Update from ICANN staff on SSR Activities Greg Rattray Tuesday 21 st 2010.

Slides:

Advertisements

Similar presentations

Project Cycle Management

Advertisements

Prepared by Corporate Affairs September ICANN Update AfriNIC9 26 November 2008 Pointe aux Piments, Mauritius Anne-Rachel Inné ICANN.

1 ICANNs Contractual Compliance Program David Giza, Senior Director, Contractual Compliance Stacy Burnette, Director, Contractual Compliance ICANN Policy.

ICANN Strategic planning process Draft key priorities for the July 2006 – June 2009 Plan for community comment November 2005.

STAFF Implement Proposed action STAFF – Assess (initial AND revisions based on feedback) Implementation change? Policy guidance needed? Admin/error update?

ICANN Plan for Enhancing Internet Security, Stability and Resiliency.

DNS Security and Stability Analysis Working Group (DSSA)

GEOSS Data Sharing Principles. GEOSS 10-Year Implementation Plan 5.4 Data Sharing The societal benefits of Earth observations cannot be achieved without.

The Role of Governments Caribbean Telecommunications Union Ministerial Seminar May 29, 2012 Heather Dryden Chair - Governmental Advisory Committee, ICANN.

Draft Roadmap to Implement SAC 051 Steve Sheng, ICANN 1.

Update on ccTLD Agreements Montevideo 9 September, 2001 Andrew McLaughlin.

ICANN Security and Stability Advisory Committee ICANN Meetings Rio de Janeiro March 26, 2003.

Governmental Advisory Committee New gTLD Program Briefing 19 June 2010.

Internationalized Domain Names Status Report Prepared for: ICANN Meeting, Lisbon 29 March, 2007 Tina Dam IDN Program Director ICANN

Draft Action Plan Update – Agenda Item No. 5D Central Valley Flood Protection Board.

Cairo 2 November Agenda  Guidebook overview  Supporting and explanatory materials  Guidebook Module detail  Probable timelines 2.

EEN [Canada] Forum Shelley Borys Director, Evaluation September 30, 2010 Developing Evaluation Capacity.

Geneva, Switzerland, September 2014 ENISA role in ICT standardization Sławomir Górniak, ENISA ITU Workshop on “ICT.

Orientation to the Accreditation Internal Evaluation (Self-Study) Flex Activity March 1, 2012 Lassen Community College.

New gTLD Basics. 2  Overview about domain names, gTLD timeline and the New gTLD Program  Why is ICANN doing this; potential impact of this initiative.

Introduction to ICANN’s new gTLD program. A practical example: the Dot Deloitte case. Jan Corstens, Partner, Deloitte WIPO Moscow, 9 Dec 2011.

European Union Agency for Network and Information Security Follow ENISA: ENISA and standards Sławomir Górniak European Union Agency.

Policy & Implementation WG Initial Recommendations Report.

IANA Activities Update RIPE 68 Warsaw, Poland May 2014.

2011 – 2014 ICANN Strategic Plan Development Stakeholder Review 4 November 2010.

1 ENISA’s contribution to the development of Network and Information Security within the Community By Andrea PIROTTI Executive Director ENISA Cyprus, 28.

Maryland Health Benefit Exchange: An Update October 5, 2011 Charles Milligan DHMH Deputy Secretary, Health Care Financing.

FY15 Operating Plan Framework Conference call Community/Staff March 12 th 2014.

Greg Rattray ICANN Chief Internet Security Advisor

Update report on GNSO- requested Whois studies Liz Gasster Senior Policy Counselor 7–12 March 2010.

2 Dedicated to keeping the Internet secure, stable and interoperable Formed in 1998 as a not- for-profit public-benefit corporation Follows multistakeholder.

Security, Stability & Resiliency of the DNS Review Team (SSR) Interaction with the Community.

ICANN LAC Regional Strategy Final Results URUGUAY February 7-8, 2013.

Comprehensive Review of the Public Safety Communications Center Phase 2 Report County of Dane, WI February 12, 2009.

CcNSO Update for APTLD New Delhi February 2012 Keith Davidson, ccNSO Councillor.

March 2015 Inter-American Network for the Prevention of Violence and Crime.

1 IDN TLD Progress Veni Markovski Manager, Regional Relations ccTLD Meeting, Slovenia – 7-8 Sept 2009.

JIG (Joint ccNSO-GNSO IDN Group) Update APTLD | New Delhi Feb 23, 2012.

New gTLD Basics. 2  Overview about domain names, gTLD timeline and the New gTLD Program  Why is ICANN doing this; potential impact of this initiative.

1 18 March 2010AGNA meeting EASAC update Yves Morier.

EGNRET Projects Cary Bloyd EGNRET 27 Zhuhai, China 9-11 October 2006.

Text. #ICANN49 Data & Metrics for Policy Making Working Group Thursday 27 March 2014 – 08:00.

GOVERNOR’S EARLY CHILDHOOD ADVISORY COUNCIL (ECAC) September 9, 2014.

1 1 The GNSO Role in Internet Governance Presented by: Chuck Gomes Date: 13 May 2010.

Conficker Update John Crain. What is Conficker? An Internet worm  Malicious code that is self-replicating and distributed over a network A blended threat.

DAC 8 Renewal proposal to ICANN October 11, 2005 Geneva.

Security, Stability & Resiliency of the DNS Review Team Wednesday, 8 December 2010.

IDN UPDATE Tina Dam ICANN Chief gTLD Registry Liaison Public Forum, Wellington 30 March 2006.

1 Possible elements for the EGTT future programme of work on technologies for adaptation Mr. Jukka Uosukainen Chair Expert Group on Technology Transfer.

ICANN Strategic Initiatives for Security, Stability and Resiliency - DNS CERT Posted for Public Comment at 1.

Governmental Advisory Committee Public Safety Working Group 1.

Update on WHOIS- related policy activities in the GNSO Liz Gasster Senior Policy Counselor ICANN ICANN 5 March

GNSO Public Council Meeting Wednesday, 17 July 2013.

1 New gTLD Program What kind of Internet do you want? Speakers: Olof Nordling and Karla Valente Date: June 11, 2008.

Update on ESCAP Work on Trade Facilitation and implementation of the ROC-TF mechanism Regional Organizations Cooperation Mechanism for Trade Facilitation.

Global Partnership for Enhanced Social Accountability (GPESA) December 19, 2011 World Bank.

Update on Consumer Choice, Competition and Innovation (CCI) WG Rosemary Sinclair.

“DEVELOPMENT OF A NATIONAL ICT POLICY ICT Policy in the ECTEL Member States Mr. Donnie Defreitas MSc, (Hav.), ECTEL Caribbean Internet Forum Bay Gardens.

Update to ALAC on the RAA Negotiations Margie Milam 26 June 2012.

1 27Apr08 Some thoughts on Internet Governance and expansion of the Domain Name space Paul Twomey President and CEO 9 August 2008 Panel on Internet Governance.

12 th Meeting of the GBIF Participant Nodes Committee 6-7 October 2013, Berlin, Germany Towards a generic work programme for a Node Olaf Bánki Senior Programme.

Update on New gTLD Auction Proceeds 17 October 2015.

National Standardization Secretariat ITU Regional Standardization Forum for Africa and SG5RG-ARF and SG5RG-AFR Meetings Livingstone, Zambia March.

GAC SESSION 7: PSWG Update. PUBLIC SAFETY WORKING GROUP (PSWG) – UPDATE TO THE GAC Agenda Item 7 | ICANN 56 | 28 June 2016.

Country and Territory Identifiers in New gTLDs

Implementation Review Team Meeting

GEOSS Data Sharing Principles

IDN Variant TLDs Program Update

Accreditation Update Regional Municipality of Durham March 15, 2018.

Presentation transcript:

Update from ICANN staff on SSR Activities Greg Rattray Tuesday 21 st 2010

Malicious Conduct & New gTLD Program As ICANN initiated work with the community on the new gTLD program, the community raised concerns regarding the potential for increased malicious conduct within the new gTLD space. ICANN initiated malicious conduct study in March 2009 as one of four overarching issues Malicious conduct study included participation from various sources: Anti Phishing community and APWG members Registry Internet Safety Group (RISG) Security and Stability Advisory Committee (SSAC) Computer Emergency Response Teams (CERT) Banking and finance industries Internet security experts ICANN concluded and published initial study in October 2009; posted with DAG 3 materials

Malicious Conduct Results Study provided nine recommendations related to new gTLD program Vet registry operators – in DAG Demonstrate plan for DNSSEC deployment – in DAG Prohibit wildcarding – Board resolution; in DAG Remove orphan glue records – in DAG Require thick WHOIS – in DAG Document registry level abuse contacts and procedures – in DAG Expedited registry security request process – in place Centralize zone-file access – advisory group formed; recommendations provided – seeking community comment; potential implementation Create a framework for high security zone verification – advisory group underway; technical framework developed;awaiting recommendation Not new gTLD specific

Recommendation – Document Registry Level Abuse Contacts and Procedures Recommendation overview Establish a single point of contact for TLD abuse complaints Registries provide a description of their policies designed to combat abuse. Fundamental step in allowing successful efforts to combat malicious conduct Current status Requirement for all new gTLDs per the latest Registry Agreement 4

Recommendation – Centralize Zone- File Access Recommendation overview Make registry zone file data available through centralized source Allows for more accurate and rapid identification of key points of contact Reduces the time necessary to take corrective action Current status Zone File Access Advisory Group (“ZFA AG”) created Created proposal for mechanism to support centralization of access to zone files ZFA AG completed work on strategy proposal on 12 May ICANN staff currently planning implementation for recommendations 5

Recommendation – Draft Framework for High Security Zone Verification Recommendation overview Create a voluntary program designed to designate TLDs wishing to establish and prove an enhanced level of security and trust Provides a certification mechanism for TLDs that desire to distinguish themselves as secure and trusted May benefit certain TLD business models Current status ICANN formed High Security Zone Top Level Domain Advisory Group (“HSTLD AG) HSTLD AG to propose an approach to a voluntary HSTLD program Program operated by a 3 rd party Latest progress on the HSDTLD program available here: 6

Way Forward Update memo published May 2010 Located at malicious-conduct-memo-update-28may10-en.pdf Measures will contribute significantly to security and combating the conduct of malicious conduct within the Seek to support advisory group efforts outlined on ZFA strategy paper and HSTLD advisory group o ZFA: 12may10-en.pdfwww.icann.org/en/topics/new-gtlds/zfa-strategy-paper- 12may10-en.pdf o HSTLD: snapshot-2-16jun10-en.pdf All posted as part of the DAG 4 explanatory memos

Strategic Security Initiatives/DNS CERT: State of Play DNS CERT Operational Requirements Workshop - April Posting of Documents Summary of Comments; Workshop report; List of Consults Exchange of Letters with ccNSO/GSNO/ALAC Call for and preparation steps for working group Discussion within OARC of two-tier model for organization/foundation for DNS security and supporting DNS-CERT

Strategic Security Initiatives/DNS CERT: Main Themes Topic worth discussing Need deeper understanding of threats & risks Understand current response capabilities Does this overlap with current CSIRT capabilities? Focus on strengthening CSIRT capabilities Limited response capabilities in less-resourced regions

Strategic Security Initiatives/DNS CERT: Way Forward From formal summary Work on threat and risk understanding Continue to work with FIRST/CISRTs; initiate survey with CERT/CC on National CERT perspectives Recognize desire ICANN not operate; focus on working with others and facilitating dialogue Discuss workshop and Conficker reports Support community dialogues on DNS-CERT requirements, organizational and resources

 Security Strategic Initiatives paper suggested ICANN conduct a gap analysis and system-wide DNS Risk Assessment as well as contingency planning and exercising  Risks on the “write” side  Contingency planning & response on response side  Interest in the community for such an assessment, leveraging previous work from ENISA, IT Sector Baseline Risk Assessment, SSAC, others  Seeking dialogue with community on next steps DNS Risk Assessment