Chris, Unfortunately, we are getting used to read this kind of worries by the ICANN leadership on Security issues (physical or virtual). I'm concerned that, like the children's story, in the future it could be true for once and nobody will believe him. Oscar -----Original Message----- From: owner-ccnso-council@icann.org [mailto:owner-ccnso-council@icann.org] On Behalf Of Chris Disspain Sent: Wednesday, March 10, 2010 3:42 AM To: ccNSO Council; ccNSO Members Subject: [ccnso-council] ICANN CEO to GAC yesterday on security Chris Disspain CEO - auDA au Domain Administration Ltd ceo@auda.org.au www.auda.org.au
In case it is of use I forward some quick note I took from the audio recording - not 100% word-for-word, but from my speed-typed notes, he said:
Under AoC paras 3 and 9.2, ICANN has a responsibility wrt the security of the domain name system. The DNS is under attack today as never before. I've contacted the top 20 CEOs of companies and they confirm. The DNS is more fragile than it has ever been and it could stop at any time. It's never stopped before, though the Kaminsky attack slowed it down. It could have fundamentally damaged the DNS which is used more than 3 trillion times a day (confirm?). Your economies depend on it. It could stop or it could be materially damaged. Parts of the system is in your countries. I will be writing you (GAC mbrs) asking what is happening. We are seeing new levels of wildcarding at the telecoms, synthesis of DNS operators, providing false information. But the system is under severe attacks. As CEO of ICANN I met with heads of security for the 3 largest countries in the world and they are concerned. I am concerned and sharing this because we need your help. We will be looking for your information and advice on your CERTS and what is going on. I have experience with CERTS in several countries but we need to learn more. I want to express my concern to GAC now because I don't want to wait until Brussels.
__________ Information from ESET Smart Security, version of virus signature database 4930 (20100309) __________ The message was checked by ESET Smart Security. http://www.eset.com