Security & Stability Advisory Committee Public Meeting. 15 March 2012

Similar documents
Security & Stability Advisory Committee Public Meeting. 28 June 2012

Security & Stability Advisory Committee. Update of Activities

Security and Stability Advisory Committee!! Activities Update! ICANN Beijing Meeting! April 2013!

SSAC Activities Update. Patrik Fältström, SSAC Chair ICANN58 March 2017

SSAC Activities Update. Patrik Fältström, SSAC Chair ICANN56 June 2016

SSAC Activities Update. Patrik Fältström, SSAC Chair ICANN-53 June 2015

SAC089: SSAC Response to ccnso Comments on SAC084. Bart Boswinkel (ccnso support staff), Chris Disspain, Ram Mohan (ICANN Board)

SAC 047 SSAC Comment on the ICANN gtld Registry Transition Processes Model

SSAC Comment Concerning JAS Phase One Report on Mitigating the Risk of DNS Namespace Collisions

Summary Report of Public Comment Proceeding

SAC102 SSAC Comment on the Updated Plan for Continuing the Root KSK Rollover

Wisconsin Department of Transportation Inter-Tribal Task Force Bylaws

SSAC Improvements Implementation Plan. SSAC Improvements Implementation Plan

LISP-DDT implementation status and deployment considerations

APNIC Update. Tom Do Friday, 20 November 2015 RIPE 71 (Bucharest, Romania) Issue Date: Revision:

BIKE PLAN CONTENTS GATEWAY

Institutional Review Board Standard Operating Procedure. Suspension and Termination of IRB Approval

Category Description This policy and procedure applies to the Sparrow research community.

TABLE OF CONTENTS. Executive Summary

USOC ATHLETE ADVERTISING WAIVER SYSTEM. User Guide October 2015

Proposed fisheries management measures for English offshore MPAs in the Channel, the Southwest Approaches and the Irish Sea

CONTINUING REVIEW CRITERIA FOR RENEWAL

Stakeholder Communication and Public Involvement Plan

City of Ann Arbor Pedestrian Safety & Access Task Force

APNIC Update. LACNIC 25 La Habana, May Paul Wilson

Eugene s Strategic Pedestrian and Bicycle Plan

Local Government Road Safety Summit - 9 April 2018

// RoWSaF Making roads safer for road workers rowsaf.org.uk. RoWSaF Strategy 2015

Bylaws Page 1

Illinois Institute of Technology Institutional Review Board Handbook of Procedures for the Protection of Human Research Subjects

RESOLUTIONS TO AMEND THE CONSTITUTION, BYLAWS AND REGULATIONS Annual General Meeting

Policy #102 - Team Staff/Officials Certification

6/19/2014. Children s Hospital of Philadelphia: Recent Changes. Recent Changes in CHOP IRB Procedures

CONTINUING REVIEW CRITERIA FOR RENEWAL

Monocacy Youth Basketball Association Organization Documents and Bylaws Effective September 1, 2017

Safe Routes to School

The Canadian Policy Against Doping in Sport 2011

CLEAR COLLISION LEAD EVALUATE ACT RE-OPEN KEEPING TRAFFIC MOVING. CFOATechRescue ConfJuly2013v0.1

Exhibit 1 PLANNING COMMISSION AGENDA ITEM

City of Novi Non-Motorized Master Plan 2011 Executive Summary

UNITED STATES OLYMPIC COMMITTEE. USOC ATHLETE ADVERTISING WAIVER SYSTEM User Guide October 25, 2017

Chapter 2.7 Bylaw sport governance and management

Hazard Reporting Training Guide

PUBLIC AGENDA STREET ACTIVITY STEERING COMMITTEE

UNIVERSITY OF TENNESSEE GRADUATE SCHOOL OF MEDICINE INSTITUTIONAL REVIEW BOARD PROCEDURES FOR FULL BOARD REVIEW

Opening remarks for the International Forum for Sports Integrity. 15 February Check against delivery-

ECA-ECE-ICAP Workshop on Improving Road Safety Situation in Africa: UN Road Safety Conventions and Approaches to Preventing Drink Driving

Bus and Transit Lane Review Update

CITY OF PITT MEADOWS

NONCOMPLIANCE. 1. Overview

FIL Application for International Olympic Committee (IOC) Recognition

The Canadian Policy Against Doping in Sport

BD RESOLUTION NO RESOLUTION ADOPTING THE VISION ZERO RAMP INTERSECTION STUDY PHASE 1

Questions & Answers About the Operate within Operate within IROLs Standard

IRB COMPOSITION AND IRB MEMBER ROLES AND RESPONSIBILITIES

SUPPLIER HEALTH AND SAFETY. Supporting a healthy and safe working environment for our people and customers

Council CNL(16)21. Annual Progress Report on Actions Taken Under the Implementation Plan for the Calendar Year 2015

Hero Indian Super League

University of Cincinnati. Radiation Safety Committee Operations Guidelines Statement of Policy (RSC Guidelines) RSC Guidelines (revision 5)

Update on Bicycle Helmet Ordinance. Presented to the Quality of Life & Environment Committee May 12, 2014

Agenda Item 6-ATM Coordination (Airspace restructuring, AIS and SAR agreements)

University of Victoria Campus Cycling Plan Terms of Reference. 1.0 Project Description

APLC/MSP.16/2017/WP.1

5. Pedestrian System. Accomplishments Over the Past Five Years

Organising the National Technology Needs Assessment (TNA) Process: An Explanatory Note

Traffic Control: An Overview. May 2016

Human Research Protection Program Policy

Legal Affairs Department Ref. No. HMSlMCSlshr Lausanne, 1' February 201 1

Yale University Human Research Protection Program

Staff Report City of Manhattan Beach

Council CNL(16)31. Annual Progress Report on Actions Taken Under the Implementation Plan for the Calendar Year EU - Finland

Signature Date Date First Effective: Signature Date Revision Date:

Road safety. REGIONAL COMMITTEE Provisional Agenda item 8.5. SEA/RC70/11 Malé, Maldives 6 10 September July Seventieth Session

Land Use Patterns. Traditional Modern

CUNY HRPP Policy: Suspension or Termination of Human Subject Research

City of Ann Arbor Pedestrian Safety & Access Task Force

Section 1 Preparation

Paper for Consideration by HSSC8 Development of an Additional Bathymetry Layer standard based on S-57/S-52

OHRP Guidance on Written IRB Procedures

The Berwick-upon-Tweed Conservation Areas Advisory Group (CAAG)

DATE: January 13, 2014 REPORT NO. CD TYPE OF REPORT: CONSENT ITEM [ ] ITEM FOR CONSIDERATION [ X ]

BBVCC Golf Committee

THE CORPORATION OF THE CITY OF PENTICTON COUNCIL REPORT. DATE: 9 th January 2012 RES:

Below are some of the word marks that have been registered by FIVB: FIVB FIVB Volleyball Women s World Championship Italy 2014

University of Wisconsin Colleges Administrative Policy #56 NON-COMPLIANCE IN HUMAN SUBJECTS RESEARCH

Public Workshop Santa Monica Pedestrian Action Plan

ARLINGTON COUNTY, VIRGINIA

PROJECT BACKGROUND/DESCRIPTION

Emergency Action Plans for Dam Safety

BEST EVER GOLF ASSOCIATION (BEGA) BY-LAWS

3 FRAMEWORK FOR IMPLEMENTATION OF LAKE-TO-LAKE CYCLING ROUTE

Caltrain Bicycle Parking Management Plan

Toward Zero Deaths. Regional SHSP Road Show Meeting. Virginia Strategic Highway Safety Plan. presented by

USTA NORTH CAROLINACOMMITTEES DESCRIPTIONS & NAMES

21. CHRISTCHURCH CYCLE LANES: PROPOSED COLOURED SURFACING CHANGE

Discussion Paper Men s and Boy s Competition Review 26 May 2017

US Youth Soccer National League Charter as of October 25, 2017

Chapter VISION, MISSION, AND GOALS AND OBJECTIVES. Vision. Mission. Goals and Objectives CONNECTING COMMUNITIES ACROSS THE ST.

Northeast Area Monitoring and Assessment Program (NEAMAP)

Weston Downs Traffic Study City of Vaughan. Appendix B. Public Consultation Materials. Page 1

Transcription:

Security & Stability Advisory Committee Public Meeting 15 March 2012 1

Agenda 8:30 to 8:45 am Overview -- Patrik Fältström, SSAC Chair 8:45 to 9:00 am SAC052: SSAC Advisory on Delegation of Single-Character Internationalized Domain Name Top-Level Domains -- Patrik Fältström 9:00 to 9:15 am SAC053: SSAC Report on Dotless Domains -- Patrik Fältström 9:15 to 9:30 am Measuring Outcomes - Ram Mohan, SSAC Liaison to the ICANN Board 2

Overview Security and Stability Advisory Committee Formed in 2001-2002 Decision to start: late 2001 First Operation: early 2002 Provides guidance to ICANN Board, Supporting Organizations and Advisory Committees, staff and general community Guidance areas are related to ICANN s mission, DNS, addressing, etc. 3

SSAC Charter/Mission The role of the Security and Stability Advisory Commi9ee ("SSAC") is to advise the ICANN community and Board on ma9ers rela@ng to the security and integrity of the Internet's naming and address alloca@on systems. See: h9p://www.icann.org/en/commi9ees/security/charter 15sep11 en.htm 4

SSAC Membership Members as of 16 March 2012: 38* Changes in 2012: 2 New Members and 1 Departing Member Changes in 2011: 4 New Members and 4 Departing Members Changes in 2010: 5 New Members and 5 Departing Members ICANN Bylaws change appointing members to staggered terms of 1, 2, and 3 years, which necessitates an Annual Review Process to reappoint members when their terms end *Pending Board new appointments 5

Recent Publications Published in 2012: [SAC053] SSAC Report on Dotless Domains [SAC052] SSAC Advisory on Delegation of Single-Character Internationalized Domain Name Top-Level Domains Published in 2011: [SAC051] SSAC Report on WHOIS Terminology and Structure [SAC050] SSAC Advisory on DNS Blocking Benefits Versus Harms [SAC049] DNS Zone Risk Analysis [SAC048] SSAC Comment on the Definition of Orphan Glue [SAC047] SSAC Comment on the ICANN gtld Registry Transition Processes Model 6

2012 Work Plan Current Work Parties/Working Groups/ Committees Membership Committee Internationalized Registration Data Working Group (IRD-WG) Domain Name System (DNS) Security and Stability Analysis Working Group (DSSA-WG) Impact of DNS Blocking Work Party Root Key Rollover Work Party 7

2012 Work Plan, Cont. Public Meetings and Collaboration Regular meetings with law enforcement agencies Briefings to Supporting Organizations and Advisory Committees at ICANN meetings Briefings with other community groups as requested Other Work Parties Identified for Future Work: Public interest (No Fee) Domain Holding Pen Security and Stability Issues Relating to New gtlds Deployment of IPv6 in addition to IPv4 8

Key Messages: SAC050 Blocking Consider the possible harm that an intervention might cause. Do not adversely affect Internet users outside of the organization s policy domain. All technical approaches to DNS blocking and attempts to circumvent will impact: Security and/or stability of users and applications; and Coherency or universal resolvability of the namespace. 9

Key Messages: SAC051 WHOIS Taxonomy The ICANN community should: 1. Adopt the terminology outlined in SAC051. 2. Evaluate and adopt a replacement domain name registration data access protocol that supports the query and display of Internationalized Domain Name Registration Data (DNRD) as well as addressing the relevant recommendations in SAC 003, SAC 027 and SAC 033. 3. Develop a uniform and standard framework for accessing DNRD that would provide mechanisms to define and implement a range of verification methods, credential services, and access control capabilities. 10

ICANN Proposed Roadmap to Implement SAC 051 28 October 2011 Board Directs ICANN Staff to: Produce, in consultation with the community, a roadmap for the coordination of the technical and policy discussions necessary to implement the recommendations outlined in SAC 051. Forward SAC 051 to ICANN's Advisory Committees and Supporting Organizations for their advice, if any, with regards to implementing the SSAC recommendations, and to forward SAC 051 to the Whois Review Team. 18 February 2012: Draft roadmap posted for public comment at: http:// www.icann.org/en/news/public-comment/sac-051-draftroadmap-18feb12-en.htm 15 March 2012: Public Workshop Replacement of WHOIS, Boungainvillea Room, 1300-1400 11

SAC 052 SSAC Advisory on Delegation of Single-Character IDN TLDs The SSAC recommends a very conservative approach to the delegation of single-character IDN top-level domains. Delegation of all single-character IDN TLDs in all scripts should be disallowed by default. Exceptions may be made for some scripts, but only after careful consideration of potential confusability both within and across scripts. ICANN should review the Findings of this report, and any policies that it adopts in response to Recommendation 1, no later than one year after the three work items mentioned above have been completed. 12

SAC 053 Dotless Domains Dotless domains will not be universally reachable, and the SSAC recommends strongly against their use. The SSAC also recommends that the use of DNS resource records such as A, AAAA, and MX in the apex of a Top-Level Domain (TLD) be contractually prohibited where appropriate and strongly discouraged in all cases. 13

Questions 14

SAC52: SSAC Advisory on the Delega@on of Single Character IDN Top Level Domains

Background Currently TLDs consisted of 2 or more characters (gtld >=3, cctld = 2). Recent discussion to allow single character TLDs (JIG). The ICANN Board asked SSAC for advice about the security and stability aspect of delegating single Character IDN TLDs (2011.08.28.16). Question also sent to ALAC and GAC. SAC052 SSAC Advisory on the Delegation of Single- Character Internationalized Domain Name Top-Level Domains is the SSAC s response to the Board.

Findings Finding 1: Single-character TLDs are more likely to cause user confusion than TLDs with more than one character. Finding 2: No other significant security concerns are apparent with the delegation of single-character TLDs. Finding 3: Current work on string similarity and variant issues has not been completed.

Recommendations The SSAC recommends a very conservative approach to the delegation of single-character IDN top-level domains. Delegation of all single-character IDN TLDs in all scripts should be disallowed by default. Exceptions may be made for some scripts, but only after careful consideration of potential confusability both within and across scripts.

Recommendations, Cont. The SSAC notes that because important relevant work on string similarity, IDN variant issues, and TLD label syntax is currently underway within ICANN, the IETF, and other bodies, ICANN should review the Findings of this report, and any policies that it adopts in response to Recommendation 1, no later than one year after the three work items mentioned above have been completed.

Questions?

SAC53: SSAC Report on Dotless Domains

Background A frequently asked question by new gtld applicants is: If I register "dot BRAND", will I be able to use the label BRAND alone in a URL (http://brand) or an email address (user@brand)? What will happen if I do? The SSAC calls a domain name that consists of a single label a dotless domain.

SSAC Findings The resolution of dotless domain names are not consistent or universal: Web Browsers Local Area Network issues DNS Stub Resolvers Email

As an Illustration When a browser is presented with a dotless domain (BRAND), it might: Poten@al Behavior Add popular domain suffix (.com,.co.uk) Append the DNS search path if specified (.company.com) Submit the query to search engine Submit the query directly to DNS Result No Guarantee of resolu@on No Guarantee of resolu@on No Guarantee of resolu@on Guaranteed 24

SSAC Findings (cont.) Dotless hosting violates a longstanding assumption that a dotless hostname is within an organization's trust sphere, and could present further problems to security and the ability to route traffic. 25

Recommendations Dotless domains will not be universally reachable, and the SSAC recommends strongly against their use. The SSAC also recommends that the use of DNS resource records such as A, AAAA, and MX in the apex of a Top- Level Domain (TLD) be contractually prohibited where appropriate and strongly discouraged in all cases.

Questions?

SSAC Outcomes Implementation Status

Goals To understand if the work the SSAC is doing is having the intended effect To improve SSAC work practices based on measuring outcomes of our existing work

What is the Intended Effect? - Are we providing advice in the areas outlined in the SSAC Charter; and - Is our advice being used by the ICANN community - Supporting Organizations - The Board of Directors 30

SSAC Work Results in Substantive Board Resolutions 2003: Message from SSAC to ICANN Board on SiteFinder contributed to the Board Decision on this issue 2009: SAC 037 resulted in the creation of joint GNSO-SSAC Working Group on internationalized Registration Data SAC 041 (along with SAC 006, SAC 015, SAC 032) resulted in Board action banning DNS redirection and synthesized DNS responses in new TLDs 2010: SAC 045 resulted in changes to the draft applicant guidebook. 2011*: SAC 047, 48 resulted in changes to the draft applicant guidebook. *(not through Board resolutions) 31

Implementation Status #1: Create an additional link on the SSAC web site table (document category) showing where each focus area/ category falls in the Charter. Status: Completed #2: Create a new web page on the SSAC web site tracking actions resulting from SSAC documents published since 2009. Status: In Development #3: Survey ICANN constituencies (GNSO, CCNSO, ALAC, GAC) to determine if and how they have used our papers to build any of their documents. Status: In Development #4: Review Google link statistics periodically for each document. Status: In Development. 32

Revised Document Categories including Links to Charter Tasks New link to charter, tasks are listed for each category

Questions?

2024 © sportdocbox.com Privacy Policy | Terms of Service | Feedback