<html xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<meta name="Title" content="">
<meta name="Keywords" content="">
<meta name="Generator" content="Microsoft Word 15 (filtered medium)">
<style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:"Source Sans Pro";
panose-1:2 11 5 3 3 4 3 2 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:12.0pt;
font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:#0563C1;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:#954F72;
text-decoration:underline;}
p.MsoListParagraph, li.MsoListParagraph, div.MsoListParagraph
{mso-style-priority:34;
margin-top:0in;
margin-right:0in;
margin-bottom:0in;
margin-left:.5in;
margin-bottom:.0001pt;
font-size:12.0pt;
font-family:"Calibri",sans-serif;}
span.EmailStyle18
{mso-style-type:personal;
font-family:"Calibri",sans-serif;
color:windowtext;}
span.EmailStyle19
{mso-style-type:personal;
font-family:"Calibri",sans-serif;
color:windowtext;}
span.EmailStyle20
{mso-style-type:personal-reply;
font-family:"Calibri",sans-serif;
color:windowtext;}
span.msoIns
{mso-style-type:export-only;
mso-style-name:"";
text-decoration:underline;
color:teal;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;}
@page WordSection1
{size:595.0pt 842.0pt;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
/* List Definitions */
@list l0
{mso-list-id:1667245125;
mso-list-type:hybrid;
mso-list-template-ids:-546823436 -1003336420 67698713 67698715 67698703 67698713 67698715 67698703 67698713 67698715;}
@list l0:level1
{mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
color:black;
mso-ansi-font-weight:bold;
mso-ansi-font-style:normal;}
@list l0:level2
{mso-level-number-format:alpha-lower;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level3
{mso-level-number-format:roman-lower;
mso-level-tab-stop:none;
mso-level-number-position:right;
text-indent:-9.0pt;}
@list l0:level4
{mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level5
{mso-level-number-format:alpha-lower;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level6
{mso-level-number-format:roman-lower;
mso-level-tab-stop:none;
mso-level-number-position:right;
text-indent:-9.0pt;}
@list l0:level7
{mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level8
{mso-level-number-format:alpha-lower;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level9
{mso-level-number-format:roman-lower;
mso-level-tab-stop:none;
mso-level-number-position:right;
text-indent:-9.0pt;}
ol
{margin-bottom:0in;}
ul
{margin-bottom:0in;}
--></style>
</head>
<body bgcolor="white" lang="EN-US" link="#0563C1" vlink="#954F72">
<div class="WordSection1">
<p class="MsoNormal"><span style="font-size:11.0pt">Dear SSR2 RT members,</span><o:p></o:p></p>
<p class="MsoNormal"><span style="font-size:11.0pt"> </span><o:p></o:p></p>
<p class="MsoNormal"><span style="font-size:11.0pt">The below answers have been added to the Q&A Google doc: <a href="https://urldefense.proofpoint.com/v2/url?u=https-3A__docs.google.com_document_d_14eJwDGP-2DLvS9ltTmZoh1i19Fi0-5FpB2nJ4JYMsS7lsco_edit-3Fusp-3Dsharing&d=DwMGaQ&c=FmY1u3PJp6wrcrwll3mSVzgfkbPSS6sJms7xcl4I5cM&r=VuRMFw6YascG5ysc1jEHBZgGTtD6QSLrFmqdvMx5FM8&m=hxj2juBnL5SI2_a2ShzX2n6QIksiETU2ES0QpYAdac8&s=2ccPlHIHQA6bJ48H2PKPem1o_nHyeaJbMNxUNcVNbg8&e=">https://docs.google.com/document/d/14eJwDGP-LvS9ltTmZoh1i19Fi0_pB2nJ4JYMsS7lsco/edit?usp=sharing
[docs.google.com]</a>. There is now 1 outstanding question in the ICANN SSR workstream. We expect this outstanding answer this week.</span><o:p></o:p></p>
<p class="MsoNormal"><b><span style="font-size:11.0pt"> </span></b><o:p></o:p></p>
<p class="MsoNormal"><b><span style="font-size:11.0pt">Review Team volunteers<span style="background:yellow;mso-highlight:yellow">: Denise,
</span></span></b><span style="font-size:11.0pt;background:yellow;mso-highlight:yellow">Kerry-Ann, Zarko</span><o:p></o:p></p>
<p class="MsoNormal"><b><span style="font-size:11.0pt">Workstream: ICANN SSR </span>
</b><o:p></o:p></p>
<p class="MsoNormal"><b><span style="font-size:11.0pt">Topic 7: Perform an assessment how effectively ICANN has implemented its processes to ensure compliance regarding registrar agreements and the consensus policies.<o:p></o:p></span></b></p>
<p class="MsoNormal"><b><span style="font-size:11.0pt">Outstanding questions: 0</span></b><o:p></o:p></p>
<p class="MsoNormal"><b><span style="font-size:11.0pt"> </span></b><span style="font-size:11.0pt"> </span><o:p></o:p></p>
<p class="MsoNormal"><span style="font-size:11.0pt">Q: During the presentation in LA in October 2017, Francisco referred to internal procedures to deal with SLA monitoring cases that require follow up, please provide SSR2 with a copy?<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt">A: ICANN org’s internal operating procedures for addressing SLA monitoring cases that require follow-up can be described generally, but are not documented in a form for external publication. The procedures
include detailed steps to be followed by the technical team that is on-call when responding to performance issues found in the DNS and RDDS. For example, when each service threshold is met, the procedures indicate which of the registry operator’s contacts
to alert, how to alert them (e.g., via email and/or phone), and in what order they are attempted to be contacted. The procedures also describe what logs should be collected and when, to check whether there is a maintenance window scheduled for the service/TLD
and whether the issue is caused by a TLD revocation. Additionally, the procedures indicate the thresholds at which escalation for a potential EBERO event are to be started.
<o:p></o:p></span></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Q: What is the status of the registry service provider certification program? Is ICANN Org recommending any changes? What is the status of this issue within the Subsequent Procedures PDP?<o:p></o:p></p>
<p class="MsoNormal">A: The Registry Service Provider (RSP) pre-approval was a topic <a href="https://community.icann.org/download/attachments/74587868/Letter%20from%20RySG%20RSP%20DG%20to%20SubPro%20WG%20Jan%202018.pdf?version=1&modificationDate=1516726492176&api=v2">of
discussion </a>of a small group within the RySG. The small group <a href="https://mm.icann.org/pipermail/gnso-newgtld-wg/2018-February/000935.html">delivered a recommendation</a> to the Subsequent Procedures PDP working group and ICANN org provided <u>recommended
changes. </u>It is up to the PDP WG to make its recommendations to the GNSO Council. The Subsequent Procedures working group discussed the recommendations in the course of its deliberations and formulated a set of initial recommendations that were published <a href="https://www.icann.org/public-comments/gtld-subsequent-procedures-initial-2018-07-03-en">for
public comment on 3 July 2018</a>. The RSP pre-approval recommendation can be reviewed in <a href="https://gnso.icann.org/sites/default/files/file/field-file-attach/subsequent-procedures-initial-overarching-issues-work-tracks-1-4-03jul18-en.pdf">section 2.2.6
of the Initial Report.</a> Please note that the working group is developing final recommendations, which may not be the same as those found in the Initial Report.<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal"><b>Review Team volunteers: <span style="background:yellow;mso-highlight:yellow">
Norm, </span></b><span style="background:yellow;mso-highlight:yellow">Ram</span><o:p></o:p></p>
<p class="MsoNormal"><b>Workstream: ICANN SSR </b><o:p></o:p></p>
<p class="MsoNormal"><b>Topic 6: Perform an assessment of how effectively ICANN has implemented its processes around vetting registry operators and services concerning the New gTLD Delegation and Transition process.
</b><o:p></o:p></p>
<p class="MsoNormal"><b>Outstanding questions: 0<o:p></o:p></b></p>
<p class="MsoNormal"><span style="font-size:11.0pt"><o:p> </o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt">Q: Referencing the EBERO testing of Fall, 2017 (<a href="https://schd.ws/hosted_files/icann60abudhabi2017/08/7%20EBERO%20Arias.pdf">https://schd.ws/hosted_files/icann60abudhabi2017/08/7%20EBERO%20Arias.pdf</a>.
Has the Root Cause Analysis been conducted? If so, is there a reference to the report?<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt">A: The slides referenced in the question describe the EBERO exercises conducted up to that point in time. Each of these exercises were conducted in the context of a registry that was being decommissioned,
rather than cases of registry failure. ICANN org asked the registry operators involved in those exercises, who were each operating a TLD that was being decommissioned, for permission to use their TLDs to do EBERO exercises just prior to termination and removal
from the root. The issues described on slides 18 and 19 are related to the internal, detailed procedures that are followed in an EBERO event. The issues identified during the exercises were minor (e.g., missing step to send email to someone) and did not require
a root cause analysis. All identified issues were fixed promptly after the exercises by updating the EBERO procedures.
<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt"><o:p> </o:p></span></p>
<p class="MsoNormal"><b><span style="font-size:11.0pt">Review Team volunteers: <span style="background:yellow;mso-highlight:yellow">
Russ, </span></span></b><span style="font-size:11.0pt;background:yellow;mso-highlight:yellow">Laurin, Zarko</span><span style="font-size:11.0pt"><o:p></o:p></span></p>
<p class="MsoNormal"><b><span style="font-size:11.0pt">Workstream: DNS SSR </span>
</b><span style="font-size:11.0pt"><o:p></o:p></span></p>
<p class="MsoNormal"><b><span style="font-size:11.0pt">Topic: IDN domain names (glyph phish)
<o:p></o:p></span></b></p>
<p class="MsoNormal"><b><span style="font-size:11.0pt">Outstanding questions: 0<o:p></o:p></span></b></p>
<p class="MsoNormal"><b><span style="font-size:11.0pt"><o:p> </o:p></span></b></p>
<p class="MsoNormal"><span style="font-size:11.0pt">Q: Does ICANN support studies and research into the abuse of the DNS / URLs for phishing? If so, is there any documentation, outcome reports, etc?<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt">A: ICANN’s Office of the CTO (OCTO) provides anonymized monthly reports from the <a href="https://www.icann.org/octo-ssr/daar">Domain Abuse Activity Reporting (DAAR)</a> system, which monitors the amount of
spam, phishing, malware, and botnet domains in the DNS.<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt"><o:p> </o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt">Also note Recommendation 16 from the CCT Review Team, which the ICANN Board <a href="https://www.icann.org/en/system/files/files/resolutions-final-cct-recs-scorecard-01mar19-en.pdf">directed</a> in part to
the SSR2 Review Team:<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt">Further study the relationship between specific registry operators, registrars, and DNS Security Abuse [which includes phishing] by commissioning ongoing data collection, including but not limited to, ICANN
Domain Abuse Activity Reporting (DAAR) initiatives. For transparency purposes, this information should be regularly published, ideally quarterly and no less than annually, in order to be able to identify registries and registrars that need to come under greater
scrutiny, investigation, and potential enforcement action by ICANN organization. Upon identifying abuse phenomena, ICANN should put in place an action plan to respond to such studies, remedy problems identified, and define future ongoing data collection.<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt"> <o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt">OCTO will continue to publish DAAR reports. Should the above recommendation be implemented, further studies on phishing may be carried out
<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt"><o:p> </o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt">Q: Does ICANN liaise with the main browser manufacturers regarding URL handling, e.g. IDN display, warnings, etc?<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt">A: Liaising with browsers for IDN display and warnings relates to Universal Acceptance of domain names. The community has organized a Universal Acceptance Steering Group (UASG) to undertake these tasks, which
ICANN org has been supporting. </span><span lang="EN-NZ" style="font-size:11.0pt">Soon after its formation, in 2015/2016 UASG found multiple issues in how browsers were handling domain names. For example, in the browsers, domain names under new top-level
domains were being used as search items instead of domain names and IDNs were not being displayed correctly. UASG engaged in discussions with Google, Apple, and Microsoft to raise these issues about the respective browsers. Some discussions were also done
with Mozilla. UASG performed an evaluation of browsers, detailed in its report </span><span style="font-size:11.0pt"><a href="https://uasg.tech/wp-content/uploads/2017/09/UASG-Report-UASG016.pdf"><span lang="EN-NZ">UASG016</span></a></span><span lang="EN-NZ" style="font-size:11.0pt">,
which tested 17 URLs in eight browsers on six different operating systems (four desktop, two mobile). A reasonable support was shown in most browsers on desktop platforms (with some challenges for domain names in right-to-left scripts) but more varied results
were found in mobile platforms. See the report for further details. UASG is now considering to undertake the browser evaluation exercise again in FY20 as it reconsiders the evaluation criteria for testing these browsers (e.g. reconsider testing for open
dot) and as it looks to include more Android based browsers from China. </span><span style="font-size:11.0pt"><o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt"><o:p> </o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt">Best,<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt">Jennifer<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:10.5pt;color:black">-- <o:p></o:p></span></p>
<div>
<p class="MsoNormal"><b><span style="font-size:10.0pt;font-family:"Source Sans Pro";color:#595959">Jennifer Bryce</span></b><span style="color:black"><o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Source Sans Pro";color:#595959">MSSI Associate Project Manager</span><span style="color:black"><o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Source Sans Pro";color:#595959">Internet Corporation for Assigned Names and Numbers (ICANN)</span><span style="color:black"><o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Source Sans Pro";color:black"> </span><span style="color:black"><o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Source Sans Pro";color:#595959">Email: jennifer.bryce@icann.org</span><span style="color:black"><o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Source Sans Pro";color:#595959">Skype: jennifer.bryce.icann</span><span style="color:black"><o:p></o:p></span></p>
</div>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Source Sans Pro";color:#595959">www.icann.org</span><span style="font-size:11.0pt"><o:p></o:p></span></p>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
</body>
</html>