1 / 9

ICANN Strategic Initiatives for Security, Stability and Resiliency - DNS CERT

ICANN Strategic Initiatives for Security, Stability and Resiliency - DNS CERT. Posted for Public Comment at http://www.icann.org/en/. Background. Growing risks to DNS security and resiliency Emergence of Conficker ; growing domain hijacking

uta
Download Presentation

ICANN Strategic Initiatives for Security, Stability and Resiliency - DNS CERT

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. ICANN Strategic Initiatives for Security, Stability and Resiliency- DNS CERT Posted for Public Comment at http://www.icann.org/en/

  2. Background • Growing risks to DNS security and resiliency • Emergence of Conficker; growing domain hijacking • Community calls for systemic DNS security planning and response • ICANN commitments under Affirmation of Commitments • Initiatives called for in ICANN 2010-2013 Strategic Plan Organizational/resource approaches not predetermined

  3. DNS CERT(Computer Emergency Response Team) Initiative Business case articulates potential need and concept for mission/partnering approach Main thrusts • Lessons Learned • Mission – standing coordination center • Potential partners in conducting mission • Focus on Stakeholders

  4. Lessons Learned • Conficker - noted need for a dedicated incident response capability • Misdirection based on widespread vulnerability - A coordination center would have improved situational awareness • Avalanche Botnet - Complex coordination to track use of DNS requires dedicated team

  5. Mission of DNS CERT Ensure DNS operators and supporting organizations have a security coordination center with sufficient expertise and resources to enable timely and efficient response to threats to the security, stability and resiliency of the DNS Organizational/resource approaches not predetermined

  6. Capacity gap analysis** Private/selective groups are excluded from the list **

  7. Goals • Validated need for standing collaborative response capability to address systemic threats/risks • Full-time/global; coordinate existing capabilities; serve all stakeholders especially less resourced operators • Operational focus determined in engagement with stakeholders and leveraging existing efforts • Fostering situational awareness; incident response assistance /coordination; support efforts under Initiative #1

  8. Feedback - Resources • DNS CERT must respond to a broad, global constituency • Participation by key constituents • Adds capability to CERT • Extends its geographic reach • Helps keep focus on constituency needs • $4.2M initial annual budget; 15 staff; operations/communications support, travel & facilities

  9. Way Forward • Seek community feedback • Sessions continue • Delineate requirements and initial operational focus • Delineate collaborative approach with existing organizations (OARC; RISG; Nat’l CERTs) • Address organizational and funding approaches

More Related