Who qualifies for DNSDB API Access?
The DNS API access provides a programmable access to the passive DNS data. Its allows qualified and vetted organizations to build tools that integrated directly into DNSDB. Access to DNSDB is limited based on a sustainability model that also vets access to mitigate potential abuse.
Status: The DNSDB API is in BETA. The BETA is currently closed. The only exceptions are for organizations who peer on one of the SIE sites.
But, when the DNSDB API is opened, there will be four ways to obtain access DNSDB's API:
Passive DNS Contributors All organizations who contribute passive DNS data to the Farsight program have DNSDB access. This is public benefit fairness. The contributor submits data with two layers of obscurity (no client IP addresses or IDs of the contribution source) and gains global insight in return for their participation. API access provides the contributor to build automated tools and scripts.
Farsight Sponsored Researchers Farsight sponsors key research by individuals and groups. These "Farsight Sponsored Researchers" are no-fee consultants with Farsight. Their non-commercial work enhances the public benefit resources of Farsight through the research and insights. Interest in the program can be expressed at firstname.lastname@example.org.
SIE Peers Organizations who have a box and peer at an Security Information Exchange (SIE) node can apply for a DNSDB API account.
RSF Members Organizations who do not fall under and of the above categories can apply for Resiliency & Security Forum membership. This annual membership allows vetted organizations to actively participate in the evolution of DNSDB, SIE, and other security data peering endeavors. Certain membership levels provide DNSDB API access. Organizations interested in membership details would e-mail email@example.com.
Who qualifies for DNSDB Access?
DNSDB is a beta service provided to specific vetting individuals to gain experience, feedback, and investigative insight. This information is used through the beta's life cycle. The DNSDB beta is restricted to qualified & vetted investigators, law enforcement, security companies, SIE peers, and major contribute of passive DNS data.
We have four ways to access DNSDB beta. Each are aligned with a sustainable public benefit service.
Vetted Member of the Operational Security Community Members of operational trust and investigative teams whose group maintains the accountable integrity of each member can apply for a DNSDB UI account. The program is currently in the beta stage until scalable access is developed. Applications will check for two criteria: valid and signed PGP key and active membership in one of the recognized operational security groups. These groups today include the investigative teams in OPSEC Trust, but expand to others as the tools evolve.
Passive DNS Contributors All organizations who contribute passive DNS data to the Farsight program have DNSDB access during the beta. This is public benefit fairness. The contributor submits data with two layers of obscurity (no client IP addresses or IDs of the contribution source) and gains global insight in return for their participation. The User Interface allows the organization to gain immediate value from their public benefit contribution.
SIE Peers Organizations who have a box and peer at an Security Information Exchange (SIE) node can apply for a DNSDB account. These accounts are granted to the SIE peers to facilitate passive DNS data integration.
All applications should e-mail to firstname.lastname@example.org. Please include name, e-mail, contact phone number, and public PGP key with a location of the key server used.
How we Protect Privacy in our DNSDB System
Our goal is the aggregated data. Our passive DNS project - DNSDB - focuses on the broad internet "situation awareness" of DNS traffic. As such, we do not need the client details (i.e. the IP addresses) or keep the details of the data submitters in the DNSDB database.