III. Open source or commercial abuse threat (RBL) data*

DAAR collects domain data for

  1. Phishing
  2. Malware
  3. Spam
  4. Botnet Command & Control

Furthermore, he cleared the doubts of all attendees and then asked for feedback on how the DAAR system can be improved.

Session Leader: John Crain

Staff Facilitator: Cathy Petersen