[GNSO-TPR] Suggested text for Rec 7 (TAC Security)

Sarah Wyld swyld at tucows.com
Mon Apr 25 14:18:47 UTC 2022 

Hello Team,

I am here to propose new text for our Recommendation #7 (was #3) which sets out security requirements for the TAC. 

Here is the current shared draft text: 
The Working Group recommends that ICANN org establish minimum requirements for the composition of the TAC (for example, minimum length, syntax, or entropy value) based on current applicable technical security standards. ICANN org may change these requirements in response to new or updated standards, but any changes to the requirements must go in effect with sufficient notification and time for contracted parties  to implement the necessary updates.

Here is my suggested updated version:
The Working Group recommends that Registrars and Registry Operators follow best practices for the composition of the TAC (for example, minimum length, syntax, or entropy value) based on current applicable technical security standards such as RFC9154 or subsequent or similar RFCs. These best practices may be updated in response to new or updated standards as appropriate.

Or if redline is preferred:
The Working Group recommends that ICANN org establish minimum requirements Registrars and Registry Operators follow best practices for the composition of the TAC (for example, minimum length, syntax, or entropy value) based on current applicable technical security standards such as RFC9154 or subsequent or similar RFCs. These best practices may be updated ICANN org may change these requirements in response to new or updated standards as appropriate, but any changes to the requirements must go in effect with sufficient notification and time for contracted parties  to implement the necessary updates.

This has been discussed (with generally positive sentiment) in the CPH TechOps team. Thank you! 


-- 
Sarah Wyld, CIPP/E

Policy & Privacy Manager
Pronouns: she/they

swyld at tucows.com 



-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mm.icann.org/pipermail/gnso-tpr/attachments/20220425/96d67b47/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 20349ACBCE7C4C7C8E2AEDAD64508B39.png
Type: image/png
Size: 15060 bytes
Desc: not available
URL: <https://mm.icann.org/pipermail/gnso-tpr/attachments/20220425/96d67b47/20349ACBCE7C4C7C8E2AEDAD64508B39.png>

More information about the GNSO-TPR mailing list