[Area 4] Compromise of a resource critical to some accountability process as a candidate scenario
Eric Brunner-Williams
ebw at abenaki.wabanaki.net
Thu Dec 18 17:57:18 UTC 2014
Dear Colleagues,
ICANN has disclosed that the email credentials of several members of
staff have been compromised. [1]
I suggest that a credible scenario is the compromise of some resource
critical to some accountability process. The form of compromise may be
loss of the resource, such as the loss of a cryptographic key, or the
disclosure of the resource, such as email credentials.
The accountability process compromised could be any one or more of the
Corporation's ByLaws Redress Mechanisms [2], or those which are external
to the Corporation [3].
I will follow up with Staff on the existing Business Continuity Plan of
Record, as credential loss and/or disclosure should fall within the
Corporation's BC PoR, and it may be somewhat pertinent at the moment.
Regards,
Eric Brunner-Williams
Eugene, Oregon
[1] https://www.icann.org/news/announcement-2-2014-12-16-en
[2] (a) Reconsideration, (b) Independent third-party review, (c)
Periodic review, and (d) Ombudsman.
[3] (a) Affirmation of Commitments, (b) Jurisdiction of California and
the United States, (c) Other Jurisdictions, and (d) Contractual
requirements.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mm.icann.org/pipermail/ccwg-accountability4/attachments/20141218/180007e5/attachment.html>
More information about the Ccwg-accountability4
mailing list