90 likes | 165 Views
ICANN Strategic Initiatives for Security, Stability and Resiliency - DNS CERT. Posted for Public Comment at http://www.icann.org/en/. Background. Growing risks to DNS security and resiliency Emergence of Conficker ; growing domain hijacking
E N D
ICANN Strategic Initiatives for Security, Stability and Resiliency- DNS CERT Posted for Public Comment at http://www.icann.org/en/
Background • Growing risks to DNS security and resiliency • Emergence of Conficker; growing domain hijacking • Community calls for systemic DNS security planning and response • ICANN commitments under Affirmation of Commitments • Initiatives called for in ICANN 2010-2013 Strategic Plan Organizational/resource approaches not predetermined
DNS CERT(Computer Emergency Response Team) Initiative Business case articulates potential need and concept for mission/partnering approach Main thrusts • Lessons Learned • Mission – standing coordination center • Potential partners in conducting mission • Focus on Stakeholders
Lessons Learned • Conficker - noted need for a dedicated incident response capability • Misdirection based on widespread vulnerability - A coordination center would have improved situational awareness • Avalanche Botnet - Complex coordination to track use of DNS requires dedicated team
Mission of DNS CERT Ensure DNS operators and supporting organizations have a security coordination center with sufficient expertise and resources to enable timely and efficient response to threats to the security, stability and resiliency of the DNS Organizational/resource approaches not predetermined
Capacity gap analysis** Private/selective groups are excluded from the list **
Goals • Validated need for standing collaborative response capability to address systemic threats/risks • Full-time/global; coordinate existing capabilities; serve all stakeholders especially less resourced operators • Operational focus determined in engagement with stakeholders and leveraging existing efforts • Fostering situational awareness; incident response assistance /coordination; support efforts under Initiative #1
Feedback - Resources • DNS CERT must respond to a broad, global constituency • Participation by key constituents • Adds capability to CERT • Extends its geographic reach • Helps keep focus on constituency needs • $4.2M initial annual budget; 15 staff; operations/communications support, travel & facilities
Way Forward • Seek community feedback • Sessions continue • Delineate requirements and initial operational focus • Delineate collaborative approach with existing organizations (OARC; RISG; Nat’l CERTs) • Address organizational and funding approaches