2006-06-27
Article continued from Page 1
The URL Tracer tool has a URL Scan History function which logs and timestamps each primary URL that is visited, along with the third-party URLs that are communicated with as well. There is also a Top Domains view which displays the third-party domains that were visited, and lists each of the primary URLs visited that generated traffic to that third-party URL.
In both the URL Scan History and the Top Domains views, users can right-click on the domain names in the display and select Go or Block. Choosing Go will take the user to the URL to help identify which ads or traffic came from which URL's. Clicking on Block will prevent all future traffic to or from the identified domain.
Practical applications of the Strider URL Tracer with Typo-Patrol
Strider URL Tracer with Typo-Patrol can be used for two primary functions. One is to protect children from seeing inappropriate or explicit sites that they should not see and the other is for companies or trademark owners to scan and investigate sites that may be typo-squatting their domain(s) so that they can be investigated and / or prosecuted.Protecting Children With Strider URL Tracer
If parents see that inappropriate or explicit ads are being displayed when their children are using the Web, they can refer to the URL Scan History to see what domains have been visited. Using the Go button, they can investigate which ad servers generated the illicit ads.After the URL responsible for serving the unwanted ads is identified, parents can choose Block to ensure that no traffic goes to or from that site in the future and thereby protect their children from unscrupulous typo-squatters.
Protecting Trademarks With Strider URL Tracer
Trademark owners and companies can use the Strider URL Tracer to monitor their domain and identify typo-squatters and domain-parkers that may be infringing on or violating their trademark.There are hundreds upon hundreds of possible typo-domains generated by using the Strider Typo-Neighborhood Generator. Most companies do not have the time, money or other resources required to try and investigate each of them to determine if there is any trademark violation and follow through with any kind of prosecution.
The Strider URL Tracer tool's Top Domains feature can be used to identify the largest, or most flagrant typo-squatters so that technical and legal resources can be invested where they will have the biggest effect.
The results can also be viewed grouped by IP address. Using these results, groups of typo-squatting domains that share an ISP can be identified and companies can send a multi-domain takedown notice to address a number of domains in one shot.
Avoid paying to advertise on a typo website
There is one other issue that arises from the systematic use of typo-squatting domains on domain-parking services and the use of syndicated web advertising. Sometimes a company may end up paying for a Web ad that is displayed to a user who was trying to go to the company web site in the first place.
For example, a user may want to visit www.ford.com and accidentally type www.fored.com. The user then ends up on a parked domain serving syndicated ad links, some of which are from Ford. So, even though the user actually meant to go straight to the Ford Web site, their typo redirected them to a different site which in turn charges Ford for the privilege of advertising to the user, who was effectively stolen from them in the first place.
Battling Typo-Squatters
According to the research and analysis done by the Microsoft Cybersecurity and Systems Management research group with the Strider Typo-Patrol project, between 40% and 70% of all active typo-squatting domains can be traced back to six major domain-parking services. One large-scale typo-squatter accounts for just under 20% of all the active typo-domains.There are many laws that can be applied to fight typo-squatting. If a company's trademark or copyright has been infringed in any way, they can pursue damages for that. There are also laws aimed specifically at ensuring that frivolous domains are not set up, such as the Truth In Domain Names Act or the Anticybersquatting Consumer Protection Act.
Not every domain that happens to fit the typo-squatting algorithm is necessarily illegal, or even questionable, however. Some may be legitimate sites. One should use the Strider URL Tracer with Typo-Patrol to determine the extent of any typo-squatting related to your company domains or trademarks and identify the key players behind it - and then let the lawyers sort it out.
Conclusion
In this article, the author has discussed the need for Microsoft's free Strider URL Tracer with Typo-Patrol, to help fight typo-squatters and domain parking abuse. With numerous issues arising from typo-squatters and so many possible variations of such website names, the tools can be used by security professionals and home use alike.References
- Microsoft research's free Strider Typo-Patrol tool
- The Microsoft's .NET framework, required for Strider Typo-Patrol
- The Strider HoneyMonkey Scanner, a project to detect and analyze Websites that may be hosting malicious code. See also http://www.securityfocus.com/news/11273
- Truth In Domain Names Act
- Anticybersquatting Consumer Protection Act
