- M3AAWG Messaging playlist on YouTube
- Selected Training Videos (also available on www.youtube.com/maawg)
- Selected Keynote Videos (also available on www.youtube.com/maawg)
1
Below are the M3AAWG published materials related to our messaging anti-abuse work. There is also a Messaging video playlist on our YouTube channel at www.youtube.com/maawg and there are a few selected videos on our website in the Training Videos and Keynotes Videos sections under the Meetings menu tab.
Best Practices
PDF
July 31, 2017
M3AAWG Best Practices for Implementing DKIM To Avoid Key Length Vulnerability, Revised July 2017
Due to disclosed vulnerabilities associated with the use of short DKIM keys, organizations should review their DKIM email authentication implementation based on these best practices updated in July 2017. Also see a short video on this issue at the M3AAWG YouTube Channel (www.youtube.com/maawg).
PDF
March 31, 2017
M3AAWG Password Managers Usage Recommendations
Most users struggle to manage a large number of usernames and passwords. While password managers have both proponents and detractors, these recommendations reflect the general consensus of the industry.
PDF
March 31, 2017
M3AAWG Describes Costs Associated with Using Crypto
This document describes the budget and other costs associated with using cryptography to help make informed decisions when deploying encryption.
PDF
March 15, 2017
M3AAWG Initial Recommendations: Arming Businesses Against DDoS Attacks
Distributed Denial of Service attacks continue to be a major concern. This guide helps businesses prepare for DDoS attacks and, as a side benefit, some of these same techniques can also help businesses that suddenly see a large increase in legitimate customer web traffic.
PDF
February 28, 2017
M3AAWG Password Recommendations for Account Providers
Passwords are used virtually everywhere. This document provides password requirement recommendations for ISPs and other providers and briefly describes the risk model of using passwords to provide authorized or secure access to resources. It aims to improve end-user security by encouraging strong passwords.
Pages
Public Policy Comments
July 01, 2013
M3AAWG Comments on Thick Whois Initial Report
Submitted to ICANN in July 2013
Comments on this report can also be viewed on the ICANN site at http://forum.icann.org/lists/comments-thick-whois-initial-21jun13/
September 01, 2012
Comments on Preliminary Issue Report on Uniformity of Contracts to Address Registration Abuse
Submitted to ICANN in September 2012
View the preliminary report at http://gnso.icann.org/en/issues/registration-abuse/prelim-issue-report-u... or all submitted comments at http://forum.icann.org/lists/uoc-prelim-issue-report/ on the ICANN site.
August 14, 2012
Comments on Abuse Contact Management in the RIPE Database
Submitted to RIPE in August 2012
Response to RIPE’s proposal to introduce a new contact attribute named "abuse-c
May 23, 2012
M3AAWG Comments on ICANN WHOIS Policy Review Team Final Report
Response to the final report from the ICANN WHOIS Policy Review Team
December 08, 2011
MAAWG Comments on Protect IP and SOPA
Submitted to U.S. Congress committees on the judiciary in December 2011
MAAWG outlined technical issues with S.968, Preventing Real Online Threats to Economic Creativity and Theft of Intellectual Property Act, and H.R.3261, Stop Online Piracy Act, in a letter to the judiciary committees of the U.S. Senate and U.S. House of Representatives.
Pages
M3AAWG Reports
DM3Z Blog
Updates and Commentary from the Messaging, Malware and Mobile Anti-Abuse Working Group
None at this time.
News
News Releases
HTML
February 20, 2013
Independent Georgia Tech Study Reveals Best Ways to Tell Customers “You’re Botted”
HTML
January 30, 2013
M3AAWG San Francisco Meeting Addresses Latest Messaging Security Ranging from Mobile Malware to DDoS Attacks
HTML
November 06, 2012
M3AAWG Issues DKIM New Best Practices In Wake of Disclosed Key Length Vulnerability
Pages
Articles About M3AAWG
PDF
January 06, 2017
ICO's blog on its international work (M3AAWG and UCENet)
Representatives of the United Kingdom's independent authority set up to uphold information rights in the public interest report on their work with members of UCENet at a four day event hosted by the Messaging Malware Mobile Anti-Abuse Working Group (M3AAWG) in Paris.
PDF
September 30, 2016
Time To Talk Digital Issues At WTO With Focus On Developing Countries, Forum Hears
https://www.ip-watch.org/2016/09/30/time-to-talk-digital-issues-at-wto-w...
. . . dealt with by internet governance organisations such as ICANN (Internet Corporation for Assigned Names and Numbers), the UN-backed Internet Governance Forum, Internet Engineering Task Force, and the Messaging Anti Abuse Working Group.
PDF
September 26, 2016
Exploring Cybersecurity Topics on a Whirlwind Tour of Eastern Europe
https://www.icann.org/news/blog/exploring-cybersecurity-topics-on-a-whir...
". . . I plan to take advantage of the opportunity to network with first responders, law enforcement and cybercrime forensic professionals from Europe and Eastern Europe. APWG and similar conferences (e.g., Messaging, Malware and Mobile Anti–Abuse Working Group – M3AAWG) are venues where the IS SSR team is most successful in building trust relationships and promoting participation in ICANN's multistakeholder community."
PDF
September 22, 2016
News from Identifier Technology Health Indicators (ITHI)
https://www.icann.org/news/blog/news-from-identifier-technology-health-i...
. . ."First, ICANN will organize another ITHI workshop at the M3AAWG meeting in October in Paris."
PDF
June 08, 2016
EXPERTS TO FCC: CHANGE COURSE ON BROADBAND PRIVACY RULES INDUSTRY GROUPS AND EXPERTS AGREE: THE FCC MUST CHANGE COURSE ON BROADBAND PRIVACY
Fixed Wireless Internet Service Providers Association
http://www.wispa.org/News/wispa_news_06-08-16_Experts_to_FCC
"A coalition of industry groups including WISPA, CTA, CTIA, and US Telecom today published a joint article in opposition to the FCC’s proposed new rules for broadband privacy protection . . . The Messaging, Malware and Mobile Anti-Abuse Working Group similarly warned that the rules as currently framed could inadvertently undermine cooperation and communication needed to secure the web from malware, viruses and hackers online. . . "
Pages
Videos
