Violation of the rules for the registration of .kz domain names

The KZ-CERT computer incident response service performs inter-sectoral coordination of the response to information security incidents with the implementation of joint measures to ensure information security in accordance with the legislation of the Republic of Kazakhstan in accordance with subparagraph 7 of paragraph 1 of Article 7-4 of the Law of the Republic of Kazakhstan "On Informatization" dated November 24 2015 No. 418-V.

In the period from January to the present KZ-CERT recorded more than 1200 incidents of information security on the domain names of the .kz zone, followed by notification of owners of Internet resources.

Owners of 288 Internet resources of the .kz zone, despite repeated notifications, work to eliminate fixed hacking, phishing pages and the spread of malicious and program code were not carried out.

In connection with the violation of subparagraph 1 "Identification of unreliable information about the registrant indicated in the application submitted by the registrant for the registration of the domain name" and subparagraph 4 "the registrant does not eliminate the information security incident, which was notified by the authorized body or from the Computer Incident Response Service Republican State Enterprise on the right of economic management "State Technical Service" of the Committee of National Security of the Republic of Kazakhstan ", paragraph 16 3 of the "Rules for Registration, Use and Distribution of Domain Names in the Space of the Kazakhstan Internet Segment" dated March 13, 2018 No. 38 / NN (hereinafter referred to as the Rules) to the Authorized Authority in the Information Security of the Republic of Kazakhstan and the "Kazakh Network Information Center" - KazNIC) sent a letter with a request to take action against 288 Internet resources.

In turn, KazNIC, in accordance with clause 18 "The Registry within 1 (one) business day suspends the registration of domain names with sending notification to the registrar on the need to eliminate the grounds for suspension of registration of a domain name in the space of the Kazakhstan Internet segment" of Chapter 3 of the Rules, suspended registration 262 domain names that did not eliminate incidents of information security. Domain Name Registrars are notified of the need to immediately take action and inform KazNIC within 10 working days from the receipt of the information.

Recommendations:

1. In order to avoid the suspension of the operation of the domain name, it is necessary to comply with the "Rules for registration, use and distribution of domain names in the space of the Kazakhstan Internet segment;

2. Check the e-mail specified in the whois-data to the domain name in a timely manner for messages from the addressee info @ kz-cert.kz / incident @ kz-cert.kz;

3. If there is no possibility to solve the incident on your own, refer to competent specialists.

After eliminating the information security incident, you must contact the KZ-CERT Service. This request will be sent to KazNIC for taking action on the domain name.