Ching,

the figures look small when I ballpark them.

As I am playing with vibe coding at the moment, I turned openclaw loose to do the math :-)-O

Assuming a 7‑hour business day (people need breaks, especially when dealing with stuff like this), excluding weekends (Sat–Sun), and an average of 5 public holidays and 365 days per year, come to:

1191 business days ≈ 1672 calendar days ≈ 4 years, 7 months aka wo:man-years.

21,420 tickets per wo:man-year

84 tickets per business day per person

How much is the going rate these days for such positions?

I think it is really helpful to consider what the implementation and operation costs will be of whatever the PDP will prescribe.

On Apr 12, 2026 at 02:15 +0200, Ching Chiao via Gnso-dnsabuse-pdp <gnso-dnsabuse-pdp@icann.org>, wrote:

Dear Reg and Owen,

Thank you very much for sharing these statistics.

To build on this data, let’s consider a scenario where a registrar has 500,000 reported phishing domains and 100,000 confirmed cases. If each confirmed case requires approximately five minutes of processing time to generate an ADC report—considering account, registrant, host, payment information, etc., the total workload for ADC-phishing-cases alone reaches 500,000 minutes, or approximately 8,333 hours or 347 days

As Marc noted, this does not account for other types of DNS abuse or the lead time required to vet the initial 500,000 reports to confirm those 100,000 cases. The resulting workload is significant.

If we introduce another timeline element—for example, a domain registered on day 1, reported as phishing on day 15, and confirmed on day 30—the ADC is currently proposed to execute on or after day 30. I am curious to hear your thoughts on whether acting on the ADC earlier (e.g., day 15 or 16) would reduce the total processing time, or if it would potentially increase the burden.

Any thoughts or comments would be greatly appreciated.

Best,

Ching

[…]