SAC102 SSAC Comment on the Updated Plan for Continuing the Root KSK Rollover

Similar documents
SAC 047 SSAC Comment on the ICANN gtld Registry Transition Processes Model

SSAC Improvements Implementation Plan. SSAC Improvements Implementation Plan

SSAC Activities Update. Patrik Fältström, SSAC Chair ICANN58 March 2017

SAC089: SSAC Response to ccnso Comments on SAC084. Bart Boswinkel (ccnso support staff), Chris Disspain, Ram Mohan (ICANN Board)

SSAC Comment Concerning JAS Phase One Report on Mitigating the Risk of DNS Namespace Collisions

SSAC Activities Update. Patrik Fältström, SSAC Chair ICANN56 June 2016

Security & Stability Advisory Committee. Update of Activities

Security and Stability Advisory Committee!! Activities Update! ICANN Beijing Meeting! April 2013!

SSAC Activities Update. Patrik Fältström, SSAC Chair ICANN-53 June 2015

Security & Stability Advisory Committee Public Meeting. 28 June 2012

Summary Report of Public Comment Proceeding

Security & Stability Advisory Committee Public Meeting. 15 March 2012

HEALTH CARE SYSTEMS RESEARCH NETWORK

UNIVERSITY OF TENNESSEE HEALTH SCIENCE CENTER INSTITUTIONAL REVIEW BOARD CONTINUING REVIEW OF RESEARCH

GULF ANGLER FOCUS GROUP INITIATIVE PROCESS OVERVIEW AND PHASES SUMMARY

Oklahoma State University Institutional Review Board Standard Operating Procedures

PSM I PROFESSIONAL SCRUM MASTER

Safety management The Firefighter Safety Maxim Risk assessment at an incident Tactical mode Emergency evacuation and tactical withdrawal

Purpose. Scope. Process flow OPERATING PROCEDURE 07: HAZARD LOG MANAGEMENT

Proposed fisheries management measures for English offshore MPAs in the Channel, the Southwest Approaches and the Irish Sea

Operating Committee Strategic Plan

THURSTON COUNTY FIRE/EMS RESPONSE TO LARGE SCALE VIOLENT INCIDENTS

RESOLUTIONS TO AMEND THE CONSTITUTION, BYLAWS AND REGULATIONS Annual General Meeting

THIS PAGE INTENTIONALLY BLANK

Saltwater Recreational Fisheries POLICY. U.S. Department of Commerce National Oceanic and Atmospheric Administration NOAA Fisheries Page 1

There are many reasons why people become involved in officiating Rugby.

University of Iowa External/Central IRB Reliance Process Standard Operating Procedure (SOP)

Fishery Improvement Projects

Fishery Improvement Projects

FIP Progress Ratings: A standardized tool for evaluating FIP progress

The primary purpose of the TFF is to help promote a healthy farm tenanted sector in Scotland. It aims to fulfil this purpose by:

National Paralympic Committee Presidents / Secretaries General. Bonn, 31 October 2013 XG/IPC IPC Athlete Registration and Licensing Programme

USA Swimming National Team Steering Committee Policy Manual

Big Game Season Structure, Background and Context

CROSSWALK SAFETY ADVISORY COMMITTEE MINUTES January 22, 2015

Wayne State University Institutional Review Board

SIERRA-SACRAMENTO VALLEY EMS AGENCY PROGRAM POLICY REFERENCE NO. 834

ICC RELATIONSHIPS, ROLES AND RESPONSIBILITIES

APNIC Update. Tom Do Friday, 20 November 2015 RIPE 71 (Bucharest, Romania) Issue Date: Revision:

AGREEMENT BETWEEN THE U.S. FISH AND WILDLIFE SERVICE AND THE U.S. ARMY CORPS OF ENGINEERS FOR CONDUCTING FISH AND WILDLIFE COORDINATION ACT ACTIVITIES

The pinnacle of car racing is Formula One, and Red Bull

WHY BET WITH TIMEFORM? 1

Telephone Hearing on Friday 24 June 2016

CHAIR AND MEMBERS CIVIC WORKS COMMITTEE MEETING ON JANUARY 10, 2017

Mr. Joseph J. Lhota Chairman Metropolitan Transportation Authority 2 Broadway New York, NY Re: Train On-Time Performance Report 2017-F-8

Vision Zero in Canada. 9 th International Conference on Urban Traffic Safety August 2017

The below identified patent application is available for licensing. Requests for information should be addressed to:

World Bowling Tour WORLD BOWLING TOUR. Rules Content

A study on the relation between safety analysis process and system engineering process of train control system

Update on Columbia Basin Partnership Task Force

Archery Public Advisory Committee (ARPAC)

EBA s REVIEW OF THE IRB APPROACH

IN THE MATTER OF PROCEEDINGS BROUGHT UNDER THE ICC ANTI-CORRUPTION CODE. Between: THE INTERNATIONAL CRICKET COUNCIL. and MR IRFAN AHMED DECISION

WTBA World Bowling Tour WORLD BOWLING TOUR. Rules Content

The Scrum Guide. The Definitive Guide to Scrum: The Rules of the Game. October Developed and sustained by Ken Schwaber and Jeff Sutherland

Fitbit Pay. Terms and Conditions

Amendments to the International Convention on Maritime Search and Rescue of 27 April 1979

XX1 Commonwealth Games Gold Coast, Australia April Artistic Gymnastics. Selection Policy and Standards

AN EQUAL OPPORTUNITY EMPLOYER

CONTINUITY OF SERVICE PLAN FOR THE LRIT SYSTEM

CONTINUING REVIEW CRITERIA FOR RENEWAL

WELCOME & UPDATE Jim Chadwick welcomed all Board members, prospective new Board members and guests to the meeting.

Safety Standards Acknowledgement and Consent (SSAC) CAP 1395

Report to COUNCIL for decision

Systems of Accounting for and Control of Nuclear Material

Accelerate Your Riverbed SteelHead Deployment and Time to Value

Amendments to the International Convention on maritime search and rescue of 27 April Concluded London, 18 May 1998.

Best Practice RBI Technology Process by SVT-PP SIMTECH

Traffic Calming Policy

Understanding safety life cycles

1. Lean, Agile, and Scrum Values and Principles 1.1. describe Scrum s relationship to the Agile Manifesto.

PANEL DECISION. newcastlepaintball.com.au. Panel: Andrew Robertson. Hunter Valley Paintball Pty Ltd. Delta Force Properties Pty Ltd

Guidance Note. NXT Advisors

World Bowling Tour Rules

Information Sheet Guidance For IRBs, Clinical Investigators, and Sponsors

BUSINESS PLAN January Richard Wooles. Executive Director # West Broadway Vancouver, BC V5Y 3W2 Tel:

CPR Quality During OHCA Transport

Woodward Hill Elementary School School Safety and Operation Review

Appendix A. Road Classification Review of Outstanding Issues and Proposed Classifications (All Wards) Staff Report Road Classification System

Standard Operating Policy and Procedures (SOPP) 3:

Classification Rules for ITTF Para Table Tennis

Sembawang Country Club. Senior Golf Cup. Conditions of Competition

GROWING THE GAME FOR THE FUTURE

MINE SAFETY TARGETED ASSESSMENT PROGRAM. Ground or strata failure NSW metalliferous mines. April

TERMS OF REFERENCE. 1. Background

To comply with the OHS Act, the responsible manager must carry out and document the following:

CYCLING CANADA NATIONAL TEAM SELECTION POLICY GENERAL CONDITIONS AND CRITERIA FOR SELECTION TO ALL NATIONAL TEAM PROGRAMS

OHRP Guidance on Written IRB Procedures

COMPLIANCE MONITORING

SOP 5.06 Full Committee Review: Initial IRB Review

CONTENTS PREFACE 1.0 INTRODUCTION AND SCOPE 2.0 POLICY AND GOVERNANCE 3.0 SUMMARY OF PROGRESS 4.0 NATURE OF DEMAND 5.0 TRAVEL AND PARKING INITIATIVES

Local Government Road Safety Summit - 9 April 2018

BC Taekwondo Canadian Sport for Life Implementation Plan

Agreement Between the Government of Canada and the Government of the United States of America on the Conservation of the Porcupine Caribou Herd

Netball Australia Bench Officials Accreditation Framework. Updated 2015

Members of the Board of Directors. Wendy Knowles, Clerk of the Board

EAST VALLEY SENIORS TENNIS LEAGUE BY-LAWS. Revised March 25, 2014 BY-LAWS

Duties of WAH Competent Persons

USA Track & Field TEAM LEADER SELECTION PROCEDURES 2016 Olympic Games January 16, 2015

Project & Task Work Health and Safety Risk Management Procedure

Transcription:

SAC102 SSAC Comment on the Updated Plan for Continuing the Root KSK Rollover A Comment from the ICANN Security and Stability Advisory Committee (SSAC) 20 August 2018

Preface This is a comment to the ICANN Board, the ICANN organization staff, the ICANN community, and, more broadly, the Internet community from the ICANN Security and Stability Advisory Committee (SSAC) about the ICANN organization s Updated Plan for Continuing the Root KSK Rollover. The SSAC focuses on matters relating to the security and integrity of the Internet s naming and address allocation systems. This includes operational matters (e.g., pertaining to the correct and reliable operation of the root zone publication system), administrative matters (e.g., pertaining to address allocation and Internet number assignment), and registration matters (e.g., pertaining to registry and registrar services). SSAC engages in ongoing threat assessment and risk analysis of the Internet naming and address allocation services to assess where the principal threats to stability and security lie, and advises the ICANN community accordingly. The SSAC has no authority to regulate, enforce, or adjudicate. SAC102 1

1 SSAC Comment on the Updated Plan for Continuing the Root KSK Rollover On 13 May 2018, the ICANN Board requested the SSAC to provide advice to the Board on the "Updated Plan for Continuing the Root KSK Rollover". 1,2 This comment represents the SSAC s response to that request. After reviewing pertinent information in the time available, the SSAC has not identified any reason within the SSAC s scope 3 why the rollover should not proceed as currently planned. Additionally, the SSAC suggests that ICANN establish a framework for scheduling further rolls of the root KSK based on analysis of the outcomes of this initial roll of the KSK. The SSAC is aware that the suspension of the plan in 2017 4 was caused by the consideration of new data that was not clearly understood, and which exposed a previously-unquantified risk. The SSAC is also aware that this data has been further analysed and notes that there is confidence 5 that this data does not alter the original assessment of overall risk with the KSK rollover. The plan to continue the KSK rollover differs from the earlier plan principally in the timeline. SSAC's comments and recommendations on various aspects of the root KSK rollover in prior SSAC advisories 6,7 remain unchanged and have been addressed in the ICANN plans. 8,9 The assessment of risk in this particular area has some uncertainty and therefore includes a component of subjective judgement. Individuals (including some members of the SSAC) have different assessments of the overall balance of risk of the resumption of this plan. The decision as to what level of risk is acceptable remains one for the ICANN Board to assess. 1 See Getting Additional Input on New KSK Roll Plan, https://www.icann.org/resources/boardmaterial/resolutions-2018-05-13-en#1.g 2 See Operational Plans for the Root KSK Rollover, https://www.icann.org/resources/pages/ksk-rolloveroperational-plans 3 See "ICANN Bylaws, Section 12.2(b)i", https://www.icann.org/resources/pages/governance/bylaws-en/#article12 4 See KSK Rollover Postponed, https://www.icann.org/news/announcement-2017-09-27-en 5 See, for example, Minimal User Impact Expected from Root Zone Key Signing Key (KSK) Rollover, https://www.icann.org/news/blog/minimal-user-impact-expected-from-root-zone-key-signing-key-ksk-rollover 6 See SAC063: SSAC Advisory on DNSSEC Key Rollover in the Root Zone 7 See SAC073: SSAC Comments on Root Zone Key Signing Key Rollover Plan 8 See "2017 KSK Rollover Operational Implementation Plan", https://www.icann.org/en/system/files/files/kskrollover-operational-implementation-plan-22jul16-en.pdf 9 See "2018 KSK Roll Operational Implementation Plan", https://www.icann.org/en/system/files/files/2018-ksk-rolloperational-implementation-plan.pdf SAC102 2

2 Acknowledgments, Disclosures of Interests, Dissents, and Withdrawals In the interest of transparency, these sections provide the reader with information about four aspects of the SSAC process. The Acknowledgments section lists the SSAC members, outside experts, and ICANN staff who contributed directly to this particular document. The Disclosures of Interest section points to the biographies of all SSAC members, which disclose any interests that might represent a conflict -real, apparent, or potential -with a member s participation in the preparation of this Comment. The Dissents section provides a place for individual members to describe any disagreement that they may have with the content of this document or the process for preparing it. The Withdrawals section identifies individual members who have recused themselves from discussion of the topic with which this Comment is concerned. Except for members listed in the Dissents and Withdrawals sections, this document has the consensus approval of all of the members of SSAC. 2.1 Acknowledgments The committee wishes to thank the following SSAC members for their time, contributions, and review in producing this comment. SSAC members Benedict Addis Jaap Akkerhuis Lyman Chapin kc claffy Jay Daley Patrik Fältström Paul Ebersman James Galvin Robert Guerra Geoff Huston Merike Kaeo Andrei Kolesnikov Warren Kumari Jacques Latour Barry Leiba John Levine Carlos Martinez Danny McPherson Ram Mohan Russ Mundy Rod Rasmussen Suzanne Woolf ICANN staff Roy Arends David Conrad SAC102 3

Andrew McConachie (editor) Kathy Schnitt Steve Sheng 2.2 Disclosures of Interest SSAC member biographical information and Disclosures of Interest are available at: https://www.icann.org/resources/pages/ssac-biographies-2018-03-02-en 2.3 Dissents Lyman Chapin, kc claffy, Jay Daley, Warren Kumari and Danny McPherson have provided the following dissent: The decision to proceed with the keyroll is a complex tradeoff of technical and non-technical risks. While there is risk in proceeding with the currently planned roll, we understand that there is also risk in further delay, including loss of confidence in DNSSEC operational planning, potential for more at-risk users as more DNSSEC validation is deployed, etc. While evaluating these risks, the consensus within the SSAC is that proceeding is preferable to delay. We personally evaluate the tradeoffs differently, and we believe that the risks of rolling in accordance with the current schedule are larger than the risks of postponing and focusing heavily on additional research and outreach, and in particular leveraging newly developed techniques that provide better signal and fidelity into potentially impacted parties. We would like to reiterate that we understand our colleagues' position, but evaluate the risks and associated mitigation prospects differently. We believe that the ultimate decision lies with the ICANN Board, and do not envy them with this decision. Finally, we would also like to expressly acknowledge the ICANN staff for all of their research, outreach, and discussion on this matter thus far. 2.4 Withdrawals Joe Abley SAC102 4

2024 © sportdocbox.com Privacy Policy | Terms of Service | Feedback