This blog and the associated report aim to provide an overview of DNS Abuse-related issues raised by the Governmental Advisory Committee (GAC), a key part of ICANN’s multistakeholder model. We summarize relevant community activity that addresses these areas and highlight remaining gaps where further work is needed. This report is an updated version of our first publication.
From 2016 through June 2024, the GAC referenced four main categories of activity related to DNS Abuse: (1) new contractual obligations, (2) enhanced reporting, (3) management of compromised and malicious registrations, and (4) measurement and clarification of standards. These issues have also been raised in ICANN forums such as the Security and Stability Advisory Committee (SSAC) and the Generic Names Supporting Organization (GNSO).
Community responses include the development of tools, educational resources, and initiatives that increase understanding of DNS Abuse and improve mitigation practices. Recently, amendments to DNS Abuse contracts were adopted with GAC support, introducing enforceable obligations for registrars and registries to address abuse. As implementation continues, raising awareness of available tools to assist with these requirements will benefit the community.
Efforts to streamline DNS Abuse reporting have progressed with tools like NetBeacon Reporter and the Abuse Contact IDentifier (ACID) Tool, which provide structured, accessible ways to submit and manage abuse reports. Nevertheless, more work is needed to ensure reports are actionable and well-evidenced, and to increase awareness of these tools.
Projects like COMAR and NetBeacon MAP help distinguish between compromised and maliciously registered domains, an essential step for tailored mitigation strategies. Addressing compromised domains requires broader ecosystem collaboration and public policy engagement beyond ICANN alone.
Measurement initiatives, including ICANN’s DAAR project and NetBeacon MAP, offer valuable insights into abuse trends and mitigation responses. As the DNS community refines these tools, improving data accuracy and focusing analysis on specific areas—like domain aging and incentive models—will advance abuse mitigation.
This blog and the associated report were prepared by the NetBeacon Institute. Founded in 2021 and rebranded in 2024, the Institute fosters collaboration, develops best practices, and provides open solutions at no cost. The Institute remains committed to advancing DNS Abuse initiatives through its primary tools:
- NetBeacon Reporter: This centralized abuse reporting tool standardizes and simplifies DNS Abuse reporting, removing barriers related to technical knowledge and ensuring that reports are clear and accessible for registrars and registries.
- NetBeacon Measurement and Analytics Platform (MAP): MAP tracks DNS Abuse trends and provides insights into mitigation times and registration types. MAP dashboards, available at no cost, support registrars and registries in understanding and addressing DNS Abuse in their domains.
The Institute will continue to work alongside the DNS community and ICANN to support a safer, more secure Internet. We look forward to ICANN81 in Istanbul, and encourage interested parties to reach out.
