Skip to main content

ICANN 发布首份通用顶级域安全威胁月度报告


洛杉矶——2019 年 2 月 4 日——互联网名称与数字地址分配机构 (Internet Corporation for Assigned Names and Numbers, ICANN) 于今日发布首份月度报告,针对通用顶级域 (gTLD) 的安全威胁提供统计数据和真知灼见。针对域名滥用活动报告 (Domain Abuse Activity Reporting, DAAR) 系统的这份报告是一系列域名系统安全威胁报告中的第一份,这类报告将按月发布。发布文件还配有一份背景信息,解释 DAAR 系统背后的方法论依据。此前月份的月度报告(从 2018 年 1 月至 2018 年 12 月)将在 2019 年 2 月底前公开发布。

域名滥用活动报告 (DAAR) 旨在响应社群的请求,提供中立、可靠、持久和可复制的数据,用于进行安全威胁和滥用分析工作。DAAR 项目提供了一套系统,采用一套公开发布的、经过社群审查后的方案来研究和报告在顶级域 (TLD) 各个注册管理机构和注册服务机构中的域名注册和安全威胁行为。DAAR 的主要目的在于采集和分析公共域名可信服务提供商监控的各类安全威胁,并将分析结果汇报给 ICANN 社群。这类数据可用于促进实现明智的政策决定流程。

DAAR 目前仅提供 gTLD 注册管理机构的报告。更为详尽的注册服务机构的综合报告则需要获取可识别的域名注册数据。目前,用于搜集和分析必要注册服务机构数据的系统正处在开发过程中。ICANN 的安全、稳定和弹性 (SSR) 团队预计将在未来把注册服务机构的报告纳入进来。在未来的版本中,我们预计还将纳入国家和地区顶级域 (ccTLD) 的注册管理机构。ccTLD 的注册管理机构与信息则由 ccTLD 管理人员自愿提供。


如需访问 DAAR 2019 年 1 月报告,请点击此处 [PDF, 514 Kb];如需查看背景文件,请点击此处 [PDF, 72 KB]。

如需获取更多信息,请点击此处查看 DAAR 的专属页面。


ICANN 的使命在于确保全球互联网的稳定、安全与统一。在互联网上寻找另一个人的信息,您必须在您的电脑或其他设备中键入一个地址——可以是一个名称或是一串数字。这一地址必须是独一无二的,只有这样电脑之间才能互相识别。ICANN 则负责协调这些分布在全球各地的唯一标识符。ICANN 成立于 1998 年,是一家非营利公益型企业,其社群成员遍布全球各地。

More Announcements
Domain Name System
Internationalized Domain Name ,IDN,"IDNs are domain names that include characters used in the local representation of languages that are not written with the twenty-six letters of the basic Latin alphabet ""a-z"". An IDN can contain Latin letters with diacritical marks, as required by many European languages, or may consist of characters from non-Latin scripts such as Arabic or Chinese. Many languages also use other types of digits than the European ""0-9"". The basic Latin alphabet together with the European-Arabic digits are, for the purpose of domain names, termed ""ASCII characters"" (ASCII = American Standard Code for Information Interchange). These are also included in the broader range of ""Unicode characters"" that provides the basis for IDNs. The ""hostname rule"" requires that all domain names of the type under consideration here are stored in the DNS using only the ASCII characters listed above, with the one further addition of the hyphen ""-"". The Unicode form of an IDN therefore requires special encoding before it is entered into the DNS. The following terminology is used when distinguishing between these forms: A domain name consists of a series of ""labels"" (separated by ""dots""). The ASCII form of an IDN label is termed an ""A-label"". All operations defined in the DNS protocol use A-labels exclusively. The Unicode form, which a user expects to be displayed, is termed a ""U-label"". The difference may be illustrated with the Hindi word for ""test"" — परीका — appearing here as a U-label would (in the Devanagari script). A special form of ""ASCII compatible encoding"" (abbreviated ACE) is applied to this to produce the corresponding A-label: xn--11b5bs1di. A domain name that only includes ASCII letters, digits, and hyphens is termed an ""LDH label"". Although the definitions of A-labels and LDH-labels overlap, a name consisting exclusively of LDH labels, such as"""" is not an IDN."