[Ssr2-review] Future Challenges answers
Jennifer Bryce
jennifer.bryce at icann.org
Mon Feb 25 16:50:14 UTC 2019
Dear all,
Below are some Future Challenges workstream answers. The complete list of questions and answers are here: https://docs.google.com/document/d/14eJwDGP-LvS9ltTmZoh1i19Fi0_pB2nJ4JYMsS7lsco/edit#
Review Team volunteers: Laurin, Eric, Kerry-Ann
Workstream: Future Challenges
Topic: New uses for DNS (IoT, etc.)
Q: Has ICANN identified any scenarios where the current DNS infrastructure would fail?
A: DDoS attacks on all the root servers, or on all the servers for one or more TLDs, could cause some domains to be unreachable by some users, but the infrastructure itself would not be damaged, and reachability for domains in those zones would recover as the attacks abated.
Q: Are there any groups, reports, or is there any work being done to track new uses of DNS?
A: OCTO regularly discusses new uses of the DNS with the ICANN community at ICANN meetings. This is based on OCTO's following of new uses of the DNS in the IETF. This has happened many times. For example, at ICANN 60, we presented to the TEG and Board about using DOA in the DNS <https://icann60abudhabi2017.sched.com/event/CbHh/joint-meeting-icann-board-technical-experts-group-teg> [icann60abudhabi2017.sched.com]<https://urldefense.proofpoint.com/v2/url?u=https-3A__icann60abudhabi2017.sched.com_event_CbHh_joint-2Dmeeting-2Dicann-2Dboard-2Dtechnical-2Dexperts-2Dgroup-2Dteg-253E&d=DwMFaQ&c=FmY1u3PJp6wrcrwll3mSVzgfkbPSS6sJms7xcl4I5cM&r=VuRMFw6YascG5ysc1jEHBZgGTtD6QSLrFmqdvMx5FM8&m=GvklFCzIizIWEcI97Lg03KCQ1TfUfh6r8EuQOyA8DqM&s=8ddr3AvKyAWwf5Dw3tm_c2pNRL1W2EAKgNlXh0Brt00&e=>. We will present to the community at ICANN 64 about DNS-over-TLS and DNS-over-HTTP <https://64.schedule.icann.org/meetings/961998>.
Outstanding questions on this topic: 0
Review Team volunteers: Eric, Norm, Laurin, Kerry-Ann, Noorul
Workstream: Future Challenges
Topic: Privacy protections (DNS over TLS / over HTTPS; Circular dependencies between WebPKI and DNSSEC; Impact on Proactive anti-abuse and investigations)
Q: Does ICANN track these developments, what are the findings, and how do they feed into ICANN operations and policy?
A: ICANN follows DoT and DoH. There are no particular findings about these new technologies. To date, nothing about DoT or DoH has needed to be fed into ICANN operations and policy.
Outstanding questions on this topic: 1
Review Team volunteers: Eric, Russ, Ram, Laurin
Workstream: Future Challenges
Topic: New crypto systems in DNSSEC
Q: What resources and processes are in place to track and make the Board aware and factor into strategic planning for this?
A: OCTO regularly informs the Board Technical Committee and executive team about technical news that might affect Board decisions. OCTO informed the BTC and execs of NIST's report on the progress of the post-quantum cryptography work. https://www.nist.gov/publications/status-report-first-round-nist-post-quantum-cryptography-standardization-process
Q: What analyses or study/studies have been done?
A: NIST is the primary creator of such reports and studies. As these reports are published, OCTO informs the Board Technical Committee and the executive team of the reports and gives brief background on them. Eg. https://csrc.nist.gov/publications/detail/nistir/8240/final
Outstanding questions on this topic: 1
--
Jennifer Bryce
Senior Reviews Coordinator
Internet Corporation for Assigned Names and Numbers (ICANN)
Email: jennifer.bryce at icann.org
Skype: jennifer.bryce.icann
www.icann.org
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mm.icann.org/pipermail/ssr2-review/attachments/20190225/fcc9f12e/attachment.html>
More information about the Ssr2-review
mailing list