Using Whois Based Geolocation and Google Maps API for Support Cybercrime Investigations
Total Page:16
File Type:pdf, Size:1020Kb
Load more
Recommended publications
-
The Regional Internet Registry (RIR) System
The Regional Internet Registry (RIR) System Hisham Ibrahim | Turkey | August 2017 1 Regional Internet Registry (RIR) The Regional Internet Registry (RIR) and bottom-up community driven number resource management model 2 Hisham Ibrahim | Turkey | August 2017 Regional Internet Registry (RIR) The Regional Internet Registry (RIR) and bottom-up community driven number resource management model 3 Hisham Ibrahim | Turkey | August 2017 Identification Sender and Receiver Addresses Internet Number Resources 11000000000000000000001000110101 192.0.2.53 IP version 4 (IPv4) • Initially deployed: 1 January 1983. • IPv4 addresses are 32-bit numbers. (4.2 Billion) 11000000000000000000001000110100 • Still the most commonly used 192.0.2.52 version. Hisham Ibrahim | Turkey | August 2017 5 Internet Number Resources 192.0.2.52 ? 192.0.2.53 192.0.2.52 Hisham Ibrahim | Turkey | August 2017 6 Internet Number Resource Management John Postal used to manually distribute IP addresses Hisham Ibrahim | Turkey | August 2017 7 Internet Number Resource Management IANA RIR RIR RIR RIR RIR End Site ISP Hisham Ibrahim | Turkey | August 2017 8 Regional Internet Registry (RIR) The Regional Internet Registry (RIR) and bottom-up community driven number resource management model Hisham Ibrahim | Turkey | August 2017 9 RIPE Policy Development The RIPE community develops and sets policies through a long established, open, bottom-up process of discussion and consensus-based decision making. Where does it happen? Policy development happens at RIPE Meetings (where RIPE Working Groups meet) and the RIPE Working Group mailing lists. 10 Hisham Ibrahim | Turkey | August 2017 RIPE Policy Development To promote and support the inclusive and open process: • Everyone is welcome and encouraged to take part in the workings of RIPE by attending RIPE Meetings and participating on RIPE Working Group mailing lists; • Mailing lists are publicly archived; • The minutes of working group sessions at RIPE Meetings are publicly archived; • All policies are formally documented and publicly available. -
BGP Interconnection in the Region of Latin America and the Caribbean
BGP Interconnection in the Region of Latin America and the Caribbean Author: Augusto Mathurín Coordination/Revision: Guillermo Cicileo Edition and Design: Maria Gayo, Carolina Badano, Martín Mañana Project: Strengthening Regional Internet Infrastructure Department: Internet Infrastructure R&D Contents Contents 2 Introduction 4 Methodology 4 Stated Objectives 4 Data Sources 4 Data Processing 6 Generated Datasets 8 Data by Country 10 Argentina 10 Aruba 12 Bolivia 13 Brazil 15 Belize 17 Chile 19 Colombia 21 Costa Rica 23 Cuba 25 Dominican Republic 27 Ecuador 29 French Guiana 31 Guatemala 32 Guyana 34 Honduras 36 Haiti 38 Mexico 40 Nicaragua 42 Panama 44 2 Peru 46 Paraguay 48 Suriname 50 El Salvador 52 Trinidad and Tobago 54 Uruguay 56 Venezuela 58 Regional Data Analysis 60 Connection to the Other Regions 62 Conclusions and Future Work 65 3 Introduction Internet development and the quality of user connectivity depend on the existence of good communications infrastructure and proper connectivity between countries. In Latin America, there are still some deficiencies in this regard which result in many people experiencing high latencies in their connections. The main reason for these latencies is the lack of local interconnection between different network operators, which means that traffic between nearby countries must often use distant Internet exchange points, located in the United States or Europe. The deployment of various Internet exchange points (IXPs) has helped improve this situation, although the actual status of connectivity between countries and networks remains a mystery. To find answers to these unknowns, some time ago LACNIC created Simón1, a project that seeks to generate information by measuring latency levels between countries and in this way estimate traffic volumes. -
Uaenic-Cctld Worksho#2D3BA2
UAEnic United Arab Emirates Amani Mohammed Bin Sewaif Zain Al Abdeen Baig November 2007 Agenda What is UAEnic? The Objectives UAEnic Time Lines Domain Names Statistics Evolution of (.ae) Domain Names UAEnic Technical Operations Domain Name System DNS Architecture Arabic GCC IDN Test Additional Services What is UAEnic? UAE Network Information Center (UAEnic) The (.ae) Domain Name Registry – ccTLD of the UAE since 1995 Local Internet Registry (LIR) 1.7.9.e164.arpa maintainer IDN’s Arabic Root technical implementer Objectives Give the UAE an extensive global presence in the cyber world. Treat all eligible applicants equally on a first come, first served basis. Promote the use of Internet in UAE for economical, educational and cultural development. UAEnic Time Lines 1994 2002 UAE University was delegated by Developed Domain Name Dispute IANA to run (.ae) Domain Name Resolution Policy 3 & 10 years Space. registration contract 1995 Was authorized by ITU to run ENUM UAEnic was re-delegated to run (.ae) (+971) Registry (among the first in the Domain Name Space with mutual world) agreement with UAE University. 2004 UAEnic was an authorized LIR by Hosting of “F” Root Name Server in RIPE NCC Dubai 2001 2005 UAEnic was allocated IPv6 Addresses. Hosting of “K” Root Name Server in (first in the region). Abu Dhabi 50 years registration contract 2007 Discussions with TRA about the future of .ae Domain Statistics Breakdown of .ae Domains ae 43300 co.ae 3378 net.ae 101 org.ae 189 sch.ae 739 ac.ae 128 mil.ae 9 gov.ae 463 Total -
Exploring and Analysing the African Web Ecosystem
1 Exploring and Analysing the African Web Ecosystem 2 3 4 RODÉRICK FANOU ?, CAIDA/University of California, San Diego (UCSD), USA 5 † GARETH TYSON, Queen Mary University of London, United Kingdom 6 7 EDER LEAO FERNANDES, Queen Mary University of London, United Kingdom 8 PIERRE FRANCOIS, Independent Contributor, France 9 10 FRANCISCO VALERA, Universidad Carlos III de Madrid (UC3M), Spain 11 ARJUNA SATHIASEELAN, University of Cambridge, United Kingdom 12 13 It is well known that Internet infrastructure deployment is progressing at a rapid pace in the African continent. A urry of recent 14 research has quantied this, highlighting the expansion of its underlying connectivity network. However, improving the infrastructure 15 is not useful without appropriately provisioned services to exploit it. This paper measures the availability and utilisation of web 16 17 infrastructure in Africa. Whereas others have explored web infrastructure in developed regions, we shed light on practices in developing 18 regions. To achieve this, we apply a comprehensive measurement methodology to collect data from a variety of sources. We rst focus 19 on Google to reveal that its content infrastructure in Africa is, indeed, expanding. That said, we nd that much of its web content is still 20 served from the US and Europe, despite being the most popular website in many African countries. We repeat the same analysis across 21 a number of other regionally popular websites to nd that even top African websites prefer to host their content abroad. To explore 22 the reasons for this, we evaluate some of the major bottlenecks facing content delivery networks (CDNs) in Africa. -
IANA Report on Recognition of Afrinic As a Regional Internet Registry
IANA Report Subject: Recognition of AfriNIC as a Regional Internet Registry Date: 6 April 2005 The Internet Assigned Numbers Authority (the IANA), as part of the administrative functions associated with management of the Internet Protocol (IP) address space, is responsible for evaluating applications for approval of new Regional Internet Registries. ICANN has received an application for final approval and recognition of the African Internet Numbers Registry (AfriNIC) as the fifth Regional Internet Registry (RIR). Background The role and responsibilities of ICANN/IANA in this area are defined in the Address Supporting Organization Memorandum of Understanding <http://www.icann.org/aso/aso- mou-29oct04.htm> (ASO MOU), and ICP-2 <http://www.icann.org/icp/icp-2.htm> ("Criteria for Establishment of New Regional Internet Registries"). In September 2004, an application was submitted by the AfriNIC organization for recognition, together with a detailed transition which included draft bylaws, policies, funding model, and staff resumes. On request of the ICANN President, the IANA staff conducted a preliminary evaluation. In September 2004 the President reported to the Board his conclusion that the application and transition plan constituted a reasonable basis for eventual recognition, though he noted that some adjustments would be necessary. Also in September 2004, the existing RIRs, APNIC, ARIN, LACNIC and RIPE NCC, through the Number Resource Organization (NRO), issued a statement expressing their ongoing and continuing support for AfriNIC, and recommending a favorable response to the application by recognizing AfriNIC's accomplishments thus far. Consistent with the IANA©s preliminary evaluation and the recommendations of the existing RIRs, the ICANN Board on 30 September 2004 gave provisional approval <http://www.icann.org/minutes/resolutions-30sep04.htm> to the AfriNIC application, with the expectation that the transition plan would be completed and an amended or revised application for recognition would be submitted. -
ENOG 12 Axel RIPE NCC Update.Key
RIPE NCC Update Axel Pawlik Managing Director RIPE NCC ENOG 12 | Yerevan | 4 October 2016 About the RIPE NCC • Secretariat for the RIPE community • Maintains the RIPE Database • One of five Regional Internet Registries (RIRs) - Serving Europe, the Middle East and parts of Central Asia - 76 countries • Allocate and assign IPv4, IPv6 and AS Numbers • Outreach, tools, measurements, training and more! Axel Pawlik | ENOG 12 | 4 October 2016 2 About the RIPE NCC • Independent, not-for-profit, bottom-up membership organisation • Anyone can become a member • Incorporated into the Netherlands, governed by Dutch law • Funded by members, fully autonomous • Open, transparent, neutral and impartial • Offices in Amsterdam and Dubai - Approximately 140 staff members; two in Moscow Axel Pawlik | ENOG 12 | 4 October 2016 3 RIPE NCC Activity in 2016 • Maintaining a strong registry • RIPE NCC Survey 2016 - Collecting and acting on feedback • Outreach and external relations throughout our service region - Regional meetings, member lunches, trainings, etc. - Improving our processes for greater efficiency • Providing enhanced statistics and analysis • RPKI Validator Axel Pawlik | ENOG 12 | 4 October 2016 4 ENOG Website Redesign • Better navigation and content organisation • Clear and modern design • Mobile-friendly and responsive • Added improved features in the back-end for presentation submission and rating • We welcome your feedback! enog.org Axel Pawlik | ENOG 12 | 4 October 2016 5 What’s Left in 2016 • RIPE 73 in Madrid • RIPE NCC General Meeting (GM) -
Saudi Arabia Country Report
RIPE NETWORK COORDINATION CENTRE RIPE NCC Saudi Arabia Country Report Date: January 2019 RIPE NCC Saudi Arabia Country Report | 2019 RIPE NETWORK COORDINATION CENTRE Introduction This report describes the current state of Internet development in Saudi Arabia and the surrounding Arabic-speaking countries. It examines growth trends and the optimisation of Internet routing in the region and evaluates the efficiency of our K-root service, which is part of the global Domain Name System (DNS). The report focuses on what we can observe and measure from RIPE NCC services and measurement infrastructure in the region. With a greater number of data collection points and more information sharing between stakeholders in the region, we would be able to provide an even more detailed and complete analysis of the situation in the future. To this end, the report also contains information on how all stakeholders can help support further analysis. Growing Internet Use in the GCC “High penetration across the board” In recent years, the percentage of people using the Internet across the Gulf Cooperation Council (GCC) countries has continued to rise, sometimes steadily, sometimes quite sharply. If we compare the situation at the end of 2017 to the situation in 2010, we see that the proportion of people using the Internet in this group of countries has risen by an average of approximately 35%. Figure 1 provides an overview of the rise in the number of Internet users in the GCC against the backdrop of population growth. Figure 1: Growth in the number of Internet users per GCC country (indicated by dotted lines) and growth in population (indicated by shaded areas) from 2010 to the end of 2017. -
RIPE NCC Membership RIPE NCC Activities and Services Training Services
Quick Overview RIPE NCC Membership RIPE NCC Activities and Services Training Services The RIPE NCC is an independent, not-for- Anyone can become a member of the RIPE Membership Services RIPE NCC General Meeting The RIPE NCC provides the following training In 2010, the RIPE NCC gave 89 training profit membership organisation based in NCC. Most members are Internet Service courses to its members: courses in 35 countries in the RIPE NCC Amsterdam, the Netherlands. It was formed in Providers (ISPs), telecommunication Allocation of IP addresses – IPv6 and General Meetings (GM) are held twice a year service region. Over 1,700 Local Internet 1992 and now supports over 7,150 members organisations, corporations, academic IPv4, Autonomous System Numbers and all members are strongly encouraged Local Internet Registry (LIR) Training Registry (LIR) staff participated. The RIPE in 78 countries in its service region (see map). institutions and government bodies. (ASNs) – and the management of reverse to attend. During the GM, members vote to Course – a one-day introduction to NCC also gives customised presentations DNS delegations accept the RIPE NCC Charging Scheme and can administrative procedures and policies and seminars for industry events and As the Regional Internet Registry (RIR) for Members manage and distribute the Internet Provision of RIPE NCC Training Courses elect a candidate to a vacant seat on the RIPE related to obtaining and distributing conferences. For more information, or to Europe, the Middle East and parts of Central number resources they receive from the RIPE Support for new Local Internet NCC Executive Board. More information about Internet resources and operating an host a training course, please contact: Asia, the RIPE NCC provides Internet number NCC at a local level. -
The Case of Shared Public Ips at Hotspots
How Others Compromise Your Location Privacy: The Case of Shared Public IPs at Hotspots Nevena Vratonjic1,K´evin Huguenin1, Vincent Bindschaedler2,and Jean-Pierre Hubaux1 1 School of Computer and Communication Sciences, EPFL, Switzerland 2 Department of Computer Science, UIUC, USA Abstract. Location privacy has been extensively studied over the last few years, especially in the context of location-based services where users purposely disclose their location to benefit from convenient context- aware services. To date, however, little attention has been devoted to the case of users’ location being unintentionally compromised by others. In this paper, we study a concrete and widespread example of such sit- uations, specifically the location-privacy threat created by access points (e.g., public hotspots) using network address translation (NAT). Indeed, because users connected to the same hotspot share a unique public IP, a single user making a location-based request is enough to enable a service provider to map the IP of the hotspot to its geographic coordinates, thus compromising the location privacy of all the other connected users. When successful, the service provider can locate users within a few hundreds of meters, thus improving over existing IP-location databases. Even in the case where IPs change periodically (e.g., by using DHCP), the service provider is still able to update a previous (IP, Location) mapping by inferring IP changes from authenticated communications (e.g., cookies). The contribution of this paper is three-fold: (i) We identify a novel threat to users’ location privacy caused by the use of shared public IPs. (ii) We formalize and analyze theoretically the threat. -
An Overview of the RCC Region
An Overview of the RCC Region Serge Radovcic Chief Communications Officer Serge Radovcic | 19 April | Minsk Roundtable Meeting Regional Internet Registry (RIR) Regional Internet Registries (RIRs) manage, distribute, and register Internet number resources within their respective regions. 2 RIPE NCC Service Region • 76 countries across diverse region Serge Radovcic | Minsk Roundtable Meeting | 19 April 3 RIPE NCC Membership Today 15,800 Serge Radovcic | Minsk Roundtable Meeting | 19 April 4 RIPE NCC Membership Growth Belarus RCC region RIPE NCC region Serge Radovcic | Minsk Roundtable Meeting | 19 April 5 RIPE NCC Membership - RCC 120 120 1399 96 98 72 68 57 48 44 24 26 22 18 21 10 2 0 Armenia Belarus Georgia Russia Moldova Tajikistan Azerbaijan KazakhstanKyrgyzstan Uzbekistan Turkmenistan Serge Radovcic | Minsk Roundtable Meeting | 19 April 6 Members per Capita (x 100,000) 3 2 1 0 Members Armenia Belarus Georgia Russia Moldova Tajikistan Azerbaijan KazakhstanKyrgyzstan Uzbekistan Turkmenistan Serge Radovcic | Minsk Roundtable Meeting | 19 April 7 RCC Representation: Membership RCC RCC 11.2% 21.0% RIPE NCC region RIPE NCC region Population Membership Serge Radovcic | Minsk Roundtable Meeting | 19 April 8 RCC Representation: Address Space RCC RCC 6.8% 16.0% RIPE NCC region RIPE NCC region IPv4 Space Networks (ASNs) Serge Radovcic | Minsk Roundtable Meeting | 19 April 9 Members with Last /22 of IPv4 • RIPE Policy on IPv4 runout allows each member a final /22 (1,024) of IPv4 address space • Allows new members to transition to IPv6 28% 31% Have -
Information on Membership, Services and Activities Quick Overview RIPE NCC Services and Activities
RIPE NETWORK COORDINATION CENTRE About the RIPE NCC Information on membership, services and activities Quick Overview RIPE NCC Services and Activities The RIPE NCC is an independent, not-for-profit membership In addition to providing services related to the assignment and allocation of organisation based in Amsterdam, the Netherlands. Internet number resources, the RIPE NCC also supports the operation and RIPE NETWOR COORDINATION CENTRE development of the Internet for the benefit of the Internet community as a whole: As the Regional Internet Registry (RIR) for Europe, the The RIPE NCC is an open and transparent, neutral and DATABASE SERVICES community at regional GM, members vote to accept the RIPE Middle East and parts of Central Asia, the RIPE NCC impartial organisation. It has no commercial interests • Development, operation and and global industry-related events NCC Charging Scheme and can elect provides Internet number resources, such as IPv4 and or influences and operates as a bottom-up and self- maintenance of the RIPE Database and when liaising with governments candidates to vacant seats on the IPv6 address space and Autonomous System Numbers governing organisation. This means that the policies and operation of an Internet and regulators RIPE NCC Executive Board. (ASNs), to its members. It also offers other services and procedures that govern the way the RIPE NCC Routing Registry (IRR) • Administrative support for the ripe.net/gm related to the technical coordination of the Internet. operates are proposed, discussed and accepted -
IP Geolocation Through Reverse DNS
IP Geolocation through Reverse DNS Ovidiu Dan∗ Vaibhav Parikh Brian D. Davison Lehigh University Microsoft Bing Lehigh University Bethlehem, PA, USA Redmond, WA, USA Bethlehem, PA, USA [email protected] [email protected] [email protected] ABSTRACT Table 1: Example of entries from an IP Geolocation database IP Geolocation databases are widely used in online services to map end user IP addresses to their geographical locations. However, they StartIP EndIP Country Region City use proprietary geolocation methods and in some cases they have 1.0.16.0 1.0.16.255 JP Tokyo Tokyo 124.228.150.0 124.228.150.255 CN Hunan Hengyang poor accuracy. We propose a systematic approach to use publicly 131.107.147.0 131.107.147.255 US Washington Redmond accessible reverse DNS hostnames for geolocating IP addresses. Our method is designed to be combined with other geolocation data sources. We cast the task as a machine learning problem where increased user satisfaction and conversely that missing location for a given hostname, we generate and rank a list of potential information leads to user dissatisfaction [2, 7, 25]. IP geolocation location candidates. We evaluate our approach against three state databases are also used in many other applications, including: con- of the art academic baselines and two state of the art commercial tent personalization and online advertising to serve content IP geolocation databases. We show that our work significantly local to the user [2, 18, 26], content delivery networks to direct outperforms the academic baselines, and is complementary and users to the closest datacenter [19], law enforcement to fight cy- competitive with commercial databases.