Latest news with #DNSSEC
Zawya
5 days ago
- Business
- Zawya
Ajman University: Sole Middle East Recipient of Prestigious ICANN Grant to develop global internet security system
Ajman, UAE – Ajman University has secured a prestigious international grant from the Internet Corporation for Assigned Names and Numbers (ICANN) worth USD 410,300.00, in the inaugural cycle of the ICANN Grant Program. This competitive international award, secured through the dedicated efforts of Prof. Rao Naveed Bin Rais from the College of Engineering and Information Technology, will support the development of a groundbreaking system to archive and analyze global data related to the Domain Name System Security Extensions (DNSSEC) — a vital cybersecurity protocol that safeguards the integrity of Internet infrastructure. The project aims to build a 24/7 operational platform that analyzes historical DNSSEC data, identifies vulnerabilities, and highlights gaps in its global implementation. This first-of-its-kind system will offer diagnostic tools with visual analysis, helping enhance DNSSEC adoption worldwide. Ajman University is the only institution in the Middle East to receive this grant, and one of just 23 selected entities out of 247 global applicants. Out of 23 entities, only 3 are selected from Asia including Ajman University. Moreover, AU is also among the only five universities worldwide to receive the award — including three from Europe, one from Latin America, and Ajman University as the sole representative from Asia. This milestone reinforces Ajman University's global standing, particularly as it enabled the University to obtain U.S.-equivalent charitable organization status — a prerequisite for applying to this grant. This designation aligns with AU's identity as a non-profit academic institution and paves the way for securing additional international funding opportunities that support its academic and community missions. Being the only awardee from both the Middle East and the only university from the Asia highlights the University's ability to compete at the highest levels in fields such as cybersecurity and Internet governance. The grant-funded project represents a significant addition to the University's research and technological infrastructure. It involves the development of a passive, integrated system to collect and analyze DNSSEC data — the first of its kind globally — and is expected to boost AU's international visibility as global Internet community begins using the platform. The project will also include the establishment of a high-tech hardware lab on campus, further strengthening AU's capacity for applied research and innovation in digital infrastructure. The initiative promises to create research and training opportunities for AU graduates, while providing current students and researchers access to valuable datasets for research and development purposes — supporting their growth in analytical and technical skills. The project addresses a major global challenge related to the implementation of DNSSEC, a protocol strongly advocated by global Internet bodies like ICANN and IETF for securing the DNS ecosystem. In the adoption of DNSSEC protocol, one of the main obstacles has been the lack of visibility into global adoption and implementation gaps. Through the newly developed system, Ajman University seeks to bridge that gap by monitoring and analyzing DNSSEC adoption across Internet domain names worldwide. This project reflects Ajman University's strong commitment to leveraging scientific research in service of global challenges and underscores its active role in building secure and sustainable digital infrastructure that benefits academic and technical communities both locally and globally. About Ajman University Established in 1988 as the first private university in the GCC, Ajman University (AU) is a non-profit institution committed to delivering world-class education and empowering future leaders. With a strong emphasis on academic excellence, global engagement, and societal impact, AU continues to shape a diverse and inclusive learning environment that nurtures innovation and integrity. Ajman University earned full accreditation from the WASC Senior College and University Commission (WSCUC) in 2024, becoming the first private and non-profit university in the UAE and the Arab world to achieve this prestigious distinction. In the 2026 QS World University Rankings, AU ranks #440 globally and #6 in the UAE, with a global ranking of #241 for Employer Reputation and #3 in the UAE. AU also holds the #1 position in the UAE and #4 globally for the percentage of international students. With a growing network of over 40,000 alumni across the world, AU continues to prepare graduates who are career-ready, globally aware, and committed to shaping a better future for their communities and beyond.
Forbes
07-04-2025
- Business
- Forbes
Registering A New Domain? 18 Must-Have Security Features To Enable
Securing a new domain is a critical step in establishing a company's online presence, but it also introduces cybersecurity risks that demand immediate attention. Without proper security in place to safeguard it, a new business domain could become an easy target for cybercriminals, leading to issues such as domain spoofing, phishing campaigns and unauthorized access attempts that put the company and its customers at risk. Taking the right security measures immediately after registering a new domain not only protects the business, its brand and its customers, but also sets a resilient foundation for a long-term digital strategy. Here, 18 members of Forbes Technology Council share essential security features a business should enable to ensure a newly registered domain's integrity and reduce vulnerabilities that could be exploited by malicious actors. Right after securing a new domain, the first line of defense should be enabling the domain lock, often called the transfer lock. This feature stops anyone from transferring your domain without explicit authorization. It's a simple step, but it can be critical to keeping your domain safe from hijacking attempts and ensuring you control your brand's online identity. - John Jordan, BetterWorld Technology Secure similar domains, such as common typos and misspellings of yours, and alternative top-level domains (such as .net, .org and .co) to prevent phishing attacks. Cybercriminals often exploit lookalike domains to impersonate companies, deceive customers and steal sensitive information. Proactively acquiring domain variants helps safeguard your brand, maintain customer trust and prevent misuse. - Alexander Britkin, NFWare A business should immediately enable domain-based email authentication to protect against phishing and email spoofing. This ensures only authorized sources can send emails on behalf of the domain, safeguarding brand reputation and preventing cyber threats. - Mohit Gupta, Damco Solutions Enable DNSSEC immediately. DNSSEC digitally signs your domain name system records, protecting against cache poisoning and domain hijacking—ensuring that visitors reach your authentic website safely from the start. - Kinil Doshi, Citibank Forbes Technology Council is an invitation-only community for world-class CIOs, CTOs and technology executives. Do I qualify? Use MFA from the very first day to secure administrative access, prevent unauthorized entry and reduce the risk of phishing. Additionally, set up email authentication based on the domain using DMARC, SPF and DKIM protocols to prevent email spoofing and protect a brand's reputation against cyber threats. - Asad Khan, LambdaTest Inc. Enable domain privacy protection so your personal or company contact info isn't exposed in WHOIS records. This guards against social engineering and phishing attempts that often target new domain registrants. It's an easy security win—attackers can't use your publicly listed email or phone number to try to trick you or your IT staff if that data is masked by a privacy service. - Roman Vorel, Honeywell EPP lock would be the first thing I'd check. Domain ownership scams are rampant. A significant portion of them are socially engineered, preventing software from helping keep you protected. Ensuring your domain can't be transferred out is key in protecting your brand and online reputation. If a domain is unlocked, it's extremely easy for a third party to hold your domain for ransom. - Tom Roberto, SG Network Services Enable multilayered IAG. Implement domain-level MFA for all administrative accounts, enforce least-privilege access controls and activate continuous monitoring for login anomalies using cutting-edge tools like knowledge graphs and digital twins. Securing identity pathways from day one prevents unauthorized access and protects critical digital assets. - Craig Davies, Gathid After registering a new domain, businesses should immediately enable SSL/TLS encryption for HTTPS. This secure version of the standard HTTP protocol ensures data is securely transferred between the website and its users, protecting sensitive information like passwords and payment details. It also builds trust, as browsers display a 'secure' indicator, reassuring users that their data is safe. - Aishwarya Suresh, Medtronic Inc. Set up a domain monitoring service to track any unauthorized use of your domain name or brand online. This service can alert you to phishing sites, trademark infringements or other fraudulent activities that mimic your business. Early detection through continuous monitoring enables you to take swift corrective actions to safeguard your brand and maintain trust with your customers. Stay vigilant! - Mohammad Adnan, Intuit Inc. Enable CAA that allows domain owners to specify which certificate authorities are permitted to issue SSL/TLS certificates for their domain, thereby preventing unauthorized certificate issuance. This measure enhances security by reducing the risk of man-in-the-middle attacks and ensuring that only trusted CAs can issue certificates for our domains. - Pooja Jain, Meta (Facebook) Enable DNS zone transfer restrictions. Immediately disable open AXFR (full zone transfer) requests so that only authorized secondary DNS servers can access your DNS zone data. This prevents attackers from enumerating your entire DNS record set, thereby reducing the risk of targeted attacks. - Bing Yu Yap, Datacurve AI Inc. Immediately enable registrar lock and auto-renewal to prevent accidental expiration or unauthorized domain transfers. Cybercriminals often exploit expired domains to impersonate brands or launch malicious campaigns. By securing renewal settings and locking domain transfers, businesses eliminate vulnerabilities associated with domain lapses. - Jagadish Gokavarapu, Wissen Infotech Enable canary tokens for domain monitoring. Embed a hidden tracking URL or email alias to detect real-time unauthorized access, phishing or DNS tampering. This stealthy, proactive measure provides alerts of threats before traditional security tools notice. Stay ahead of attackers before they strike. - Sadhasivam Mohanadas For Web3 domains, I recommend ENS for domain security. ENS enhances Web3 domain protection by linking readable names to blockchain addresses, ensuring that domain interactions are secure. ENS prevents fraud by verifying that users are interacting with legitimate, intended blockchain addresses, which is crucial for maintaining trust and security in the decentralized environment. - Morgan Shuler, Tapplix Applications & Web Design Organizations should consider enabling the use of custom name servers with redundancy, a crucial security feature. This approach involves deploying custom, geographically distributed name servers that enhance performance and provide robust protection against distributed denial-of-service attacks. - Cristian Randieri, Intellisystem Technologies After registering a new domain, businesses should prioritize implementing a WAF. A WAF acts as a shield, filtering and monitoring HTTP traffic to protect against Web exploits like SQL injection and cross-site scripting. Deploying a WAF reduces attack surfaces, safeguards data and ensures compliance with security standards, establishing a strong security foundation. - Pradeep Kumar Muthukamatchi, Microsoft First, enable two-factor authentication. If the domain provider supports IP allowlisting for the management panel, configure it accordingly. Then, ensure the domain provider follows strong security practices. Review the 'Forgot Password' process to assess whether it can be easily bypassed. Finally, activate all available security features for the email account associated with the domain management panel. - Can Yildizli, PRODAFT
