[NCSG-PC] SCCI Criteria 4 - “domain name security threats”

[Johan Helsingius]

Hi all,

I am the NCSG representative to the Standing Committee on Continuous
Improvement (SCCI) that is formulating the Continuous Improvement
Program framework. The SCCI is chaired by Manju, another NCSG:er, but
as chair she has to remain neutral.

The work until now has been developing the Criteria and Indicators
that will be used to judge how well the GNSO processes are working.

We have made good progress under the very capable leadership of Manju,
and most issues haven't been very controversial, but I want to flag
the current issue where we probably want to speak up against the current
proposal.

The issue is Criteria 4, "The GNSO actively combats domain name
security threats", where there is a proposal to change the draft
text from:

     Indicator 1: The GNSO has demonstrated meaningful activity towards
                  mitigating domain name security threats.

     Indicator 2:  66% of surveyed respondents agree that the GNSO
                   combats domain name security threats.

to:

     Indicator 1: The GNSO has demonstrated meaningful activity towards
                  mitigating DNS Abuse and security threats relating to
                  domain names that are in scope for the GNSO.


     Indicator 2:  66% of surveyed respondents agree that the GNSO has
                   demonstrated meaningful activity towards mitigating
                   DNS Abuse and security threats relating to domain
                   names that are in scope for the GNSO.

While we probably are OK with mitigating domain name security threats,
specifically mentioning DNS Abuse opens up some cans of worms.

We will have a chance to present our views at the next SCCI call on
Wednesday, 1 July 2026, so I welcome your comments/opinions.

	Julf