RSSAC Overview and Reorganisation Process. Text

Similar documents
RSSAC Activities Update. Lars Johan Liman and Tripti Sinha RSSAC Chair ICANN-54 October 2015

Security and Stability Advisory Committee!! Activities Update! ICANN Los Angeles Meeting! October 2014! #ICANN51

IANA Stewardship Transition Coordination Group (ICG)!! October 2014! ianacg.org!!!

MARRAKECH RSSAC Public Session. MARRAKECH RSSAC Public Session Wednesday, March 09, :00 to 15:30 WET ICANN55 Marrakech, Morocco

One possible roadmap for IANA evolution

RSSAC001. Service Expectations of Root Servers. Service Expectations of Root Servers

DNS and ICANN. Laurent Ferrali. 27th August 2018

Root KSK Roll Delay Update

Internet Corporation for Assigned Names & Numbers - Internet Assigned Numbers Authority Update

IANA ccnso Update Kim Davies ICANN 55, 8 March 2016

ROOT SERVERS MANAGEMENT AND SECURITY

From IPv4 to IPv6: impact and transi4on

RSSAC026 RSSAC Lexicon

ICANN and the IANA. Elsa Saade and Fahd Batayneh MEAC-SIG August 2016

DNS Risk Framework Update

Root Server System Advisory Committee

ICANN Policy Update & KSK Rollover

Second Security, Stability, and Resiliency of the Domain Name System Review Team (SSR2) ICANN60 October 2017

ICANN Update at PacNOG15

RIPE Network Coordination Centre. K-root and DNSSEC. Wolfgang Nagele RIPE NCC.

ICANN 48 NEWCOMER SESSION

Update on IANA Seoul, Republic of Korea October 2009

ICANN Report. Presented by: Dr Paul Twomey CEO and President. Reston, Va ARIN XIV 20 October 2004

Russ Housley 21 June 2015

Global Multistakeholder Meeting on The Future of Internet Governance ( NETmundial )

Summary of the Impact of Root Zone Scaling

Root KSK Rollover Update (or, We're really doing it this time)

DNS/DNSSEC Workshop. In Collaboration with APNIC and HKIRC Hong Kong. Champika Wijayatunga Regional Security Engagement Manager Asia Pacific

President s Report 2009

ICANN and Academia. Fahd Batayneh Manager, Global Stakeholder Engagement, Middle East. December 2017

Introduction to ICANN, IANA, and the DNS

Public Forum. Wellington, New Zealand March 30, Steve Crocker

It Internationalized ti Domain Names W3C Track: An International Web

IANA Stewardship Transition & Enhancing ICANN Accountability

ICANN Singapore Recap: Understanding a Rapidly Changing Domain Name Landscape

Internet 101. The Technical Roots of Internet Governance. Marco Hogewoning and Chris Buckridge External Relations RIPE NCC

RIPE NCC DNS Update. Anand Buddhdev Oct 2016 RIPE 73

July 13, Via to RE: International Internet Policy Priorities [Docket No ]

Root Management Update

Draft Applicant Guidebook, v3

ICANN Report Presented by: Paul Verhoef Vice President Policy Development Support ARIN XIII, Vancouver April 2004

cctld Best Practices & Considerations John Crain Internet Corporation for Assigned Names and Numbers

ICANN and Russia. Dr. Paul Twomey President and CEO. 10 June International Economic Forum St. Petersburg, Russia

Fundamental Principles of the Internet. Open, Distributed and Bottom-up.

RSSAC024: Key Technical Elements of Potential Root Operators

Report of the. Security Stability and Resiliency of the DNS Review Team

Open Mee'ng of the Security & Stability Advisory Commi=ee. 26 October 2009

Display and usage of Interna3onalized Registra3on Data. Dave Piscitello

Internet Engineering Task Force (IETF) Request for Comments: Category: Best Current Practice ISSN: March 2017

.BIZ Agreement Appendix 10 Service Level Agreement (SLA) (22 August 2013)

K-Root Name Server Operations

DNSSEC: A game changing example of multi-stakeholder cooperation. ICANN Meeting, Singapore 21 June 2011

Final Report of the. Security, Stability and Resiliency of the DNS Review Team

The net and it s Ecosystem

Cross Community Working Group (CWG) To Develop An IANA Stewardship Proposal. On Naming Related Functions. Discussion Document for ICANN52 Singapore

ICANN Staff Presentation

The IDN Variant TLD Program: Updated Program Plan 23 August 2012

Security & Stability Advisory Committee. Update of Activities

Post Transition IANA model Draft

Running A Highly Scaled Registry DNS Platform. ICANN 55 Tech Day Anycast Panel Chris Griffiths -

SSAC Advisory on Uses of the Shared Global Domain Name Space

Work in progress in Internet governance: a proposed study on ICANN s opening for new gtlds

ICANN proposal to sign the root. ICANN DNSSEC Workshop November 5, 2008, Cairo Dr. Richard Lamb

4. Performance Specifications. 4.1 Goals and intentions of Service Level Agreements and Public Service Monitoring. Goals of Service Level Agreements:

IAB Report. IETF 80 March Olaf M. Kolkman

ICANN and Internet Governance. Pierre Dandjinou, VP ; Africa. AIS, Lusaka 17 JUNE 2013

ONE WORLD, ONE INTERNET

DNSSEC for the Root Zone. IETF 76 8 November 2009

Overview. Coordinating with our partners, we help make the Internet work.

APNIC Update. AfriNIC June Sanjaya Services Director, APNIC

Rolling the Root. Geoff Huston APNIC Labs March 2016

IETF Activities Update

DNSSEC for the Root Zone. ICANN 37 Nairobi March 2010

IANA Stewardship Transition and PTI Overview

DNS Security. Wolfgang Nagele DNS Group Manager

ICANN and Technical Work: Really? Yes! Steve Crocker DNS Symposium, Madrid, 13 May 2017

ICANN Update RIPE Andrew McLaughlin

TLD-OPS Standing Committee Meeting cctld Security and Stability Together

Examining! the User Experience Implications! of Active Variant TLDs Project! Study Completed in March 2013!

DNSSECfor the Root ZoneIEPG IETF 77 Anaheim, USA March 2010

gtld Applicant Guidebook (v ) Module 5

DNSSEC for the Root Zone. IETF 76 Hiroshima November 2009

Is your DNS server up-to-date? Pieter Lexis Senior PowerDNS Engineer April 22 nd 2018

Internet Engineering Task Force (IETF) Request for Comments: 7706 Category: Informational ISSN: November 2015

APNIC Update. RIPE 59 October 2009

ICANN Board Status Advice Report Advice Item Status As of 30 Nov 2017

ICANN DNSSEC Workshop Comcast s Operational Experiences 14 March 2012

Keeping DNS parents and children in sync at Internet Speed! Ólafur Guðmundsson

IXP Support Initiatives & DNS Programmes at AfriNIC. Nishal Goburdhan Snr. Project Manager - Global Infrastructure AFRINIC

ICANN Start, Episode 1: Redirection and Wildcarding. Welcome to ICANN Start. This is the show about one issue, five questions:

KSK Roll Prepping: RFC Presented at RIPE 71 DNS WG November 19, 2015

Re-engineering the DNS One Resolver at a Time. Paul Wilson Director General APNIC channeling Geoff Huston Chief Scientist

DNSSEC for the Root Zone. IEPG IETF 77 Anaheim, USA March 2010

IANA Stewardship Transition & Enhancing ICANN Accountability. Elise Gerich ICANN VP, IANA Dept 28 August 2015

DNSSEC Activities In North America: Comcast

IANA TLD Zone Inspection. Shanghai, China Louis Touton 29 October 2002

RSSAC028 Technical Analysis of the Naming Scheme Used For Individual Root Servers

Internet Governance Shaped by all Stakeholders

APNIC s role in stability and security. Adam Gosling Senior Policy Specialist, APNIC 4th APT Cybersecurity Forum, 3-5 December 2013

Newcomers Session! By! Newcomers Team! 01/12/2015!

Transcription:

RSSAC Overview and Reorganisation Process Text

RSSAC Overview and Reorganisation Process Lars-Johan Liman, RSSAC co-chair Senior Systems Specialist, Netnod, I-root <liman@netnod.se> Suzanne Woolf, F-root Bill Manning, B-root

RSSAC in the ICANN Community and Internet Ecosystem RSSAC public session 24 March 2014 ICANN 49, Singapore

Who We Are Root server operators Other stakeholders Technical/operaHonal orientahon DNS experts cctld and RIR technical folks Others (currently an open topic)

RSSAC is here...

What We Do Make sure root DNS queries are answered as quickly and efficiently as possible with the most up- to- date informahon available as distributed by IANA and Verisign Tell people what we do (and don t do) Liaisons to Nomcom, Board, etc. Provide DNS experhse and advice to the Board, staff, and community DNSSEC, root scaling, etc. Measurements, service expectahons (more to come)

What We Don t Do Tell root server operators what to do we hope that a role in forming the advice means they ll take it. Tell ICANN what to do our advice is non- binding Policy regarding the contents of the root zone Mix other operahons (registry, IX, etc.) with root name service we all provide other services, but strictly separate

Root Server info

IANA FuncHons TransiHon Process IANA funchons transihon from USG is long- expected and welcome We expect to parhcipate in the process along with other stakeholders Relevant principle for us to focus on: security, stability, and resiliency of the root zone distribuhon system for all Internet users

The "new" RSSAC Two- layer model: ExecuHve commibee "Caucus" made up of people with various forms of experhse 8

ExecuHve commibee Consists of one vohng representahve from each root server organizahon (= 12) + liaisons to and from various groups. (Verisign operates two "lebers", hence 12 orgs.) Creates inihal processes and procedures. Selects and keeps track of work items. Appoints work parhes from the Caucus. Publishes work party results. Appoints and accepts liaisons. Elects two co- chairs. 9

Current co- chairs Prof. Jun Murai WIDE project M-root Lars-Johan Liman, M.Sc. Netnod I-root 10

Current liaisons Outgoing: ICANN Board ICANN NomCom Incoming: IANA NTIA Root Zone Maintainer (Verisign) IAB SSAC GAC 11

Caucus Made up from people with various experhse DNS protocol, DNS operahons (authoritahve/ resolver), registry operahons, security, etc Called upon to form work parhes. Reviews all documents. Consensus driven. 12

Current Status Developing OperaHonal Procedures document to define processes for: ElecHons Liaisons Work party formahon PublicaHon EdiHng session this week to progress work. 13

Proposed PublicaHon Process ExecuHve commibee decides on work item. Sub- group of Caucus is established as work party. Work party produces drag document. EnHre Caucus finalises document through consensus process. ExecuHve commibee publishes document. 14

Next steps Finish inihal procedures document. Appoint Caucus. Publish "inherited" documents from "old" RSSAC. Establish beber relahonships with other ICANN bodies, in order to Pick up issues that relate to root service. Advice on root services issues early on. 15

RSSAC 001 RSSAC Recommenda-on on Service Expecta-ons of Root Servers Document highlights that a diversity of approach is desirable in the root server system, and replaces earlier direc>on on implementa>on (RFC 2870) with a set of service expecta>ons that root server operators must sa>sfy.

What is Included Defini>on of Service Provided by Root Servers Expecta>ons of Root Server Operators Infrastructure Service Accuracy Service Availability Service Capacity Opera>onal Security Diversity of Implementa>on Monitoring and Measurement Communica>on

RSSAC 002 RSSAC Recommendation on Measurements of the Root Server System The latency in the distribu/on system. How long to get a consistent zone file into all root servers? The size of the overall root zone How much data is in the root? The number of queries How many ques/ons are asked? The query and response size distribu/on Ques/on size and Answer size ra/os (DDOS) The RCODE distribu/on What kinds of ques/ons? The number of Sources seen Who is asking?

Explicitly not Measured Short/Bad/Malformed query Outside the scope of this set of measurements

Concerns For This Work The single act of transferring the collected sta/s/cal data from widely deployed root server instances may affect the available bandwidth used to serve root zone queries. Collec/ng measurement data could pose as an opera/onal impact on the root server instances. Should any impact of service eventuate, measurement data will be discarded for the higher priority of service delivery. There are current DNS sotware logging limita/ons that inhibit the perfect collec/on and resolu/on of latency in the distribu/on system values due to the lack of zone serial numbers in AXFR/IXFR logging statements.

More Concerns The latency in the distribu/on system could poten/ally be more granular and also affect the /me it takes for a root name server instance to commence serving from that zone upon receiving it, however in prac/cal terms that repor/ng feature is not currently available in DNS sotware. TCP fragments are a nontrivial exercise to capture and provide meaningful sta/s/cs, it can be let to the individual root operator to include, or not include, TCP response size sta/s/cs.

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback