Safeguards & Trust

Members:

Laureen Kapin (Subteam Chair)
Carlton Samuels
Carlos Raul Gutierrez
Gao Mosweu
Fabro Stiebel
Jamie Hedlund
Drew Bagley
David Taylor
Calvin Browne

Mandate: This sub team was created to explore two key areas of the CCT Review as outlined in section 9.3 of the Affirmation of Commitments: "...the extent to which the introduction or expansion of gTLDs has promoted ... consumer trust ... as well as effectiveness of ... safeguards put in place to mitigate issues involved in the introduction or expansion."

Mailing-List Archives: http://mm.icann.org/pipermail/cctreview-safeguards/

Refer to Safeguards & Trust - Calls for your call schedule and call archives

CCT Background Material

Safeguards &Trust - Action Items

DISCUSSION PAPER TOPICS - Papers available in Google drive

Use revised template - DOC

Refer to model issue paper - DOC-PDF

DNS Abuse
1. Is there more or less DNS abuse in the new gTLDs? Drew (lead), Fabro, Calvin
Impact of Safeguards & PICs
- Technical Category/DNS Abuse
2. Have the safeguards been fully implemented? Calvin (lead), Carlos, Laureen
3. Did the safeguards help to prevent DNS abuse? Drew (lead), Fabro, Calvin
4. Have new gTLD registry operators complied with the safeguards? Fabro (lead), Carlton, David
- Specification 11
5. How was Specification 11 implemented by new gTLD registry operators? Laureen (lead), Carlos, Calvin
6. Did the use of PICs help prevent DNS abuse? Drew (lead), Carlos, Gao, Fabro
- Rights Protection Mechanisms
7. Did use of Rights Protection Mechanisms mitigate the risks involved with the expansion of the gTLD program? David (lead), Jamie, Fabro
8. Have the new dispute resolution processes reduced trademark infringement? David (lead), Jamie, Carlos
Consumer End User Behavior
9. Are consumers aware of new gTLDs? Carlton (lead), Gao, Calvin
10. Do consumers trust new gTLDs? Laureen (lead), Gao, Carlos
Effectiveness of Procedures to Enforce Safeguards
11. Are the new procedures effective in enforcing safeguards? Carlton (lead), Jamie, Laureen

Documents

Document	File
BRAINSTORMING DOCUMENT
v1 (23 Feb)	DOC - PDF
v2/3 (3 March)	DOC - PDF
v4 (4 March)	DOC - PDF - G-doc
v5 (10 March) Priority list	DOC- PDF - G-doc DOC - PDF - Priority list G-doc
v6 (31 March)	DOC - PDF - G-doc
v7 (28 April)	DOC - PDF
v8 (7 June)	DOC - PDF - G-doc
WORK PLAN
v1 (3 May)	DOC - PDF
v2 (2 June)	DOC
v3 (23 June)	DOC - PDF No longer applicable
SAFEGUARDS EFFECTIVENESS MANAGEMENT TABLE
v1 (27 May)	DOC - PDF
v2 (6 June)	DOC - PDF
v3 (13 June)	DOC - PDF
v5 (21 June)	DOC - PDF
SAFEGUARDS ANALYSIS CHART
v1	G-doc
DISCUSSION PAPERS - TOPIC LIST
v1 (12 July) v2 (20 July)	DOC - PDF DOC - PDF - gDOC (input needed by 22 July!!!)
VOLUNTARY PICS
v1 (13 July)	DOC - PDF (input needed by 14 July!!!)
OTHER
Regulated and sensitive strings delegated (29 April 2016)	XLS - PDF

Reading List

Date Added	Document	Files	Responsible Team Member
31 March 2016	Secure Domain Foundation/Business case for proactive anti-abuse	PDF DB's analysis/presentation - PDF	DB
31 March 2016	Knujon March 2016: Internet Limbo Report Concerning Issues of Consumer Trust on the Internet	PDF FS's analysis/presentation - PDF	FS
31 March 2016	ICANN Draft Report New gTLD Program Safeguards to Mitigate DNS Abuse	LINK CG' analysis/presentation - PDF	CG
31 March 2016	Notice and takedowns in everyday practice - Online takedowns study	PDF	DT & CB
5 April 2016	Consumer Awareness Summary	DOC - PDF CS's analysis/presentation - PDF	JH & CS
14 April 2016	APWG Phishing Attack Trends Reports	LINK GM's analysis/presentation - PDF	GM
20 April 2016	Compliance-related metrics	LINK	LK
29 April 2016	The Curse of the URL Shorteners: How safe are they?	LINK	FS
29 April 2016	What is Spyware?	LINK	GM
29 April 2016	ICANN Registry Agreements	LINK	CAS
29 April 2016	Search Engine Poisoning (SEP)	LINK	DT
29 April 2016	Spoofing Attack: IP, DNS & ARP	LINK	DT
29 April 2016	Amplified DDoS Attacks: The current biggest threat against the Internet	LINK	DB
29 April 2016	DNS Pharming: Someone’s poisoned the water hole!	LINK	DB
29 April 2016	APWG News Center	LINK	GM
29 April 2016	About the DNS Seal Project	LINK	CB
29 April 2016	fTLD Enhanced Security	LINK	DT
29 April 2016	ICANN 54 GAC Communiqué	LINK	LK
29 April 2016	ICANN53 Buenos Aires GAC Communiqué	LINK	LK
17 May 2016	ICANN GAC Safeguards advice from Beijing forward		LK
29 April 2016	Applicant Guidebook	LINK	ALL
29 April 2016	CZDS-ZFA Passwords Reports	LINK	JH
29 April 2016	WHOIS Accuracy Reporting System (ARS)	LINK	DB
29 April 2016	WHOIS Primer	LINK	CB
29 April 2016	Afilias Anti-Abuse Policy	LINK	CAS
29 April 2016	.RICH Anti-Abuse Policy	LINK	CAS
29 April 2016	Contractual Compliance Dashboard for January 2016	LINK	LK
29 April 2016	Frequently Asked Questions: Name Collision Occurrence Management Framework for Registries	LINK	DT
29 April 2016	DNSSEC Deployment Report	LINK	JH
29 April 2016	TLD DNSSEC Report	LINK	JH
29 April 2016	Deployment Guide: DNSSEC for Internet Service Providers (ISPs)	LINK	JH
29 April 2016	IETF- RFC List	LINK	DB
29 April 2016	CloudFlare: How DNSSEC works	LINK	JH
29 April 2016	DNSSEC- What it is and why is it important?	LINK	JH
29 April 2016	A Profitless Endeavor- Phishing as a Tragedy of the Commons		GM
29 April 2016	Best Practices to Address Online and Mobile Threats		FS
29 April 2016	DNS Stability, Security, and Resiliency		DB
29 April 2016	From .academy to .zone- An Analysis of the New gTLD Land Rush		FS
29 April 2016	ICANN Global Consumer Research Report- April 2015		CAS
29 April 2016	APWG- Global Phishing Survey: Trends and Domain Name Use in 1H2014		GM
29 April 2016	High Security Zone Top-Level Domain Advocacy Group		DT
29 April 2016	ICANN Contractual Compliance Annual Report 2015		LK
29 April 2016	APWG- Making Waves in the Phisher's Harbor: Exposing the dark side of subdomain registries		GM
29 April 2016	Measuring the Global Domain Name System		JZ
29 April 2016	Measuring Perpetrators and Funders of Typosquatting		DT
29 April 2016	Potential for Phishing in Sensitive-String Top-Level Domains		LK
29 April 2016	Program Implementation Review		ALL
29 April 2016	Redirecting DNS for Ads and Profit		FS
29 April 2016	Mitigating the Risk of DNS Namespace Collisions		DT
29 April 2016	Registration Abuse Policies Working Group Final Report		DB
29 April 2016	SAC 025: SSAC Advisory on Fast Flux Hosting and DNS		DB
29 April 2016	SAC041- Recommendation to prohibit use of redirection and synthesized responses by new TLDs		CAS
29 April 2016	SSAC Advisory on DDoS Attacks Leveraging DNS Infrastructure		CB
29 April 2016	SSAC Advisory on Registrant Protection- Best Practices for Preserving Security and Stability in the Credential Management Lifecycle		CG
29 April 2016	SSAC Comment on Orphan Glue Records in the Draft Applicant Guidebook		CB
6 June 2016	SAC041: Recommendation to prohibit use of redirection and synthesized responses by new TLDs	LINK	CAS - CG
6 June 2016	SAC 045 Invalid Top Level Domain Queries at the Root Level of the Domain Name System	LINK	CAS - CG
6 June 2016	SAC062 SSAC Advisory Concerning the Mitigation of Name Collision Risk	LINK	CAS - CG
6 June 2016	SAC066 SSAC Comment Concerning JAS Phase One Report on Mitigating the Risk of DNS Namespace Collisions	LINK	CAS - CG
6 June 2016	SAC074 SSAC Advisory on Registrant Protection: Best Practices for Preserving Security and Stability in the Credential Management Lifecycle	LINK	CAS - CG
29 April 2016	Symantec Intelligence Report- November 2015		FS
29 April 2016	ISTR 20: Internet Security Threat Report	Error rendering macro 'viewpdf' com.atlassian.confluence.macro.MacroExecutionException: com.atlassian.confluence.macro.MacroExecutionException: The viewfile macro is unable to locate the attachment "ISTR 20.pdf" on this page	CG
29 April 2016	Techniques to Break the Botnet Attack		CG
29 April 2016	The NameSENTRY Abuse Report		CG
29 April 2016	WHOIS Accuracy Reporting System (ARS)		CB
9 May 2016	Trust in the Internet Survey 2016, nccgroup and IDG Research Services	PDF	CG
19 May 2016	Verizon 2016 Data Breach Investigations Report	LINK	LK