Board Member & Liaison Attendees: Avri Doria, Rafael Lito Ibarra, Akinori Maemura, Ram Mohan, Kaveh Ranjbar (Chair), George Sadowsky, Matthew Shears, and Jonne Soininen.
ICANN Organization Attendees: Adiel Akplogan (VP Technical Engagement), Susanna Bennett (Chief Operating Officer), David Conrad (Senior Vice President & Chief Technology Officer), Steve Conte (Office of the CTO Programs Director), John Crain (Chief Security, Stability & Resiliency Office), Dan Halloran (Deputy General Counsel), Aaron Jimenez (Board Operations Elder Coordinator), Vinciane Koenigsfeld (Director Board Operations), Matt Larson (VP Research, Office of the CTO), Cathy Petersen (Manager, Office of the CTO), Wendy Profit (Manager, Board Operations), Erika Randall (Associate General Counsel), Ashwin Rangan (SVP Engineering & Chief Information Officer), Lisa Saulino (Board Operations Elder Coordinator),and Samuel Suh (VP, IT ICANN Organization & Board Solutions Delivery).
The following is a summary of discussions, actions taken, & actions identified:
Technology Threats to the Root Server System – The Committee began initial discussions about possible threats to the Root Server system & was provided with a briefing about the current landscape of potential threats to the system. It was noted that DDoS attacks to roots ervers & the DNS are well known issues, but in the past 12 -18 months, there has been a significant change in the landscape with the proliferation of “Internet of Things” (IoT) devices.
The Committee began discussing possible scenarios of what could happen in the event of such an attack, & what role, if any, would ICANN have to deal with an attack. Some Committee members suggested that the Board Risk Committee consider this risk & help prepare mitigation plans for the risk. Other Committee members suggested that the Board needs additional briefing on this topic so that it has an appropriate understanding of the potential threats, & the extent to which this issue fits into ICANN’s mission. The Committee agreed to continue to discuss this matter further during subsequent meetings.
Committee members asked questions about next steps for implementing the proposed changes to how end-user support is delivered to the Board, & ICANN Org members noted it planned to prepare a written briefing for the Committee with the details of the plan. If the Committee approves of the plan, it would be submitted to the full Board for its consideration.
- ICANN Chief Information Officer to prepare written briefing for the Committee about the proposed new approach to deliver end-user support to Board members.
Update from the Chief Technology Officer (Open to the community) – The Committee received a briefing from the Chief Technology Officer (CTO) about its technical engagement, research, & security, stability & resiliency activities. Some of technical engagement activities included: (1) working with the ICANN Org Government Engagement Team on a GAC capacity-building plan for 2018, (2) co-hosting the IETF 101 in London with Google, (3) rolling out “ICANN Think Tank”, which will research & develop position papers & white papers for the community, (4) supporting the Registry Operations Workshop in Vancouver, & (5) supporting the revised KSK roll plan with outreach & engagement.
The briefing to the Committee also included an update from the Office of the CTO research team & their key activities. Some of the activities highlighted in the update included the Open Data Initiative, the Internet Technologies Health Initiative, & the DNS Object Exchange. The team reported that the Open Data Initiative continues to make progress on compiling the internal data census & creating a catalog of data sets. The Internet Technologies Health Initiative (ITHI) has refined its ITHI metrics & are in the process of defining a measurement framework with tools. The DNS Object Exchange (formerly DOA over DNS) was demonstrated at ICANN60 with an Internet of Things (IoT) device updating itself via the Object Exchange Resource Record (OX RR) type. The research team is looking to continue to refine the concepts & specification for the OX type as there appear to be interest within the community about the functionality that OX provides.
On the security stability and resiliency side, the office of the CTO noted recent support it provided in the form of subject-matter expertise to assist in the takedown of a botnet called Andromeda. The office of the CTO also noted its active participation in the Anti-Phishing Working Group, Malware, and Mail Anti-abuse Working Group related to DNS issues. Additionally, the team reported on its work with ICANN Contractual Compliance on their use of data that is derived from the Domain Abuse Activity Reporting (DAAR) system. Externally, the office of the CTO noted that it had been fairly active within the second Security, Stability, & Resiliency (SSR2) review.
Root Zone KSK Rollover (Open to the community) – The Committee was provided with a briefing about the current status of the work to support the Root Zone Key Signing Key (KSK) rollover. The Root Zone KSK rollover was postponed last September due to many resolvers reporting an old trust anchor. In an effort to track down the reason for such reports, the Office of the Chief Technology Officer engaged a contractor to track down a list of 500 IP addresses that only reported the old trust anchor (KSK 2010). The contractor was only able to contact 100 of the 500 IP addresses, and of the 100 IP addresses, 60 were dynamic with no means of initiating contact. As a result, OCTO looked to the community for input; specifically, on some acceptable criteria to proceed with the KSK rollover.
In mid-January, OCTO solicited feedback from the community. The consensus from the comments was that ICANN should set a date & perform the rollover & accept that there is going to be inevitable “breakage”. As a next step, OCTO plans on publishing a draft high-level plan on 1 February 2018 to the community for public comment. At ICANN61, a session will be held to get further feedback from the community. When the public comment period ends, the plan will be revised to address the public comments received. At the Board workshop in May, OCTO will ask the Board if they are willing to have SSAC review the plan. If this occurs, following SSAC’s review, OCTO will plan a session for ICANN62 to facilitate formal conversation with SSAC. The goal is to have SSAC’s feedback by August 2018, with the goal that the Board will request a resolution in September and direct the ICANN Org to roll the KSK on 11 October 2018.
Domain Abuse Activity Reporting (DAAR) System Status Report (Open to the community) – The Committee received a status update on the DAAR system and related reports generated by the system. Currently, the Office of the Chief Technology Officer is looking to finalize its engagement with a prominent security expert to review the DAAR methodology.
The development of the DAAR continues with version 2.0, adding a number of improvements, particularly, in the mechanism that allows for a focus on specific elements of abuse. Currently, two sets of analysis are being conducted on the DAAR data sets. The first analysis will study a spike in abuse domains over a short time frame. The second analysis will study a set of abuse names that appear more prone to attack than other TLDs. The Office of the CTO intends on publishing an article or journal piece on its findings.
The Chair called the meeting to a close.
Published on 21 March 2018