Dear RSSAC Caucus Members,

Robert, Ken, and I met yesterday to discuss the RSS Security Incident Reporting Work Party document. 

We merged the typical grammar nits, but the big change is that we moved Section 4.5 into Section 5. The moved text in Section 5 is now highlighted.

There are two things we would like the work party to think about for our next meeting.

-Should Sections 5 and 6 be merged? 

-Should the idea of Section 6.3 remain in the document?

The idea of Section 6.3 was to describe a means for the public to contact the RSS about a security incident or vulnerability that affects the RSS. This could be like a “bug report” function that could provide some confidentiality in the reporting process. The overall document is about how the RSS pushes information out, but this would be the opposite direction. Some examples of this happening are reports posted on DNS-related chat rooms, or emails via IANA to an RSO. If 6.3 remains in the document, should we describe generic roles for an RSS GS to further specify and implement? Or should we propose more detailed requirements for such a feature?

Thanks,

Andrew