[NCSG-PC] Fwd: [NCSG-Discuss] [Reminder][Public Comments] Call for Volunteers for NCSG Comment on Second Security, Stability, and Resiliency (SSR2) Review Team Draft Report
James Gannon
lists at icann.guru
Thu Mar 19 01:08:00 EET 2020
Made some edits, happy with it now.
---
James Gannon
From: NCSG-PC <ncsg-pc-bounces at lists.ncsg.is> on behalf of Rafik Dammak <rafik.dammak at gmail.com>
Date: Wednesday, 18 March 2020 at 22:53
To: ncsg-pc <ncsg-pc at lists.ncsg.is>
Subject: [NCSG-PC] Fwd: [NCSG-Discuss] [Reminder][Public Comments] Call for Volunteers for NCSG Comment on Second Security, Stability, and Resiliency (SSR2) Review Team Draft Report
Hi all,
please review this as urgent request. the public comment was already extended and Friday is the deadline.
Best,
Rafik
---------- Forwarded message ---------
De : Farell FOLLY <farell at benin2point0.org<mailto:farell at benin2point0.org>>
Date: jeu. 19 mars 2020 à 05:23
Subject: Re: [NCSG-Discuss] [Reminder][Public Comments] Call for Volunteers for NCSG Comment on Second Security, Stability, and Resiliency (SSR2) Review Team Draft Report
To: <NCSG-DISCUSS at listserv.syr.edu<mailto:NCSG-DISCUSS at listserv.syr.edu>>
Dear All,
As I saw no one had volunteered to be the penholder for this public comment and after discussion with Rafik, I went through and quickly drafted our comment that you could find here<https://docs.google.com/document/d/1OgStOzDmumwWrKMJZtAvdhWESeLlNrsqQHFS1oS9sVE/edit>.
Please review it and let your comments and suggestions. We are short in time (2 days left).
Also, please excuse all the typos and incoherences if any. I drafted it very quickly.
@__f_f__
Best Regards
____________________________________
(Ekue) Farell FOLLY
GNSO Councillor
linkedin.com/in/farellf<http://linkedin.com/in/farellf>
On 15 Mar 2020, at 21:44, Farell FOLLY <farell at benin2point0.org<mailto:farell at benin2point0.org>> wrote:
Dear All,
Following the zoom recording that I had shared, I would like to share some inputs that could help those who are inter to get a glance view and perhaps also give clues regarding how the volunteers will approach to draft the response to the PC.
Most importantly, It is important to recall that is the role of the board to conduct such a periodic review (under Bylaws section 4.6(c)) in line with its commitment to enhance the operational stability, reliability, resiliency, security, and global interoperability of the systems and processes, both internal and external, that directly affect and/or are affected by the Internet’s system of unique identifiers that ICANN coordinates.
This second review (SSR2) follows a previous (SSR1) and proposes 30 recommendations that are subjected to the current call for public comment.
Of course, among those, there are recommendations that aim at checking whether ICANN followed the recommendations of the SSR1. Then there are three specific groups of issues covered by the review:
1. security, operational stability and resiliency matters, both physical and network, relating to the coordination of the Internet’s system of unique identifiers;
2. conformance with appropriate security contingency planning framework for the Internet’s system of unique identifiers;
3. maintaining clear and globally interoperable security processes for those portions of the Internet’s system of unique identifiers that ICANN coordinates.
The Review Team, throughout its recommendations, suggests many interesting things, and in my opinion, the following -not limited to - could draw our attention:
1. The RT outlines in its #Rec 2 (which was suggested in SSR1 #Rec 9) regarding - Information Security Management Systems and Security Certifications - that ICANN should use industry security standards (e.g., ITIL, ISO 27001, SSAE-18), specifically that the Root Zone Management be in line with ISO 27031
2. #Rec 4 deals with Budget Transparency
3. #Rec 6 to Create a Position Responsible for Both Strategic and Tactical Security and Risk Management.
4. #Rec 11 to Lead Efforts to Evolve Definitions Around Abuse and Enable Reporting Against Those Definitions
5. #Rec 12 to Create Legal and Appropriate Access Mechanisms to WHOIS Data
6. #Recc 13 to Improve the Completeness and Utility of the Domain Abuse Activity Reporting Program
7. #Rec 15 to Enhance Contracts with Registrars and Registries to Incent the Mitigation of DNS Abuse
8. #Rec 16 to Create Pricing Incentives for Contracted Parties to Mitigate Abuse and Security Threats
9. #Rec 21 to Implement the Recommendations from SAC063 and SAC073 and Establish Formal Procedures for Key Rollovers
10. #Rec 26 6 Document, Improve, and Test the EBERO Processes,
11. #Rec 30 1 Clarify the SSR Implications of DNS-over-HTTP
With that in mind, I hope to have highlighted some important faces of the report that we have to comment on.
I wish you all a nice week.
Stay healthy. We here in Germany are all in quarantine….Working at home for 6 weeks.
@__f_f__
Best Regards
____________________________________
(Ekue) Farell FOLLY
GNSO Councillor
linkedin.com/in/farellf<http://linkedin.com/in/farellf>
On 14 Feb 2020, at 08:48, Farell FOLLY <farell at benin2point0.org<mailto:farell at benin2point0.org>> wrote:
Dear All,
Regarding this public comment, I suggest you watch this zoom recording for the webinar that was held on February 10th, if you haven’t attended it. It is very insightful and give a detailed history of the work as well as the details about each recommendation.
If you click on the link, the download will start, otherwise you can go to the webinar page<https://community.icann.org/display/SSR/Webinar:+SSR2+Draft+Report> and choose whatever recording that suits your needs.
https://icann.zoom.us/rec/play/uJMlJumtrTk3GIfGtwSDVqN4W465LaKs0yBL_fBcyBrmACMANAD3MrFHY-IxFjykyjSOhyWX4gf1oju0
@__f_f__
Best Regards
____________________________________
(Ekue) Farell FOLLY
GNSO Councillor
linkedin.com/in/farellf<http://linkedin.com/in/farellf>
On 5 Feb 2020, at 22:41, Rafik Dammak <rafik.dammak at GMAIL.COM<mailto:rafik.dammak at GMAIL.COM>> wrote:
hi all,
please let me know offlist if you want to join drafting for this important public comment.
Best,
Rafik
Le lun. 27 janv. 2020 à 07:45, Rafik Dammak <rafik.dammak at gmail.com<mailto:rafik.dammak at gmail.com>> a écrit :
Hi all,
resending the call for volunteers, please let me know if you want to join the drafting of NCSG comment.
Best Regards,
Rafik
Le sam. 25 janv. 2020 à 04:20, Rafik Dammak <rafik.dammak at gmail.com<mailto:rafik.dammak at gmail.com>> a écrit :
Hi all
ICANN published the new public consultation on Second Security, Stability, and Resiliency (SSR2) Review Team Draft Report. The SSR had some issue and was paused for some time but it was able now to deliver its first report for review. We should comment on this and share our input.
For more background and explanation you can find more info here: https://www.icann.org/public-comments/ssr2-rt-draft-report-2020-01-24-en
I created this google doc to be used during the drafting and accessible to all in order to kick off the discussion and comments: https://docs.google.com/document/d/1OgStOzDmumwWrKMJZtAvdhWESeLlNrsqQHFS1oS9sVE/edit <https://docs.google.com/document/d/1OgStOzDmumwWrKMJZtAvdhWESeLlNrsqQHFS1oS9sVE/edit>
Please let me offline if you want to volunteer to participate in drafting the NCSG comment and join the drafting team. We can leverage our rep to SSR2 Naveed for guidance and insight about the proposed recommendations.
You can find previous public comments submitted by NCSG in this wiki page https://community.icann.org/display/gnsononcomstake/Public+Comments+-+2020 and listing those who drafted them.
Taking this opportunity to wish you happy holidays and happy new year!
Best Regards,
Rafik Dammak
NCSG Policy Committee Chair
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ncsg.is/pipermail/ncsg-pc/attachments/20200318/c778ccba/attachment.htm>
More information about the NCSG-PC
mailing list