[CWG-RFP3] Coordination of Subgroup 3

Kieren McCarthy kieren at kierenmccarthy.com
Wed Nov 5 19:41:34 UTC 2014 

It's hard to know what you don't know. Which is why I think it makes sense
to ask.

The NTIA has been doing this job for a long time. It is possible that over
the past decade the system has got so good and that the NTIA's focus has
been on making sure it has the most minimal job possible that it would
barely be noticed if the role was removed.

It is equally possible that it has built a series of internal guidelines -
some may not even be written down - where particular requests are sent
through different checks that the other parties are not even aware of (and
why should they be?)

I've not seen any logs of transactions between IANA and the NTIA beyond
cumulative statistics. We are told that the NTIA has never turned down an
IANA change but is it the case that it has never got back to IANA and asked
a clarifying question? Has IANA ever changed a request / got back to the
requestor following NTIA feedback? We don't have that information.

What is the time differential between IANA sending a request and the NTIA
approving it? It is minutes? Days? Does it vary? Are there particular
requests that take longer? We don't know. What does it do with the
requests? We don't know.

According to SAC067, the Administrator role is "solely with respect to
whether or not ICANN has followed established policies and procedures". How
does it do that? Does it have a book of rules in house? Does it ever call
the requestors directly? What, if anything, is a red flag to the NTIA?

Does it feel that the role it plays should be retained even when it is no
longer the NTIA doing it? If so, why?

By not even asking the NTIA we are making the best possible assumption
about its Administrator role. Making sure we're not missing anything by
simply asking would strike me as simple due diligence.

Of course, you can turn the question around the other way: what reason
would we have to *not* ask the NTIA about its role?



Kieren



On Wed, Nov 5, 2014 at 10:27 AM, Gomes, Chuck <cgomes at verisign.com> wrote:

>  What is it that is unknown in terms of what NTIA does?  I think it is
> pretty well laid out in the IANA functions contract and SAC067 and more
> recently summarized in the draft proposals for CWG RFP Sections 1 & 2A.
>
>
>
> Chuck
>
>
>
> *From:* cwg-rfp3-bounces at icann.org [mailto:cwg-rfp3-bounces at icann.org] *On
> Behalf Of *Kieren McCarthy
> *Sent:* Wednesday, November 05, 2014 12:18 PM
> *To:* Milton Mueller
> *Cc:* RFP3
> *Subject:* Re: [CWG-RFP3] Coordination of Subgroup 3
>
>
>
> So it strikes me that the obvious question is: let's ask the NTIA what it
> does and ask it if it would have any concerns if the role simply
> disappeared.
>
>
>
>
>
>
>
> Kieren
>
>
>
> On Tue, Nov 4, 2014 at 2:14 PM, Milton Mueller <mueller.syr.edu at gmail.com>
> wrote:
>
> I agree with David Conrad here. There is no need for the authorizer step.
>
> Milton L Mueller
>
> Professor, Syracuse School of Information Studies
>
>
> On Nov 4, 2014, at 13:05, David Conrad <david.conrad at icann.org> wrote:
>
>  Robert,
>
> On Nov 4, 2014, at 3:33 AM, Robert Guerra <rguerra at privaterra.org> wrote:
>
>  - RZF need to be reviewed for technical accuracy
>
>
> For clarification, currently, the IANA Function Operator (IFO) does not
> have access to the Root Zone File.  The Root Zone File is generated by
> Verisign prior to signing and distributing to the Root Server Operators (I
> believe -- I do not know the actual processes used by Verisign for sure,
> but I can make some educated guesses).
>
> What the IFO does does see is the specific change request prior to it
> being submitted to NTIA for authorization.  There are a number of technical
> checks performed by the IFO prior to allowing that change request to
> proceed.  I believe those technical checks are documented at
> https://www.iana.org/help/nameserver-requirements (more generally,
> https://www.iana.org/domains/root/help might be a useful resource).
>
> In the past Verisign also performed a set of technical checks (not exactly
> sure what they were).  I suspect, but do not know for certain, they
> continue to do those checks.
>
>
>  - An authorizer process step exists now . In a post NTIA solution,
> something similar is needed.  There is a need to evaluate if a single or
> multiple authorizers are needed as well as cost that might entail.
>
>
> Speaking entirely personally, it isn't clear to me that an authorizer step
> is actually necessary since in practice, by the time the request gets to
> the authorizer, the affected parties are aware of the change and they'd
> have raised concerns if they had any. However whether an authorizer step is
> needed is, of course, for the community to decide.
>
> Regards,
> -drc
> (ICANN CTO, but speaking for myself only. Really.)
>
>
> _______________________________________________
> Cwg-rfp3 mailing list
> Cwg-rfp3 at icann.org
> https://mm.icann.org/mailman/listinfo/cwg-rfp3
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mm.icann.org/pipermail/cwg-rfp3/attachments/20141105/82790062/attachment.html>

More information about the Cwg-rfp3 mailing list