Академический Документы
Профессиональный Документы
Культура Документы
CYBER
SECURITY
& THREATS
tips and insights to protect your
business and stay safe online
HOW DO YOU
SPELL DNSSEC?
understanding how the
security extension protects
the internet10
DOMAIN NAME
HIJACKING
Prevention is better
than cure6
ONLINE SCAMS
How to recognise them
and what to do8
@AusRegistry_au
ausregistry.com.au
Publisher: AusRegistry
Editor in Chief: George Pongas
Managing Editor: Maggie Whitnall
Contributors: Alison Coffa, David Goldstein, Adrian Kinderis, Michael Korjen,
Jo Lim, Bruce Matthews, George Pongas, Maggie Whitnall
Data Analysis: Penelope Green
Account Management and Circulation: Courtney Fabian
Creative Director: Michelle OReilly
____________
Advertising Sales: behindthedot@ausregistry.com.au
Contents
FEATURE
DEPARTMENTS
UNDER THE MICROSCOPE ............................. 1
An overview of the number of .au domains currently
under management (open 2LDs), monthly registrations,
renewals by age of domain and APTLD statistics.
CHANNEL TALK.............................................. 13
Current activities relating to the .au retail channel.
This quarter features the .au Registrar Executive Day, a
targeted, practical and results-focused
event for .au executives.
GLOSSARY..................................................... 16
Abbreviations and definitions of DNS and Internet
related terms.
3,000,766
Foreword
Welcome to the sixth edition of AusRegistrys industry report,
Behind the Dot: State of the .au Domain.
Trust is an integral aspect of the .au namespace. Our .au survey has consistently
shown that Australian Internet users are more likely to trust a website that ends
in .au and that they associate .au domain names with Australian entities.
Maintaining this trust is of vital importance to us at AusRegistry; not only to ensure
the continued growth of the .au namespace but also to fulfil our commitment to
Australias Internet community and establish .au as a global leader.
It is for this reason weve dedicated this edition of Behind the Dot to the
important theme of security.
A significant tool for protecting our countrys online ecosystem has been the
implementation of DNS Security Extensions, otherwise known as DNSSEC. In
this edition, weve examined DNSSEC in detail to outline how it works and who
should consider implementing it.
Online security is not however, an issue solely for Registries. Major brands and
individuals alike can and should take essential steps to ensure their data, assets
and reputations are protected from online attacks. This edition of Behind the
Dot contains a close look at some of the major global brands that have been
threatened by digital hijackers; as well as some of the risks to individual domain
name registrants and some tactics for addressing them.
Weve also called upon some of Australias leading security experts for their
tips and insights on staying safe online. CERT Australia Technical Director,
Dr Jason Smith gives us his views on cyber security issues affecting critical
infrastructure, while Bruce Matthews, Cyber Security Manager at the Australian
Communications and Media Authority (ACMA) provides an overview of the
Australian Internet Security Initiative. Finally, Robert Schischka of nic.at, the
Registry for the Austrian country code Top-Level Domain (ccTLD), offers an
international perspective on DNSSEC.
In addition, were delighted to have the contribution of a number of our .au
Registrars in this edition, to give their predictions for the year ahead in .au and
the domain name industry abroad. We look forward to continuing this inclusion
of Registrars in future editions.
Finally, February also marks the release of AusRegistrys newly refurbished
website. The website will provide a smoother, intuitive source of information on
the .au namespace for the Australian Internet community at large. Please visit the
website (www.ausregistry.com.au) and let us know what you think.
It is my pleasure to present the sixth edition of Behind the Dot: State of the .au
Domain. As always, we welcome your feedback and input on the magazine and
thank you for reading.
Adrian Kinderis
CEO, AusRegistry
100%
3,000,000
30%
2,500,000
25%
2,000,000
20%
1,500,000
15%
1,000,000
10%
500,000
5%
0%
2007
2008
2009
2010
2011
2012
2013
2014
20%
Dec
2013
Jan 2
014
Feb
2014
Mar
2014
Apr
2014
May
2014
Jun
2014
Jul 2
014
Aug
2014
Sep
2014
Oct
2014
Nov
2014
Dec
2014
Jan 2
015
Feb
2015
Mar
2015
Apr
2015
May
2015
Jun
2015
Jul 2
015
Aug
2015
Sep
2015
Oct
2015
Nov
2015
0%
2015
First renewal
Second renewal
Subsequent renewal
Overall
TDUM
18,000,000
160
16,000,000
140
14,000,000
120
12,000,000
100
10,000,000
80
8,000,000
60
6,000,000
40
4,000,000
20
2,000,000
0
.au
.cn*
.id
TDUM
.kr*
.nz
.qa
.sg* .my
.hk
60,000
50,000
40,000
30,000
20,000
10,000
20
1
De
c
01
5
v2
01
No
01
5
t2
Oc
01
5
t2
Sep
g2
org.au
Au
15
20
1
Jul
01
5
20
net.au
Jun
y2
Ma
r2
01
Ap
r2
01
20
1
01
5
com.au
Ma
Feb
Jan
2
c2
01
4
0
De
Domains
.jp
2006
40%
Domains
2005
60%
35%
Growth Rate
Domains
3,500,000
Renewal Rate
80%
other.au
Outgoing links
An outgoing (or external) link is a hyperlink that points to a
destination outside the website. The number of outgoing links
refers to the number of unique external links found on the
website during indexation. If a link to www.example.com.au
is found seven times on three different pages, it will be counted
as one unique external link.
Nearly 60% of .au websites have between 2-10 outgoing links.
Incoming links
Outgoing links
11.5%
11.6%
17.5%
59.4%
Incoming links
7.9%
12.5%
4.6%
N/A
2 - 10 outgoing links
Chart 2: Outgoing links. Total 1,878,767 .au domains
(open 2LDs returning a Available or Redirect response)
Conclusion
11.5%
63.6%
No links found
N/A
2 - 10 incoming links
10k
5k
Jan
9.
Jan
Jan
6.
ec
.D
Tinba
3.
ec
ec
.D
31
28
.D
ec
Marcher
25
ec
.D
.D
22
ec
Zeus
19
ec
ec
.D
16
.D
13
.D
10
De
7.
De
ov
De
Bedep
4.
1.
.N
ov
.N
ov
ZeroAccess
28
25
ov
.N
.N
ov
ov
ov
.N
22
19
16
.N
.N
Conficker
13
v
No
10
7.
No
4.
No
.O
ct
29
XcodeGhost
1.
.O
ct
23
.O
ct
20
.O
ct
17
14
.O
ct
0k
Other
Source: Australian Communications and Media Authority. Commonwealth of Australia (Australian Communications and Media Authority) 2014.
ave you ever wondered how vulnerable your internetfacing servicessuch as websites, routers and network
accessible storage devicesare to being exploited or
infiltrated? Or how many vulnerable Australian internet
services there currently are? This article discusses an initiative
run by the Australian Communications and Media Authority
(ACMA) that processes data every minute of every day to
report this information to Australian internet providers.
acma.gov.au/aisi
What we do online:
77%
75%
73%
Pay bills
Shop
of us give personal o
r
financial info o
nline
Bank
88%
63%
Share details on
social networks
10%
18%
Nearly one-fifth of Aussie
internet users dont have
sufficient protective software on
their home computer
8%
1.46 million
users have
none at all
1.
Install security
software and
update it regularly
2.
Turn on automatic
updates so all your
software receives
3.
The ACMA operates the Australian Internet Security Initiative (AISI) to help alert
internet service p
roviders about malware and viruses on their customers computers.
Source: ACMA, Malware and harmful softwareConsumer views on software threats and use of protections, September 2013.
Commonwealth of Australia (Australian Communications and Media Authority) 2014.
*Adult Australians who use the internet for personal purposes.
Set strong p
asswords
Recent cases
While any unsecured domain name can be a victim of domain
name hijacking, hackers have predominantly focused their
attacks on high profile major brands.
Attacks in the United States, Ireland, Malaysia, the
Netherlands and other countries around the world have
affected the websites of the worlds largest brands.
Peace of mind
In many ways, placing an emphasis on security is comparable
to the notion of purchasing travel insurance when holidaying
overseas. You may never have a need for it, but you dont
want to be caught without it.
In a similar manner, the cost and effort of applying enhanced
security measures to your domain name pales in comparison
to the financial and reputational costs involved in falling victim
to a hijacking incident.
The important rule of thumb in situations like this is: if
you cant afford enhanced security, then you cant afford
to be online.
What is DNSSEC?
Channel talk
What are your market predictions for the .au namespace in 2016?
Rod Keys Managing Director,
Information Brokers Pty Ltd
My market prediction for the .au
namespace in 2016 includes the
opening up of direct access to .au
namespaces alongside com.au domains,
and a move away from the mandatory
two year registrations to more flexible
renewal periods.
While only second level domains are
currently available to users, adding the
direct .au option will make it easier to
register a name and, in my opinion, will
pave the way for more unique, modern
looking and memorable domain names
in the process.
Meanwhile, a variable licence period for
one to five years, allowing renewals at
any time, would bring the namespace
closer in line with other prominent
Top-Level Domains.
It will afford Australian businesses,
organisations and charities both a
long-term option for future peace of
mind and an opportunity to register
a domain name for one-off events or
other short-term requirements.
700
90%
80%
600
70%
500
60%
400
50%
40%
300
30%
200
20%
100
10%
com.au
5
201
Nov
201
5
201
5
Oct
Sep
015
201
Aug
201
5
Jul 2
id.au
Jun
201
201
5
May
Apr
201
5
015
net.au
Mar
Feb
2
4
Jan
201
5
201
4
201
Dec
4
201
014
asn.au
Nov
Oct
4
201
014
Sep
2
Aug
4
201
org.au
Jul 2
Jun
201
4
4
201
201
4
May
Apr
Mar
014
Feb
201
4
Jan
2
201
Dec
Nov
201
3
0%
Reinstatement rate
Glossary
Abbreviations
2LD
Second Level Domain
ACMA
Australian Communications and Media Authority
.auLOCKDOWN
AISI
auDA
AusRegistry
ANZIAs
The Registry Operator for the open 2LDs (com.au, net.au, org.au, asn.
au, and id.au); the community geographic 2LDs (act.au, nsw.au, nt.au,
qld.au, sa.au, tas.au, vic.au and wa.au); and two closed 2LDs
(edu.au and gov.au).
auIGF
Australian Internet Governance Forum
ccTLD
DDoS
DDoS Attack
CERT Australia
DNS
Domain Name System
DNSSEC
Domain Name System Security Extensions
gTLD
Domain Name/Domain
IANA
Internet Assigned Numbers Authority
ICANN
Internet Corporation for Assigned Names and Numbers
IDN
TLD
Top-Level Domain
Definitions
Data References
Domain numbers in the APTLD region:
China - .cn
www1.cnnic.cn/IS/CNym/CNymtjxxcx
Indonesia - .id
https://www.pandi.id/content/statistik
Japan - .jp
jprs.co.jp/en/stat
Korea - .kr
isis.kisa.or.kr/eng
Qatar - .qa
domains.qa/en
Singapore - .sg
www.nic.net.sg/page/registration-statistics
Malaysia - .my
www.mynic.my/en/statistics.php
The global DNS administrator, formed in 1998, is a non-profit publicbenefit corporation with global participants dedicated to keeping the
Internet secure, stable and interoperable. It promotes competition and
develops policy on the Internets unique identifiers.
Registrant
An entity or individual that holds a domain name licence.
Registrar
An entity that registers domain names for Registrants and in the case of
the .au ccTLD, is accredited by auDA.
Registry
The registry comprises of a database of domain names registered in
each 2LD and a public WHOIS service for looking up the identity of the
registrant of a domain name.
Reseller
An entity appointed by accredited Registrars to increase the retail
channel of .au domain names.
Disclaimer
This report has been produced by AusRegistry and
is only for the information of the particular person
to whom it is provided (the Recipient). This report is
subject to copyright and may contain privileged and/
or confidential information. As such, this report (or
any part of it) may not be reproduced, distributed
or published without the prior written consent of
AusRegistry.
This report has been prepared and presented in good
faith based on AusRegistrys own information and
sources which are believed to be reliable. AusRegistry
assume no responsibility for the accuracy, reliability
or completeness of the information contained in this
report (except to the extent that liability under statute
cannot be excluded).
Zone File
Zone
ausregistry.com.au