[Ssr2-review] Recommendation 8.3
ALAIN AINA
aalain at trstech.net
Mon Mar 30 12:00:49 UTC 2020
> On 25 Mar 2020, at 16:49, Russ Housley <housley at vigilsec.com> wrote:
>
> Alain:
>
> Are you aware of any evidence of a problem that a disaster recovery plan would have prevented?
Hmmmmmm.
The Covid-19 pandemic put some uncertainty on the normal proceedings of upcoming root KSK ceremony 41* and other ceremonies to follow.
although the DPS, section 4.5.4 ** has defined "Business Continuity and IT Disaster Recovery's Capabilities “ and referred to plans already in place, we’ve seen some consultations*** and discussions about how to proceed. Vary scenarios were discussed.
I asked if these consultations and discussions were part of the BC/DR plans, but got no response back. I do see a problem, but can’t say there is no plans or that a plan as discussed in recommendation 8.3 would have prevented something.
HTH
—Alain
(*)https://www.iana.org/dnssec/ceremonies/41 <https://www.iana.org/dnssec/ceremonies/41>
(**) https://www.iana.org/dnssec/dps/ksk-operator/ksk-dps.txt <https://www.iana.org/dnssec/dps/ksk-operator/ksk-dps.txt>
Section 4.5.4
[….]
The RZ KSK Operator has developed, implemented and tested a business
continuity and IT disaster recovery plan to mitigate the effects of
natural, man-made, or technological disasters or other disasters that
requires temporary or permanent cessation of operations from any of
the RZ KSK Operator's facilities. The business continuity and IT
disaster recovery plans are in place to address the restoration of
information systems services and key business functions. These plans
address:
[…..]
(***) https://mm.icann.org/pipermail/root-dnssec-announce/2020/000126.html
>
> Russ
>
>
>> On Mar 25, 2020, at 12:43 PM, ALAIN AINA <aalain at trstech.net <mailto:aalain at trstech.net>> wrote:
>>
>> Russ,
>>
>>> On 25 Mar 2020, at 14:31, Russ Housley <housley at vigilsec.com <mailto:housley at vigilsec.com>> wrote:
>>>
>>> Alain:
>>>
>>> On the call today, there was a discussion of Recommendation 8.3. The question raised is: "Is there any evidence this has ever been a problem?" Can you point to one?
>>
>> I don’t understand the questions. Can i have a little bit of background ?
>>
>>
>> Thanks
>>
>> —Alain
>>
>> ====
>> 8.3. For Public Technical Identifiers (PTI) operations (IANA functions, including all relevant systems that contribute to the Security and Stability of the DNS and also Root Zone Management), ICANN org should develop a shared approach to service continuity in close cooperation with the Root Server System Advisory Committee (RSSAC) and the root server operators.
>>
>> ==========
>>
>>
>>>
>>> Russ
>>>
>>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mm.icann.org/pipermail/ssr2-review/attachments/20200330/d63f3148/attachment.html>
More information about the Ssr2-review
mailing list