SlideShare une entreprise Scribd logo

ICANN 50: Name Collision Occurrence Management Framework

ICANN
ICANN

Inform the community of the proposal to handle name collision on new TLDs and collect input.

Technologie
1  sur  33
Télécharger pour lire hors ligne
TextText #ICANN50#ICANN50 Name Collision Occurrence Management Framework 23 June 2014 Francisco Arias Director, Technical Services Global Domains Division
TextText #ICANN50
TextText #ICANN50 Agenda • Introduction & Background • SSAC Comment Concerning JAS Phase One Report (SAC066) • ICANN Proposal • Questions & Answers
TextText #ICANN50 Introduction & Background
TextText COMPANY.CORP INTERNAL NETWORK .EXAMPLE PUBLIC WIFI Private network configured in such a way that could "leak" the request to the public Domain Name System (DNS), triggered by the use of a name in the private network matching a name in the public DNS. PUBLIC DNS NAME COLLISION ! NAME COLLISION ! User tries to access a service on a private network when connected to the Internet outside of that network. Name Collision Basics Private network configured in such a way that could “leak” the request to the public Domain Name System, when using a name in a private network that does not exists in the public DNS User tries to access a service on a private network when connected to the Internet outside of that network. company.example .example does not existwww.company.example
TextText Name Collision Basics COMPANY.CORP INTERNAL NETWORK .EXAMPLE PUBLIC WIFI Private network configured in such a way that could "leak" the request to the public Domain Name System (DNS), triggered by the use of a name in the private network matching a name in the public DNS. PUBLIC DNS NAME COLLISION ! NAME COLLISION ! User tries to access a service on a private network when connected to the Internet outside of that network. Private network configured in such a way that could “leak” the request to the public Domain Name System, when using a name in a private network matching a name in the public DNS User tries to access a service on a private network when connected to the Internet outside of that network. company.example .example exists www.company.example
TextText #ICANN50 Background 7 October 2013: NGPC adopted the New gTLD Collision Occurrence Management plan • Plan Overview o  Defer delegating .home and .corp indefinitely o  Commission a study to develop a Name Collision Occurrence Management Framework (“the Framework”) o  Each new gTLD registry to implement a Collision Occurrence Assessment based on the Framework o  Provide Alternate Path to Delegation for eligible strings o  Conduct Outreach Campaign
TextText #ICANN50 Development Process • November 2013: ICANN engaged JAS Global Advisors to develop a report with recommendations • JAS draft phase one report underwent public comment from 26 February to 21 April 2014 • SSAC Comment Concerning JAS phase one report (SAC066) published on 6 June 2014 • Final phase one version of the JAS report was published on 10 June 2014 • ICANN developed a proposal to be considered by the NGPC as the Framework
TextText Important Dates 2014 Jun 26 February: Version 1 of JAS phase one report published for public comment 10 June: Final version of JAS phase 1 report published 6 June: SSAC advice on JAS report published Feb MayJan Mar Apr 20 - 22 June: Board reviews ICANN proposal for the Framework
TextText #ICANN50 JAS Report on Namespace Collisions • JAS concludes: “We do not find that the addition of new Top-Level Domains (TLDs) fundamentally or significantly increases or changes the risks associated with DNS namespace collisions.” o  Risk in New TLD space concentrated in .home, .corp, and .mail o  Controlled Interruption approach substantially mitigates risk in all other New TLDs o  JAS’ assessments and recommendations in the Phase One report will not change in the Phase Two report
TextText #ICANN50 SAC066: SSAC Comment on JAS Phase I Report on Mitigating the Risk of DNS Namespace Collisions Patrik Fältström Chair of the Security and Stability Advisory Committee
TextText 12 Background • “Namespace collision”: where a name that is defined and used in one namespace may also appear in another. • Unexpected behavior may result where the intended use of the name is not the same in both namespaces. • The SSAC provides feedback to JAS Advisors’ Phase I Mitigation Report • Work started early April, ~8 weeks to reach consensus, report published in early June. #ICANN50
TextText 13 Background - Evaluations • Calculation of “best” solutions • Same or different formula • Same or different result • Principle Requirements from SSAC point of view: • Effective Communication • Measurability • Minimum Harm #ICANN50
TextText 14 Operational Recommendations Summary ICANN should: • Expand the range of situations that would trigger an emergency response. • Instead of a single controlled interruption period, introduce rolling interruption periods, broken by periods of normal operation. • Perform an evaluation of potential notification approaches prior to implementing any notification approach. #ICANN50
TextText 15 Operational Recommendations Summary, Cont. ICANN should: • Implement a notification approach that accommodates IPv6-only hosts as well as IPv4- only or dual-stack hosts. • Provide clarity to registries on the rules and the method of allocation of blocked names after the conclusion of the test period. #ICANN50
TextText 16 Strategic Recommendations Summary ICANN should: • Consider not taking any actions solely based on the JAS Phase One Report. • In due course publish information about not yet disclosed issues. • Seek to provide stronger justification for extrapolating findings based on one kind of measurement or data gathering to other situations. #ICANN50
TextText #ICANN50 ICANN Staff Proposal
TextText #ICANN50 ICANN Proposal Development • Proposal incorporates inputs from multiple parties: o  JAS Global Advisors phase one report “Mitigating the Risk of DNS Namespace Collisions” o  Public Comment on JAS phase one report o  SSAC Comment Concerning JAS phase one report (SAC066) • To be presented to the NGPC for consideration • To serve as the Name Collision Occurrence Management Framework contemplated by the 7 October 2013 Plan
TextText #ICANN50 Registry Requirements
TextText #ICANN50 General Requirements • Name collision report handling o  Respond within 2 hours o  Available for the life of the TLD • Controlled Interruption for 90 days o  Continuous interruption (i.e., not intermittent) o  Use loopback address (127.0.53.53) o  Add IPv6 option when available
TextText #ICANN50 SLD Controlled Interruption • Default option for TLDs delegated before proposal adoption • MX, SRV and A records for the SLDs in block list • Release of names in SLD block list o  Names can be allocated at any time (e.g., during Sunrise) o  Names cannot be activated in the DNS until after controlled interruption o  No requirement that names undergo Sunrise, only Claims
TextText #ICANN50 Wildcarded Controlled Interruption • Mandatory for TLDs delegated after proposal adoption • Option available to those delegated before proposal adoption, but only if TLD has no active names • Apex and wildcard MX, SRV, TXT and A records • No activation of names • RDDS (e.g., whois.nic.<tld>) and other obligations remain while in controlled interruption
TextText #ICANN50 ICANN Responsibilities
TextText #ICANN50 ICANN Implementation • Defer delegating .mail indefinitely (like .corp and .home) and work within the IETF to reserve those names • Produce information materials on name collision o  Make this information available on key web searches • Work within IETF to identify IPv6 option • Work with root server / TLD operators to measure and store data that can be used for name collision study and prevention in the future
TextText #ICANN50 ICANN Implementation (cont.) • Limit emergency response regarding name collision where there is clear and present danger to human life • Develop EBERO-like mechanism to cover registry unresponsiveness in regard to name collision reports • Develop last-resort procedure to remove TLD causing harm (i.e., a dotless name)
TextText #ICANN50 Alignment of the ICANN Proposal with SAC066
TextText #ICANN50 More Similarities Than Differences • ICANN proposal in alignment with majority of SSAC recommendations, including: o  Evaluate potential notification approaches against SSAC requirements (at least) prior to implementing approach (rec 3) o  Implement notification approach that accommodates IPv6-only hosts as well as IPv4-only or dual-stack hosts (rec 4) o  Provide clarity to registries on rules and method of allocation of blocked names after conclusion of test period (rec 5) o  Consider inputs beyond JAS phase one report before acting. If action will be taken, communicate this clearly to the community (rec 6)
TextText #ICANN50 More Similarities Than Differences (cont.) • ICANN proposal in alignment with SSAC recommendations (cont.) o  Publish information in due course about not yet disclosed issues (rec 7) o  Provide stronger justification for extrapolating findings based on one kind of measurement or data gathering to another situation (rec 8) • Exceptions o  Expand emergency response beyond clear and present danger to human life (rec 1) o  Utilize "rolling" controlled interruption (rec 2)
TextText #ICANN50 Clear and Present Danger to Human Life •  SSAC recommends expanding emergency response beyond clear and present danger to human life •  ICANN proposes to limit emergency response to situations that present clear and present danger to human life o  Severity can be measured from multiple points of view; necessarily, there will be a decision between various impacted parties o  Commercial interests could attempt to “game” a broader mechanism for competitive advantage o  Concepts like “national security,” “law and order” and “key economic processes” not easily agreeable on a global basis o  Focus on human life is the only non-debatable option
TextText #ICANN50 Controlled Interruption Period • SSAC recommends a rolling controlled interruption o  But acknowledges that every approach to controlled interruption involves balancing trade-offs and exercising judgment • ICANN proposes continuous controlled interruption o  Easier to diagnose and troubleshoot o  Lower operational risk to implement o  Mechanism already in place to find relief from name collisions o  Better way to indicate the need for changes in an affected party’s network configuration
TextText #ICANN50 Next Step: NGPC to consider ICANN proposal
TextText #ICANN50 Questions & Answers Read relevant reports & information: •  JAS Report on Namespace Collisions (final) o  https://www.icann.org/en/system/files/files/name- collision-mitigation-study-06jun14-en.pdf •  SAC066 o  https://www.icann.org/en/system/files/files/sac-066- en.pdf •  Public Comment of draft JAS report o  http://forum.icann.org/lists/comments-name- collision-26feb14/ @ICANN ICANNorg ICANN ICANN ICANNnewsSocial Media
TextText #ICANN50 Related Global Domains Division Sessions 25 June 2014 o  Thick Whois Consensus Policy Implementation Meeting o  IDN Variant TLDs Program o  Contractual Compliance Program Updates and Q&A o  TLD Acceptance o  Whiteboarding Session with IRTP - C IRT o  IDN Root Zone LGR Generation Panels Workshop o  ICANN’s Security, Stability & Resiliency Team Outreach Session o  New gTLD Registry Operator Engagement o  User Workshop for GDD Portal Check schedule for times & locations: http://london50.icann.org/schedule

Recommandé

Rapid IPv6 Deployment for ISP Networks
Rapid IPv6 Deployment for ISP NetworksRapid IPv6 Deployment for ISP Networks
Rapid IPv6 Deployment for ISP Networks
Skeeve Stevens
 
DNS & DNSSEC
DNS & DNSSECDNS & DNSSEC
DNS & DNSSEC
APNIC
 
Dnssec
DnssecDnssec
Dnssec
guest3131f85
 
SSL, HSTS and other stuff with two eSSes
SSL, HSTS and other stuff with two eSSesSSL, HSTS and other stuff with two eSSes
SSL, HSTS and other stuff with two eSSes
Tiago Mendo
 
SSL: limitations, bad practices and how to do it right
SSL: limitations, bad practices and how to do it rightSSL: limitations, bad practices and how to do it right
SSL: limitations, bad practices and how to do it right
Tiago Mendo
 
ION Durban - NAT64/DNS64 Experiments and the NAT64Check Tool
ION Durban - NAT64/DNS64 Experiments and the NAT64Check ToolION Durban - NAT64/DNS64 Experiments and the NAT64Check Tool
ION Durban - NAT64/DNS64 Experiments and the NAT64Check Tool
Deploy360 Programme (Internet Society)
 
Ariu - Ph.D. Defense Slides
Ariu - Ph.D. Defense SlidesAriu - Ph.D. Defense Slides
Ariu - Ph.D. Defense Slides
Pluribus One
 
HSB - Secure DNS en BGP ontwikkelingen - Benno Overeinder
HSB - Secure DNS en BGP ontwikkelingen - Benno OvereinderHSB - Secure DNS en BGP ontwikkelingen - Benno Overeinder
HSB - Secure DNS en BGP ontwikkelingen - Benno Overeinder
Splend
 

Recommandé

Rapid IPv6 Deployment for ISP Networks
Rapid IPv6 Deployment for ISP NetworksRapid IPv6 Deployment for ISP Networks
Rapid IPv6 Deployment for ISP Networks
Skeeve Stevens
 
DNS & DNSSEC
DNS & DNSSECDNS & DNSSEC
DNS & DNSSEC
APNIC
 
Dnssec
DnssecDnssec
Dnssec
guest3131f85
 
SSL, HSTS and other stuff with two eSSes
SSL, HSTS and other stuff with two eSSesSSL, HSTS and other stuff with two eSSes
SSL, HSTS and other stuff with two eSSes
Tiago Mendo
 
SSL: limitations, bad practices and how to do it right
SSL: limitations, bad practices and how to do it rightSSL: limitations, bad practices and how to do it right
SSL: limitations, bad practices and how to do it right
Tiago Mendo
 
ION Durban - NAT64/DNS64 Experiments and the NAT64Check Tool
ION Durban - NAT64/DNS64 Experiments and the NAT64Check ToolION Durban - NAT64/DNS64 Experiments and the NAT64Check Tool
ION Durban - NAT64/DNS64 Experiments and the NAT64Check Tool
Deploy360 Programme (Internet Society)
 
Ariu - Ph.D. Defense Slides
Ariu - Ph.D. Defense SlidesAriu - Ph.D. Defense Slides
Ariu - Ph.D. Defense Slides
Pluribus One
 
HSB - Secure DNS en BGP ontwikkelingen - Benno Overeinder
HSB - Secure DNS en BGP ontwikkelingen - Benno OvereinderHSB - Secure DNS en BGP ontwikkelingen - Benno Overeinder
HSB - Secure DNS en BGP ontwikkelingen - Benno Overeinder
Splend
 
DNS/DNSSEC by Nurul Islam
DNS/DNSSEC by Nurul IslamDNS/DNSSEC by Nurul Islam
DNS/DNSSEC by Nurul Islam
MyNOG
 
IPv6 Security und Hacking
IPv6 Security und HackingIPv6 Security und Hacking
IPv6 Security und Hacking
Swiss IPv6 Council
 
Swisscom: Testing von IPv6 Security Devices
Swisscom: Testing von IPv6 Security DevicesSwisscom: Testing von IPv6 Security Devices
Swisscom: Testing von IPv6 Security Devices
Swiss IPv6 Council
 
SSL, HSTS and other stuff with two eSSes
SSL, HSTS and other stuff with two eSSesSSL, HSTS and other stuff with two eSSes
SSL, HSTS and other stuff with two eSSes
Tiago Mendo
 
PLNOG16: Mix 2-in-1: IPv6 troubleshooting for helpdesks - and – DANE/DNSSE...
PLNOG16: Mix 2-in-1: IPv6 troubleshooting for helpdesks - and – DANE/DNSSE...PLNOG16: Mix 2-in-1: IPv6 troubleshooting for helpdesks - and – DANE/DNSSE...
PLNOG16: Mix 2-in-1: IPv6 troubleshooting for helpdesks - and – DANE/DNSSE...
PROIDEA
 
IPv6 address-planning
IPv6 address-planningIPv6 address-planning
IPv6 address-planning
Tim Martin
 
Sky IPv6 Update
Sky IPv6 UpdateSky IPv6 Update
Sky IPv6 Update
Oliver Müller
 
Presd1 09
Presd1 09Presd1 09
Presd1 09
Niels Groeneveld
 
Eric Vyncke - Layer-2 security, ipv6 norway
Eric Vyncke - Layer-2 security, ipv6 norwayEric Vyncke - Layer-2 security, ipv6 norway
Eric Vyncke - Layer-2 security, ipv6 norway
IKT-Norge
 
SIP and DNS - federation, failover, load balancing and more
SIP and DNS - federation, failover, load balancing and moreSIP and DNS - federation, failover, load balancing and more
SIP and DNS - federation, failover, load balancing and more
Olle E Johansson
 
Sipforum SIP & IPv6 discussion slides
Sipforum SIP & IPv6 discussion slidesSipforum SIP & IPv6 discussion slides
Sipforum SIP & IPv6 discussion slides
Olle E Johansson
 
IPv6-strategic-planning-framework
IPv6-strategic-planning-frameworkIPv6-strategic-planning-framework
IPv6-strategic-planning-framework
Tim Martin
 
IPv6 Development in ITB 2013
IPv6 Development in ITB 2013IPv6 Development in ITB 2013
IPv6 Development in ITB 2013
Affan Basalamah
 
Eric Vyncke - IPv6 security in general
Eric Vyncke - IPv6 security in generalEric Vyncke - IPv6 security in general
Eric Vyncke - IPv6 security in general
IKT-Norge
 
IPv6 &amp; The Internet Today
IPv6 &amp; The Internet TodayIPv6 &amp; The Internet Today
IPv6 &amp; The Internet Today
Adil Hidayat
 
Henrik Strøm - IPv6 from the attacker's perspective
Henrik Strøm - IPv6 from the attacker's perspectiveHenrik Strøm - IPv6 from the attacker's perspective
Henrik Strøm - IPv6 from the attacker's perspective
IKT-Norge
 
Fedv6tf-fhs
Fedv6tf-fhsFedv6tf-fhs
Fedv6tf-fhs
Tim Martin
 
Microsoft IT's IPv6 Killer App
Microsoft IT's IPv6 Killer AppMicrosoft IT's IPv6 Killer App
Microsoft IT's IPv6 Killer App
Oliver Müller
 
VNIX-NOG 2021: IPv6 Deployment Update
VNIX-NOG 2021: IPv6 Deployment UpdateVNIX-NOG 2021: IPv6 Deployment Update
VNIX-NOG 2021: IPv6 Deployment Update
APNIC
 
Sky IPv6 Launch
Sky IPv6 LaunchSky IPv6 Launch
Sky IPv6 Launch
Oliver Müller
 
We Are Social: Think Forward 2016
We Are Social: Think Forward 2016We Are Social: Think Forward 2016
We Are Social: Think Forward 2016
We Are Social
 
We Are Social's Guide to Social, Digital and Mobile Around the World (Feb 2013)
We Are Social's Guide to Social, Digital and Mobile Around the World (Feb 2013)We Are Social's Guide to Social, Digital and Mobile Around the World (Feb 2013)
We Are Social's Guide to Social, Digital and Mobile Around the World (Feb 2013)
We Are Social Singapore
 

Contenu connexe

Tendances

Swisscom: Testing von IPv6 Security Devices
Swisscom: Testing von IPv6 Security DevicesSwisscom: Testing von IPv6 Security Devices
Swisscom: Testing von IPv6 Security Devices
Swiss IPv6 Council
 

Tendances (20)

DNS/DNSSEC by Nurul Islam
DNS/DNSSEC by Nurul IslamDNS/DNSSEC by Nurul Islam
DNS/DNSSEC by Nurul Islam
 
IPv6 Security und Hacking
IPv6 Security und HackingIPv6 Security und Hacking
IPv6 Security und Hacking
 
Swisscom: Testing von IPv6 Security Devices
Swisscom: Testing von IPv6 Security DevicesSwisscom: Testing von IPv6 Security Devices
Swisscom: Testing von IPv6 Security Devices
 
SSL, HSTS and other stuff with two eSSes
SSL, HSTS and other stuff with two eSSesSSL, HSTS and other stuff with two eSSes
SSL, HSTS and other stuff with two eSSes
 
PLNOG16: Mix 2-in-1: IPv6 troubleshooting for helpdesks - and – DANE/DNSSE...
PLNOG16: Mix 2-in-1: IPv6 troubleshooting for helpdesks - and – DANE/DNSSE...PLNOG16: Mix 2-in-1: IPv6 troubleshooting for helpdesks - and – DANE/DNSSE...
PLNOG16: Mix 2-in-1: IPv6 troubleshooting for helpdesks - and – DANE/DNSSE...
 
IPv6 address-planning
IPv6 address-planningIPv6 address-planning
IPv6 address-planning
 
Sky IPv6 Update
Sky IPv6 UpdateSky IPv6 Update
Sky IPv6 Update
 
Presd1 09
Presd1 09Presd1 09
Presd1 09
 
Eric Vyncke - Layer-2 security, ipv6 norway
Eric Vyncke - Layer-2 security, ipv6 norwayEric Vyncke - Layer-2 security, ipv6 norway
Eric Vyncke - Layer-2 security, ipv6 norway
 
SIP and DNS - federation, failover, load balancing and more
SIP and DNS - federation, failover, load balancing and moreSIP and DNS - federation, failover, load balancing and more
SIP and DNS - federation, failover, load balancing and more
 
Sipforum SIP & IPv6 discussion slides
Sipforum SIP & IPv6 discussion slidesSipforum SIP & IPv6 discussion slides
Sipforum SIP & IPv6 discussion slides
 
IPv6-strategic-planning-framework
IPv6-strategic-planning-frameworkIPv6-strategic-planning-framework
IPv6-strategic-planning-framework
 
IPv6 Development in ITB 2013
IPv6 Development in ITB 2013IPv6 Development in ITB 2013
IPv6 Development in ITB 2013
 
Eric Vyncke - IPv6 security in general
Eric Vyncke - IPv6 security in generalEric Vyncke - IPv6 security in general
Eric Vyncke - IPv6 security in general
 
IPv6 &amp; The Internet Today
IPv6 &amp; The Internet TodayIPv6 &amp; The Internet Today
IPv6 &amp; The Internet Today
 
Henrik Strøm - IPv6 from the attacker's perspective
Henrik Strøm - IPv6 from the attacker's perspectiveHenrik Strøm - IPv6 from the attacker's perspective
Henrik Strøm - IPv6 from the attacker's perspective
 
Fedv6tf-fhs
Fedv6tf-fhsFedv6tf-fhs
Fedv6tf-fhs
 
Microsoft IT's IPv6 Killer App
Microsoft IT's IPv6 Killer AppMicrosoft IT's IPv6 Killer App
Microsoft IT's IPv6 Killer App
 
VNIX-NOG 2021: IPv6 Deployment Update
VNIX-NOG 2021: IPv6 Deployment UpdateVNIX-NOG 2021: IPv6 Deployment Update
VNIX-NOG 2021: IPv6 Deployment Update
 
Sky IPv6 Launch
Sky IPv6 LaunchSky IPv6 Launch
Sky IPv6 Launch
 

En vedette

En vedette (7)

We Are Social: Think Forward 2016
We Are Social: Think Forward 2016We Are Social: Think Forward 2016
We Are Social: Think Forward 2016
 
We Are Social's Guide to Social, Digital and Mobile Around the World (Feb 2013)
We Are Social's Guide to Social, Digital and Mobile Around the World (Feb 2013)We Are Social's Guide to Social, Digital and Mobile Around the World (Feb 2013)
We Are Social's Guide to Social, Digital and Mobile Around the World (Feb 2013)
 
Think forward 2017
Think forward 2017Think forward 2017
Think forward 2017
 
Social, Digital & Mobile Around The World (January 2014)
Social, Digital & Mobile Around The World (January 2014)Social, Digital & Mobile Around The World (January 2014)
Social, Digital & Mobile Around The World (January 2014)
 
Digital, Social & Mobile in 2015
Digital, Social & Mobile in 2015Digital, Social & Mobile in 2015
Digital, Social & Mobile in 2015
 
Digital in 2017 Global Overview
Digital in 2017 Global OverviewDigital in 2017 Global Overview
Digital in 2017 Global Overview
 
Digital in 2016
Digital in 2016Digital in 2016
Digital in 2016
 

Similaire à ICANN 50: Name Collision Occurrence Management Framework

Roadmap to Next Generation IP Networks: A Review of the Fundamentals
Roadmap to Next Generation IP Networks: A Review of the FundamentalsRoadmap to Next Generation IP Networks: A Review of the Fundamentals
Roadmap to Next Generation IP Networks: A Review of the Fundamentals
Network Utility Force
 
Challenge in asia region connecting each testbed and poc of distributed nfv ...
Challenge in asia region connecting each testbed and poc of distributed nfv ...Challenge in asia region connecting each testbed and poc of distributed nfv ...
Challenge in asia region connecting each testbed and poc of distributed nfv ...
OPNFV
 
MIgrating to RAC using Dataguard
MIgrating to RAC using Dataguard MIgrating to RAC using Dataguard
MIgrating to RAC using Dataguard
Fuad Arshad
 
Onos summit roadmap dec 9
Onos summit roadmap dec 9Onos summit roadmap dec 9
Onos summit roadmap dec 9
ONOS Project
 
OpenStack Enabling DevOps
OpenStack Enabling DevOpsOpenStack Enabling DevOps
OpenStack Enabling DevOps
Cisco DevNet
 

Similaire à ICANN 50: Name Collision Occurrence Management Framework (20)

ICANN 51: Name Collision
ICANN 51: Name CollisionICANN 51: Name Collision
ICANN 51: Name Collision
 
Tech 2 Tech IPv6 presentation
Tech 2 Tech IPv6 presentationTech 2 Tech IPv6 presentation
Tech 2 Tech IPv6 presentation
 
Name Collision Mitigation Update from ICANN 49
Name Collision Mitigation Update from ICANN 49Name Collision Mitigation Update from ICANN 49
Name Collision Mitigation Update from ICANN 49
 
Roadmap to Next Generation IP Networks: A Review of the Fundamentals
Roadmap to Next Generation IP Networks: A Review of the FundamentalsRoadmap to Next Generation IP Networks: A Review of the Fundamentals
Roadmap to Next Generation IP Networks: A Review of the Fundamentals
 
Challenge in asia region connecting each testbed and poc of distributed nfv ...
Challenge in asia region connecting each testbed and poc of distributed nfv ...Challenge in asia region connecting each testbed and poc of distributed nfv ...
Challenge in asia region connecting each testbed and poc of distributed nfv ...
 
Kinber ipv6-education-healthcare
Kinber ipv6-education-healthcareKinber ipv6-education-healthcare
Kinber ipv6-education-healthcare
 
ION Santiago: What's Happening at the IETF? Internet Standards and How to Get...
ION Santiago: What's Happening at the IETF? Internet Standards and How to Get...ION Santiago: What's Happening at the IETF? Internet Standards and How to Get...
ION Santiago: What's Happening at the IETF? Internet Standards and How to Get...
 
ICANN Presentation - iWeek2017
ICANN Presentation - iWeek2017ICANN Presentation - iWeek2017
ICANN Presentation - iWeek2017
 
MIgrating to RAC using Dataguard
MIgrating to RAC using Dataguard MIgrating to RAC using Dataguard
MIgrating to RAC using Dataguard
 
Internet Week 2018: 1.1.1.0/24 A report from the (anycast) trenches
Internet Week 2018: 1.1.1.0/24 A report from the (anycast) trenchesInternet Week 2018: 1.1.1.0/24 A report from the (anycast) trenches
Internet Week 2018: 1.1.1.0/24 A report from the (anycast) trenches
 
CAv6TF Meeting - 2014-05-27 - IPv6@ VMware Integration Engineering
CAv6TF Meeting - 2014-05-27 - IPv6@ VMware Integration EngineeringCAv6TF Meeting - 2014-05-27 - IPv6@ VMware Integration Engineering
CAv6TF Meeting - 2014-05-27 - IPv6@ VMware Integration Engineering
 
Onos summit roadmap dec 9
Onos summit roadmap dec 9Onos summit roadmap dec 9
Onos summit roadmap dec 9
 
The Evolution of Testing Methodology at AWS: From Status Quo to Formal Method...
The Evolution of Testing Methodology at AWS: From Status Quo to Formal Method...The Evolution of Testing Methodology at AWS: From Status Quo to Formal Method...
The Evolution of Testing Methodology at AWS: From Status Quo to Formal Method...
 
IPv6 Campus Deployment Panel
IPv6 Campus Deployment PanelIPv6 Campus Deployment Panel
IPv6 Campus Deployment Panel
 
12.00 - Dr. Tim Chown - University of Southampton
12.00 - Dr. Tim Chown - University of Southampton12.00 - Dr. Tim Chown - University of Southampton
12.00 - Dr. Tim Chown - University of Southampton
 
ICANN 51: Universal Acceptance
ICANN 51: Universal AcceptanceICANN 51: Universal Acceptance
ICANN 51: Universal Acceptance
 
Building an IPv6 address management system
Building an IPv6 address management systemBuilding an IPv6 address management system
Building an IPv6 address management system
 
Developing on OpenStack Startup Edmonton
Developing on OpenStack Startup EdmontonDeveloping on OpenStack Startup Edmonton
Developing on OpenStack Startup Edmonton
 
ION Krakow - DNSSEC Panel Introduction
ION Krakow - DNSSEC Panel IntroductionION Krakow - DNSSEC Panel Introduction
ION Krakow - DNSSEC Panel Introduction
 
OpenStack Enabling DevOps
OpenStack Enabling DevOpsOpenStack Enabling DevOps
OpenStack Enabling DevOps
 

Plus de ICANN

Plus de ICANN (20)

Call for Volunteers: Accountability & Transparency Review Team_PT
Call for Volunteers: Accountability & Transparency Review Team_PTCall for Volunteers: Accountability & Transparency Review Team_PT
Call for Volunteers: Accountability & Transparency Review Team_PT
 
Call for Volunteers: Accountability & Transparency Review Team_ZH
Call for Volunteers: Accountability & Transparency Review Team_ZHCall for Volunteers: Accountability & Transparency Review Team_ZH
Call for Volunteers: Accountability & Transparency Review Team_ZH
 
Call for Volunteers: Accountability & Transparency Review Team_ES
Call for Volunteers: Accountability & Transparency Review Team_ESCall for Volunteers: Accountability & Transparency Review Team_ES
Call for Volunteers: Accountability & Transparency Review Team_ES
 
Call for Volunteers: Accountability & Transparency Review Team_AR
Call for Volunteers: Accountability & Transparency Review Team_ARCall for Volunteers: Accountability & Transparency Review Team_AR
Call for Volunteers: Accountability & Transparency Review Team_AR
 
Call for Volunteers: Accountability & Transparency Review Team_FR
Call for Volunteers: Accountability & Transparency Review Team_FRCall for Volunteers: Accountability & Transparency Review Team_FR
Call for Volunteers: Accountability & Transparency Review Team_FR
 
Call for Volunteers: Accountability & Transparency Review Team_RU
Call for Volunteers: Accountability & Transparency Review Team_RUCall for Volunteers: Accountability & Transparency Review Team_RU
Call for Volunteers: Accountability & Transparency Review Team_RU
 
Call for Volunteers: Accountability & Transparency Review Team
Call for Volunteers: Accountability & Transparency Review TeamCall for Volunteers: Accountability & Transparency Review Team
Call for Volunteers: Accountability & Transparency Review Team
 
ICANN Expected Standards of Behavior | French
ICANN Expected Standards of Behavior | FrenchICANN Expected Standards of Behavior | French
ICANN Expected Standards of Behavior | French
 
ICANN Expected Standards of Behavior
ICANN Expected Standards of BehaviorICANN Expected Standards of Behavior
ICANN Expected Standards of Behavior
 
ICANN Expected Standards of Behavior | Russian
ICANN Expected Standards of Behavior | RussianICANN Expected Standards of Behavior | Russian
ICANN Expected Standards of Behavior | Russian
 
ICANN Expected Standards of Behavior | Arabic
ICANN Expected Standards of Behavior | ArabicICANN Expected Standards of Behavior | Arabic
ICANN Expected Standards of Behavior | Arabic
 
ICANN Expected Standards of Behavior | Chinese
ICANN Expected Standards of Behavior | ChineseICANN Expected Standards of Behavior | Chinese
ICANN Expected Standards of Behavior | Chinese
 
ICANN Expected Standards of Behavior | Spanish
ICANN Expected Standards of Behavior | SpanishICANN Expected Standards of Behavior | Spanish
ICANN Expected Standards of Behavior | Spanish
 
Policy Development Process Infographic Turkish
Policy Development Process Infographic TurkishPolicy Development Process Infographic Turkish
Policy Development Process Infographic Turkish
 
Policy Development Process Infographic Russian
Policy Development Process Infographic RussianPolicy Development Process Infographic Russian
Policy Development Process Infographic Russian
 
Policy Development Process Infographic Portuguese
Policy Development Process Infographic PortuguesePolicy Development Process Infographic Portuguese
Policy Development Process Infographic Portuguese
 
Policy Development Process Infographic Spanish
Policy Development Process Infographic SpanishPolicy Development Process Infographic Spanish
Policy Development Process Infographic Spanish
 
Policy Development Process Infographic French
Policy Development Process Infographic FrenchPolicy Development Process Infographic French
Policy Development Process Infographic French
 
Policy Development Process Infographic English
Policy Development Process Infographic EnglishPolicy Development Process Infographic English
Policy Development Process Infographic English
 
Policy Development Process Infographic Chinese
Policy Development Process Infographic ChinesePolicy Development Process Infographic Chinese
Policy Development Process Infographic Chinese
 

Dernier

Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Victor Rentea
 
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Orbitshub
 
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdfRising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Orbitshub
 
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
?#DUbAI#??##{{(☎️+971_581248768%)**%*]'#abortion pills for sale in dubai@
 
Architecting Cloud Native Applications
Architecting Cloud Native ApplicationsArchitecting Cloud Native Applications
Architecting Cloud Native Applications
WSO2
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc
 

Dernier (20)

ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemkeProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
 
Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024
 
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, AdobeApidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
 
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
 
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdfRising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
 
Vector Search -An Introduction in Oracle Database 23ai.pptx
Vector Search -An Introduction in Oracle Database 23ai.pptxVector Search -An Introduction in Oracle Database 23ai.pptx
Vector Search -An Introduction in Oracle Database 23ai.pptx
 
ICT role in 21st century education and its challenges
ICT role in 21st century education and its challengesICT role in 21st century education and its challenges
ICT role in 21st century education and its challenges
 
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingRepurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
 
DBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor Presentation
 
Architecting Cloud Native Applications
Architecting Cloud Native ApplicationsArchitecting Cloud Native Applications
Architecting Cloud Native Applications
 
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot ModelMcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdf
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
 
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWEREMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
 
FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024
 
Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)
 
presentation ICT roal in 21st century education
presentation ICT roal in 21st century educationpresentation ICT roal in 21st century education
presentation ICT roal in 21st century education
 

ICANN 50: Name Collision Occurrence Management Framework

  • 1. TextText #ICANN50#ICANN50 Name Collision Occurrence Management Framework 23 June 2014 Francisco Arias Director, Technical Services Global Domains Division
  • 3. TextText #ICANN50 Agenda • Introduction & Background • SSAC Comment Concerning JAS Phase One Report (SAC066) • ICANN Proposal • Questions & Answers
  • 5. TextText COMPANY.CORP INTERNAL NETWORK .EXAMPLE PUBLIC WIFI Private network configured in such a way that could "leak" the request to the public Domain Name System (DNS), triggered by the use of a name in the private network matching a name in the public DNS. PUBLIC DNS NAME COLLISION ! NAME COLLISION ! User tries to access a service on a private network when connected to the Internet outside of that network. Name Collision Basics Private network configured in such a way that could “leak” the request to the public Domain Name System, when using a name in a private network that does not exists in the public DNS User tries to access a service on a private network when connected to the Internet outside of that network. company.example .example does not existwww.company.example
  • 6. TextText Name Collision Basics COMPANY.CORP INTERNAL NETWORK .EXAMPLE PUBLIC WIFI Private network configured in such a way that could "leak" the request to the public Domain Name System (DNS), triggered by the use of a name in the private network matching a name in the public DNS. PUBLIC DNS NAME COLLISION ! NAME COLLISION ! User tries to access a service on a private network when connected to the Internet outside of that network. Private network configured in such a way that could “leak” the request to the public Domain Name System, when using a name in a private network matching a name in the public DNS User tries to access a service on a private network when connected to the Internet outside of that network. company.example .example exists www.company.example
  • 7. TextText #ICANN50 Background 7 October 2013: NGPC adopted the New gTLD Collision Occurrence Management plan • Plan Overview o  Defer delegating .home and .corp indefinitely o  Commission a study to develop a Name Collision Occurrence Management Framework (“the Framework”) o  Each new gTLD registry to implement a Collision Occurrence Assessment based on the Framework o  Provide Alternate Path to Delegation for eligible strings o  Conduct Outreach Campaign
  • 8. TextText #ICANN50 Development Process • November 2013: ICANN engaged JAS Global Advisors to develop a report with recommendations • JAS draft phase one report underwent public comment from 26 February to 21 April 2014 • SSAC Comment Concerning JAS phase one report (SAC066) published on 6 June 2014 • Final phase one version of the JAS report was published on 10 June 2014 • ICANN developed a proposal to be considered by the NGPC as the Framework
  • 9. TextText Important Dates 2014 Jun 26 February: Version 1 of JAS phase one report published for public comment 10 June: Final version of JAS phase 1 report published 6 June: SSAC advice on JAS report published Feb MayJan Mar Apr 20 - 22 June: Board reviews ICANN proposal for the Framework
  • 10. TextText #ICANN50 JAS Report on Namespace Collisions • JAS concludes: “We do not find that the addition of new Top-Level Domains (TLDs) fundamentally or significantly increases or changes the risks associated with DNS namespace collisions.” o  Risk in New TLD space concentrated in .home, .corp, and .mail o  Controlled Interruption approach substantially mitigates risk in all other New TLDs o  JAS’ assessments and recommendations in the Phase One report will not change in the Phase Two report
  • 11. TextText #ICANN50 SAC066: SSAC Comment on JAS Phase I Report on Mitigating the Risk of DNS Namespace Collisions Patrik Fältström Chair of the Security and Stability Advisory Committee
  • 12. TextText 12 Background • “Namespace collision”: where a name that is defined and used in one namespace may also appear in another. • Unexpected behavior may result where the intended use of the name is not the same in both namespaces. • The SSAC provides feedback to JAS Advisors’ Phase I Mitigation Report • Work started early April, ~8 weeks to reach consensus, report published in early June. #ICANN50
  • 13. TextText 13 Background - Evaluations • Calculation of “best” solutions • Same or different formula • Same or different result • Principle Requirements from SSAC point of view: • Effective Communication • Measurability • Minimum Harm #ICANN50
  • 14. TextText 14 Operational Recommendations Summary ICANN should: • Expand the range of situations that would trigger an emergency response. • Instead of a single controlled interruption period, introduce rolling interruption periods, broken by periods of normal operation. • Perform an evaluation of potential notification approaches prior to implementing any notification approach. #ICANN50
  • 15. TextText 15 Operational Recommendations Summary, Cont. ICANN should: • Implement a notification approach that accommodates IPv6-only hosts as well as IPv4- only or dual-stack hosts. • Provide clarity to registries on the rules and the method of allocation of blocked names after the conclusion of the test period. #ICANN50
  • 16. TextText 16 Strategic Recommendations Summary ICANN should: • Consider not taking any actions solely based on the JAS Phase One Report. • In due course publish information about not yet disclosed issues. • Seek to provide stronger justification for extrapolating findings based on one kind of measurement or data gathering to other situations. #ICANN50
  • 18. TextText #ICANN50 ICANN Proposal Development • Proposal incorporates inputs from multiple parties: o  JAS Global Advisors phase one report “Mitigating the Risk of DNS Namespace Collisions” o  Public Comment on JAS phase one report o  SSAC Comment Concerning JAS phase one report (SAC066) • To be presented to the NGPC for consideration • To serve as the Name Collision Occurrence Management Framework contemplated by the 7 October 2013 Plan
  • 20. TextText #ICANN50 General Requirements • Name collision report handling o  Respond within 2 hours o  Available for the life of the TLD • Controlled Interruption for 90 days o  Continuous interruption (i.e., not intermittent) o  Use loopback address (127.0.53.53) o  Add IPv6 option when available
  • 21. TextText #ICANN50 SLD Controlled Interruption • Default option for TLDs delegated before proposal adoption • MX, SRV and A records for the SLDs in block list • Release of names in SLD block list o  Names can be allocated at any time (e.g., during Sunrise) o  Names cannot be activated in the DNS until after controlled interruption o  No requirement that names undergo Sunrise, only Claims
  • 22. TextText #ICANN50 Wildcarded Controlled Interruption • Mandatory for TLDs delegated after proposal adoption • Option available to those delegated before proposal adoption, but only if TLD has no active names • Apex and wildcard MX, SRV, TXT and A records • No activation of names • RDDS (e.g., whois.nic.<tld>) and other obligations remain while in controlled interruption
  • 24. TextText #ICANN50 ICANN Implementation • Defer delegating .mail indefinitely (like .corp and .home) and work within the IETF to reserve those names • Produce information materials on name collision o  Make this information available on key web searches • Work within IETF to identify IPv6 option • Work with root server / TLD operators to measure and store data that can be used for name collision study and prevention in the future
  • 25. TextText #ICANN50 ICANN Implementation (cont.) • Limit emergency response regarding name collision where there is clear and present danger to human life • Develop EBERO-like mechanism to cover registry unresponsiveness in regard to name collision reports • Develop last-resort procedure to remove TLD causing harm (i.e., a dotless name)
  • 26. TextText #ICANN50 Alignment of the ICANN Proposal with SAC066
  • 27. TextText #ICANN50 More Similarities Than Differences • ICANN proposal in alignment with majority of SSAC recommendations, including: o  Evaluate potential notification approaches against SSAC requirements (at least) prior to implementing approach (rec 3) o  Implement notification approach that accommodates IPv6-only hosts as well as IPv4-only or dual-stack hosts (rec 4) o  Provide clarity to registries on rules and method of allocation of blocked names after conclusion of test period (rec 5) o  Consider inputs beyond JAS phase one report before acting. If action will be taken, communicate this clearly to the community (rec 6)
  • 28. TextText #ICANN50 More Similarities Than Differences (cont.) • ICANN proposal in alignment with SSAC recommendations (cont.) o  Publish information in due course about not yet disclosed issues (rec 7) o  Provide stronger justification for extrapolating findings based on one kind of measurement or data gathering to another situation (rec 8) • Exceptions o  Expand emergency response beyond clear and present danger to human life (rec 1) o  Utilize "rolling" controlled interruption (rec 2)
  • 29. TextText #ICANN50 Clear and Present Danger to Human Life •  SSAC recommends expanding emergency response beyond clear and present danger to human life •  ICANN proposes to limit emergency response to situations that present clear and present danger to human life o  Severity can be measured from multiple points of view; necessarily, there will be a decision between various impacted parties o  Commercial interests could attempt to “game” a broader mechanism for competitive advantage o  Concepts like “national security,” “law and order” and “key economic processes” not easily agreeable on a global basis o  Focus on human life is the only non-debatable option
  • 30. TextText #ICANN50 Controlled Interruption Period • SSAC recommends a rolling controlled interruption o  But acknowledges that every approach to controlled interruption involves balancing trade-offs and exercising judgment • ICANN proposes continuous controlled interruption o  Easier to diagnose and troubleshoot o  Lower operational risk to implement o  Mechanism already in place to find relief from name collisions o  Better way to indicate the need for changes in an affected party’s network configuration
  • 31. TextText #ICANN50 Next Step: NGPC to consider ICANN proposal
  • 32. TextText #ICANN50 Questions & Answers Read relevant reports & information: •  JAS Report on Namespace Collisions (final) o  https://www.icann.org/en/system/files/files/name- collision-mitigation-study-06jun14-en.pdf •  SAC066 o  https://www.icann.org/en/system/files/files/sac-066- en.pdf •  Public Comment of draft JAS report o  http://forum.icann.org/lists/comments-name- collision-26feb14/ @ICANN ICANNorg ICANN ICANN ICANNnewsSocial Media
  • 33. TextText #ICANN50 Related Global Domains Division Sessions 25 June 2014 o  Thick Whois Consensus Policy Implementation Meeting o  IDN Variant TLDs Program o  Contractual Compliance Program Updates and Q&A o  TLD Acceptance o  Whiteboarding Session with IRTP - C IRT o  IDN Root Zone LGR Generation Panels Workshop o  ICANN’s Security, Stability & Resiliency Team Outreach Session o  New gTLD Registry Operator Engagement o  User Workshop for GDD Portal Check schedule for times & locations: http://london50.icann.org/schedule