Security Policy & Best Practices for Domain Name Owners

Introduction

This policy provides guidance for Trustname customers to protect their domain names, DNS records, and associated services. By following these best practices and utilizing our built-in tools, you can minimize the risk of domain hijacking, email spoofing, and unauthorized access.

1. Secure Account Management

1.1 Multi-Factor Authentication (MFA)

Enable MFA for your Trustname account to add a second layer of login protection.

Action: Go to Account Settings → Security to enable.

1.2 Strong Passwords

Use passwords with at least 12 characters, including upper and lowercase letters, numbers, and symbols. Avoid reusing passwords from other services.

1.3 Account Lockout

Accounts are automatically locked after repeated failed login attempts to protect against brute-force attacks. You will receive instructions for secure account recovery.

2. Domain Registration Controls

2.1 Registration Verification

Trustname verifies new domain registrations via email to prove ownership. In some cases, phone verification may be required for added assurance.

2.2 WHOIS Privacy

Activate WHOIS privacy (where supported) to protect your personal details from being publicly exposed in the domain registration database.

2.3 Domain Locking

Enable registrar and registry locks to prevent unauthorised changes, updates, or transfers.

Action: Go to My Domains → Security → Enable Locking Options

3. DNS Security

3.1 DNSSEC (Domain Name System Security Extensions)

Enable DNSSEC to ensure the authenticity and integrity of your DNS data and prevent DNS spoofing.

Action: Activate DNSSEC from your domain management panel.

3.2 DMARC, SPF, and DKIM

Protect your domain against email spoofing by configuring SPF, DKIM, and DMARC records. These standards verify that email from your domain is legitimate.

Action: Use the Email Security Wizard to set them up.

3.3 CAA (Certification Authority Authorization) Records

Add CAA records to your DNS to specify which Certificate Authorities (CAs) are permitted to issue SSL certificates for your domain.

3.4 SSL Certificates and HTTPS Configuration

Using HTTPS protects your website visitors and improves trust. Obtain an SSL certificate and configure HTTPS to:

• Encrypt traffic between your users and your server

• Improve SEO and browser security compliance

• Prevent data interception and tampering

How to Implement:

• Use a free SSL certificate (e.g., Let’s Encrypt) or purchase a premium certificate from a trusted CA

• Install the certificate on your hosting server

• Ensure HTTP redirects to HTTPS are properly configured

• Use HSTS headers where appropriate

Trustname provides SSL purchasing options and DNS management support for CAA and HTTPS-related settings.

4. Monitoring and Reporting

4.1 Suspicious Activity Monitoring

Monitor your domains and account activity for unauthorised logins or changes. Trustname provides audit logs and alerts for sensitive actions.

4.2 Abuse Reporting

Report any suspected abuse, phishing, or malicious activity using our dedicated abuse channel.

Contact: abuse@trustname.com or Submit Abuse Report (preferred)

4.3 Monitoring for Domain Hijacking

We notify customers of critical changes (e.g., contact or nameserver updates) to detect potential hijacks. Use registrar locks and validate alerts immediately.

5. Security Training and Awareness

5.1 Customer Education

Review our Help Center for practical security guides, DNS setup tutorials, and email protection advice.

5.2 Internal Training

Trustname’s staff receive ongoing security training and follow industry protocols to manage registrar systems securely.

6. ICANN and Registry Compliance

6.1 Registrar Accreditation

Trustname adheres to ICANN’s Registrar Accreditation Agreement (RAA) and its obligations for WHOIS accuracy, data escrow, and domain lifecycle processes.

6.2 Registry Policy Compliance

We ensure compliance with the policies of each TLD registry, including support for DNSSEC, Registry Lock, and abuse response mechanisms.

Summary of Recommendations