[NCSG-PC] Fwd: [NCSG-Discuss] [Reminder][Public Comments] Call for Volunteers for NCSG Comment on Second Security, Stability, and Resiliency (SSR2) Review Team Draft Report

Rafik Dammak rafik.dammak at gmail.com
Thu Mar 19 00:52:54 EET 2020 

Hi all,

please review this as urgent request. the public comment was already
extended and Friday is the deadline.

Best,

Rafik

---------- Forwarded message ---------
De : Farell FOLLY <farell at benin2point0.org>
Date: jeu. 19 mars 2020 à 05:23
Subject: Re: [NCSG-Discuss] [Reminder][Public Comments] Call for Volunteers
for NCSG Comment on Second Security, Stability, and Resiliency (SSR2)
Review Team Draft Report
To: <NCSG-DISCUSS at listserv.syr.edu>


Dear All,

As I saw no one had volunteered to be the penholder for this public comment
and after discussion with Rafik, I went through and quickly drafted our
comment that you could find here
<https://docs.google.com/document/d/1OgStOzDmumwWrKMJZtAvdhWESeLlNrsqQHFS1oS9sVE/edit#>
.

Please review it and let your comments and suggestions. We are short in
time (2 days left).

Also, please excuse all the typos and incoherences if any. I drafted it
very quickly.



@__f_f__

Best Regards
____________________________________

(Ekue) Farell FOLLY
GNSO Councillor
linkedin.com/in/farellf






On 15 Mar 2020, at 21:44, Farell FOLLY <farell at benin2point0.org> wrote:

Dear All,

Following the zoom recording that I had shared, I would like to share some
inputs that could help those who are inter to get a glance view and perhaps
also give clues regarding how the volunteers will approach to draft the
response to the PC.


Most importantly, It is important to recall that is the role of the board
to conduct such a periodic review (under Bylaws section 4.6(c))  in line
with its commitment to enhance the operational stability, reliability,
resiliency, security, and global interoperability of the systems and
processes, both internal and external, that directly affect and/or are
affected by the Internet’s system of unique identifiers that ICANN
coordinates.

This second review (SSR2) follows a previous (SSR1) and proposes 30
recommendations that are subjected to the current call for public comment.

Of course, among those, there are recommendations that aim at checking
whether ICANN followed the recommendations of the SSR1. Then there are
three specific groups of issues covered by the review:


   1.  security, operational stability and resiliency matters, both
   physical and network, relating to the coordination of the Internet’s system
   of unique identifiers;
   2. conformance with appropriate security contingency planning framework
   for the Internet’s system of unique identifiers;
   3. maintaining clear and globally interoperable security processes for
   those portions of the Internet’s system of unique identifiers that ICANN
   coordinates.


The Review Team, throughout its recommendations, suggests many interesting
things, and in my opinion, the following -not limited to - could draw our
attention:


   1. The RT outlines in its #Rec 2 (which was suggested in SSR1 #Rec 9)
    regarding - Information Security Management Systems and Security
   Certifications - that ICANN should use  industry security standards (e.g.,
   ITIL, ISO 27001, SSAE-18), specifically that the Root Zone Management be in
   line with ISO 27031
   2. #Rec 4 deals with Budget Transparency
   3. #Rec 6 to Create a Position Responsible for Both Strategic and
   Tactical Security and Risk Management.
   4. #Rec 11 to Lead Efforts to Evolve Definitions Around Abuse and Enable
   Reporting Against Those Definitions
   5. #Rec 12 to Create Legal and Appropriate Access Mechanisms to WHOIS
   Data
   6. #Recc 13 to Improve the Completeness and Utility of the Domain Abuse
   Activity Reporting Program
   7. #Rec 15 to Enhance Contracts with Registrars and Registries to Incent
   the Mitigation of DNS Abuse
   8. #Rec 16  to Create Pricing Incentives for Contracted Parties to
   Mitigate Abuse and Security Threats
   9. #Rec 21 to Implement the Recommendations from SAC063 and SAC073 and
   Establish Formal Procedures for Key Rollovers
   10. #Rec 26 6 Document, Improve, and Test the EBERO Processes,
   11. #Rec 30 1 Clarify the SSR Implications of DNS-over-HTTP


With that in mind, I hope to have highlighted some important faces of the
report that we have to comment on.

I wish you all a nice week.

Stay healthy. We here in Germany are all in quarantine….Working at home for
6 weeks.

@__f_f__

Best Regards
____________________________________

(Ekue) Farell FOLLY
GNSO Councillor
linkedin.com/in/farellf






On 14 Feb 2020, at 08:48, Farell FOLLY <farell at benin2point0.org> wrote:

Dear All,

Regarding this public comment,  I suggest you watch this zoom recording for
the webinar that was held on February 10th, if you haven’t attended it. It
is very insightful and give a detailed history of the work as well as the
details about each recommendation.

If you click on the link, the download will start, otherwise you can go to
the webinar page
<https://community.icann.org/display/SSR/Webinar:+SSR2+Draft+Report> and
choose whatever recording that suits your needs.

https://icann.zoom.us/rec/play/uJMlJumtrTk3GIfGtwSDVqN4W465LaKs0yBL_fBcyBrmACMANAD3MrFHY-IxFjykyjSOhyWX4gf1oju0




@__f_f__

Best Regards
____________________________________

(Ekue) Farell FOLLY
GNSO Councillor
linkedin.com/in/farellf






On 5 Feb 2020, at 22:41, Rafik Dammak <rafik.dammak at GMAIL.COM> wrote:

hi all,

please let me know offlist if you want to join drafting for this important
public comment.

Best,

Rafik

Le lun. 27 janv. 2020 à 07:45, Rafik Dammak <rafik.dammak at gmail.com> a
écrit :

> Hi all,
>
> resending the call for volunteers, please let me know if you want to join
> the drafting of NCSG comment.
>
> Best Regards,
>
> Rafik
>
>
> Le sam. 25 janv. 2020 à 04:20, Rafik Dammak <rafik.dammak at gmail.com> a
> écrit :
>
>> Hi all
>>
>> ICANN published the new public consultation on Second Security,
>> Stability, and Resiliency (SSR2) Review Team Draft Report. The SSR had some
>> issue and was paused for some time but it was able now to deliver its first
>> report for review. We should comment on this and share our input.
>>
>> For more background and explanation you can find more info here:
>> https://www.icann.org/public-comments/ssr2-rt-draft-report-2020-01-24-en
>>
>> I created this google doc to be used during the drafting and accessible
>> to all in order to kick off the discussion and comments:
>> https://docs.google.com/document/d/1OgStOzDmumwWrKMJZtAvdhWESeLlNrsqQHFS1oS9sVE/edit
>> <https://docs.google.com/document/d/1OgStOzDmumwWrKMJZtAvdhWESeLlNrsqQHFS1oS9sVE/edit>
>>
>> Please let me offline if you want to volunteer to participate in drafting
>> the NCSG comment and join the drafting team. We can leverage our rep to
>> SSR2 Naveed for guidance and insight about the proposed recommendations.
>>
>> You can find previous public comments submitted by NCSG in this wiki page
>> https://community.icann.org/display/gnsononcomstake/Public+Comments+-+2020 and
>> listing those who drafted them.
>>
>> Taking this opportunity to wish you happy holidays and happy new year!
>>
>> Best Regards,
>>
>> Rafik Dammak
>>
>> NCSG Policy Committee Chair
>>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ncsg.is/pipermail/ncsg-pc/attachments/20200319/25c1a463/attachment.htm>

More information about the NCSG-PC mailing list