Today, DHS released a risk management strategy for the naming system used for technology and services connected to the Internet.  Referred to as Domain Name Resolution Services (DNS), this system translates an IP address - the physical location of a computer or online service – into an e-mail address or URL that is easy to remember, like http://www.dhs.gov/. Such operations are  critical to all online activities across the globe and make the Internet work in a user-friendly way.

This risk management strategy was developed in partnership with the Information Technology Sector Coordinating Council (IT-SCC), which is composed of key members of the IT industry, and it was designed with a wide range of stakeholders in mind, including:

• Standards-making organizations that establish and promote standards for Internet infrastructure services, either directly or indirectly;
• Government agencies that are large scale users of DNS
• Companies that are involved in operating DNS services or providing Internet security services
• Government and private organizations that develop and establish policies that govern the Internet

The Strategy describes how the IT sector and DNS communities can address risks to enhance the resiliency and safety of the Internet. It also offers several risk mitigation activities such as:

• Promoting education, training, outreach, and awareness that focuses on data file misuse (both intentional and unintentional) as well as international engagement to develop and disseminate best practices for secure and trusted naming and grouping of domain names;
• Enhancing information sharing and relationships through global forums that address issues impacting the Internet from technical and policy perspectives; and
• Building enhanced capabilities and programs to protect against large-scale attacks including the implementation of continuous real-time monitoring of production equipment by network operation centers to anticipate and protect DNS infrastructure from cyber attacks

The security of our national cyberspace is vital to our national and economic security. The strategy released today will help us protect this incredible engine of prosperity and innovation from new and evolving threats while ensuring that our cyber networks can bounce back quickly if an attack or disaster does strike.

Download the risk management strategy.