The legal section of TLDCON 2023 was devoted to issues of IT legislation. Moderator of the section, chief researcher at the Institute of Legislation and Comparative Law under the Government of the Russian Federation and president of the IP CLUB, Doctor of Law Marina Rozhkova invited participants to discuss the principles of regulation and self-regulation of the IT sector and the domain market in different countries, talk about current judicial practice and ways to resolve domain disputes.
The section was opened by the co-founder and CEO of the Patrikeev and Partners, Pavel Patrikeev, who made a report “Current Issues of Legal Regulation of Transactions with Domains,” in which he spoke about the specifics of domain disputes and the protection of intellectual property. He gave an advice on how to conduct a dialogue with information intermediaries and combat rights violations on the Internet.
Chris Buckridge, known to everyone for his work at the RIPE NCC, but this time acting as an independent consultant, gave a report “Small Earthquakes: Recent Developments in EU Legislation and Regulation”. He gave an overview of legislation, directives, etc. that have appeared in the European Union recently. He also focused on how the directives of the EU Parliament are implemented in the legislation of different countries within the European Union, and how implementation of the directives varies depending on the country.
Ekaterina Kalinicheva, partner, Head of the practice for protecting intellectual property on the Internet at the law firm Semenov&Pevzner, in the report “What are They Arguing About on the Internet?” spoke about current judicial practice in the field of litigation and gave examples of the most high-profile cases of 2023.
The topic of domain disputes was continued by the president of the law firm “Internet and Law”, professor, doctor of legal sciences Anton Sergo. He spoke about the regulation of domain disputes in foreign countries and about the Uniform Domain Name Dispute Resolution Policy (UDRP), which has been in force since 1999. He drew attention to the fact that the current UDRP system in 2022–2023 discriminates against Russian participants in domain disputes, and as a result, Russian businesses now essentially avoid using this system. In this regard, Anton Sergo proposed creating a separate Russian Arbitration Center to resolve disputes between Russian participants.
Representative of the hoster.by (Belarus) Vladislav Zhavnerchik spoke about the features of domain name regulation within the framework of the legislation of the Republic of Belarus. He noted that in Belarus there is an institution of inherited domain names and spoke about the difficulties associated with this. He also shared the experience of the Belarusian registry in the field of combating the domain abuse, focusing in detail on typesquatting.
The TLDCON 2023 continued with a lecture by ICANN Senior Vice President and CTO John Crane and a security panel.
John Crane discussed ICANN's comprehensive approach to mitigating DNS abuse: the DAAR, INFERMAL, and DNSTICR projects. He emphasized that ICANN not only monitors malicious domains, but also supports the work of external teams to combat phishing and malware, and also cooperates with law enforcement agencies, accredited registries and registrars around the world.
Participants of the Security on the Internet section, together with moderator Pavel Khramtsov (InData), discussed the landscape of cyber threats in Russia in 2023.
Vladimir Kuskov (Kaspersky Lab) provided important data on cyber threats: in 2022, the company identified 400,000 threats daily, and this figure is expected to increase this year. In the first half of 2023, over 1.5 billion web attacks were neutralized, including 462 million malicious URLs and about 80 million malicious objects. He noted that more than 41% of all emails in the world, including in Russia, are spam. And since the beginning of 2023, Kaspersky Lab has already blocked 31 million malicious attachments and prevented 312 million attempts to click on phishing links.
Alexander Vurasko (Solar Security) highlighted the main directions of development of phishing: increasing automation, consolidation of actors, growth of the CaaS model, increasing the share of non-targeted phishing, the desire of fraudsters to seize access to the bank’s personal account, the use of unique links and dynamic chains, as well as the massive use of domains, not related to the attacked brand.
Artem Izbaenkov (EdgeCenter) spoke about the types, trends and possible consequences of DDoS attacks for national domain registrars and urged them, first of all, to protect infrastructure and communication channels, and only then web applications.
Alexander Venedyukhin (InData) shared information about the development of protocols in tunnels and addressing systems, and Ivan Vlasov (MSK-IX) spoke about the trusted Network Time Protocol (NTP) as a factor in network security.
The Conference still on - tune in to the stream on our YouTube channel.
