Summary

Receiipt of the Security, Stability & Resiliency of the DNS Review Team Final Report

Text

Whereas, on 13 September 2012, the Board thanked the Security, Stability & Resiliency of the DNS Review Team for its Final Report,

Whereas, the Board requested that the President and CEO instruct Staff to consider the public comments and community input, assess the Recommendations, evaluate the potential implementation paths for each Recommendation, and provide the Board with guidance and advice on the Final Report, including, where appropriate, potential implementation plans and budgets, by the ICANN Toronto meeting.

Whereas, Staff has provided an initial implementation plan, finding that the 28 Recommendations in the Final Report are feasible and implementable.

Resolved (2012.10.18.04), the Board accepts the Final Report of the Security, Stability and Resiliency of the DNS Review Team and instructs the President and CEO to proceed with implementation of the 28 Recommendations.

Implementation Actions

  •  Proceed with implementation of the Recommendations in the Final Report
    • Responsible entity:  President and CEO
    • Due date: None provided
    • Completion date:  18 October 2012

Rationale  

The Affirmation of Commitments (AoC) between ICANN and the U.S. Department of Commerce commits ICANN to preserve the security, stability and resiliency of the DNS, and to organize a community review of its execution of this commitment no less frequently than every three years. The AoC further commits ICANN's Board to publish for public comment the report submitted by the review team, and to take action on the report within six months of its submission.

The Team's volunteer members were appointed by ICANN's CEO and the GAC Chair, per the AoC requirements, and reflected the broad Internet community's interests in Internet security, stability and resiliency matters. Over the past 19 months, the SSR Review Team conducted fact-finding, including meetings with ICANN's relevant Supporting Organizations and Advisory Committees, members of the broader Internet security community, and other interested parties, and issued a draft report for public comment before submitting its Final Report to the Board on 20 June 2012. The Report was posted for two months of public comment and the forum closed on 29 August 2012.

The Board thanked the Review Team on 13 September 2012 for their Final Report and instructed staff to consider feasibility of 28 Recommendations in the Final Report, and prepare a proposed implementation plan.

Why is the Board addressing the issue now?

As required by the AoC, the recommendations resulting from the SSR RT were provided to the Board on 20 June 2012 and posted for public comment. The SSR RT provided a report that validates and builds on ICANN's commitments and SSR responsibilities. The Board encouraged and considered input from the community, including the Supporting Organizations, Advisory Committees, stakeholder groups and interested individuals. The public comments were supportive of the SSR RT Final Report and ICANN's due diligence resulted in advice that ICANN move forward with implementation of all 28 recommendations. The Board has concluded that ICANN should move forward on implementation plans for the 28 recommendations.

What is the proposal being considered?

The proposal is that all 28 recommendations are feasible and implementable and that the Board accept the SSR RT Final Report and the 28 recommendations.

Which stakeholders or others were consulted?

Comments were received on the Final Report from ALAC, the GAC, the gTLD Registry Stakeholder Group, registrars. The SSR RT conducted briefings with SSAC and consultations at ICANN meetings in Dakar, Costa Rica and Prague as its recommendations were being developed and finalized. The community has had substantial opportunity to engage with the SSR RT during the development of its recommendations. A broad spectrum of community inputs were received on the earlier Draft Report, including from LACRALO, the Business Constituency, individuals, CNNIC, and ICC.

What concerns or issues were raised by the community?

There was general support in the public comments on the 28 recommendations. The common sentiment on the Final Report and recommendations were that they "are sensible, carefully crafted, and specific…the recommendations appear to be implementable without being so particular as to constitute operational instructions. We like the report's emphasis on clear, or where appropriate, measurable outcomes." The GAC noted that it fully supports all of the recommendations from the SSR RT.

What significant materials did the Board review?

The Board reviewed the SSR RT Draft Report and public comments, Final Report and public comments, the preliminary staff report for the 13 September Special Meeting of the Board, and the GAC Communiqué from Prague.

What factors the Board found to be significant?

The community and staff generally view the recommendations to be feasible and implementable.

Are there positive or negative community impacts?

Approval of the SSR RT Final Report and recommendations will have a positive impact in bringing another AoC review process to a close and highlight ICANN and community commitments to security, stability and resiliency of the Internet's unique identifier systems.

Are there fiscal impacts or ramifications on ICANN (strategic plan, operating plan, budget), the community, and/or the public?

Fiscal impacts on the community and public are expected to be minimal. ICANN will need to make changes in its Strategic and Operating Planning processes to incorporate the recommendations relating to greater transparency on SSR-related projects, initiatives, budgeting, and alignment of Strategic Objectives to the annual SSR Framework. Some of the recommendations have already been implemented by staff as the SSR RT conducted its review. There are several recommendations related to a comprehensive DNS Risk Management Framework, and this will require additional budget and staff resources to support in FY 14. Several other recommendations will need community-staff collaboration in order to be fully implemented.

Are there any security, stability and resiliency issues relating to the DNS?

The SSR RT Final Report reinforces ICANN's commitment to the security, stability and resiliency of the DNS and there are no negative issues related to security, stability and resiliency in the approval of this report or recommendations.

This is an ICANN's Organizational Administrative Function requiring public comment.

Other Related Resolutions

  •  Other resolutions TBD

Additional Information

Explanatory text does not modify or override Resolutions.  See Board Resolutions Page for more information.

Note: The "Add Comment" box below is for sharing information about implementation of this resolution. Off-topic comments will be removed.

  • No labels