Cheers, Chris Disspain CEO - auDA Sent from my phone Begin forwarded message:
I want to share one last piece of information with you: an observation I feel obligated to share as the CEO of ICANN, particularly under the AoC paras 3 and 9.2, which refer to the security of the domain name system. Paragraph 3 refers to ICANN's role and requirement to preserve the security of the DNS globally. What I want to share with you as representatives of many Governments of the world is that the DNS is under attack today as it has never been before.
I've personally consulted with over 20 CEOs of the top registries and the top registrars globally, all of whom are seeing increasing attacks and complexity of attacks and who are extremely concerned.
The DNS is more fragile and vulnerable today than it has ever been and it could stop at any given point in time, literally. It's never stopped: it has been slowed down through attacks, and the Kaminsky exploit that was disclosed only 18 months ago or so could have been used to fundamentally cripple the DNS. That system is used 1 trillion times per day and your economies depend upon it.
It can stop or it can be materially damaged and harmed. It is under attack. Parts of that system are in your countries and I will be writing you a letter and asking you for what is happening in the DNS in your countries because we are seeing new levels of wildcarding that is occurring at the telecom / service provider level, synthesis of DNS providers interrupting DNS requests, and providing false data and information for commercial and other purposes. But the system is under full-scale attack and I am extremely concerned - as the CEO of ICANN I wanted to let you know that, and we're all in this together.
I have met with heads of cyber-security or technical infrastructure of 3 of the largest countries on Earth who are concerned as well. I am sharing this because I am gravely concerned and we need your help. So we're going to be asking you for your advice on domain name security and on the DNSCert and what can be done a particularly learn from your CERTs as well - what has been accomplished in your countries. I have experience with CERTs in several countries but we need to learn more. So that will be coming and I just want to express my concern to this group because I don't want to wait until Brussels.
----