Dear all,

 

Please see below for a new clarification request, and the 5 outstanding requests for clarification on questions asked to ICANN org.

 

New request:

Review Team volunteers: Boban, Alain, Žarko

Workstream: ICANN SSR

Topic 2: Perform an assessment of ICANN's Business Continuity Management System.

 

Clarification requested: What is meant by “inter-org” dependencies?  Which orgs?  What is meant by “boundaries.”

1. Does ICANN have documented boundaries and processes that have inter-org dependencies? Do they relate back to BC plans?

 

Outstanding requests:

Review Team volunteers: Scott, Noorul

Workstream: ICANN SSR

Topic 4: Perform an assessment of how effectively ICANN has implemented its Security Incident Management and Response Processes to reduce (pro-active and reactive) the probability of DNS-related incidents.

 

Clarification requested: Can you please clarify if these questions are specific to the ICANN Managed Root Server or more generally for ICANN?

1. Which certifications is ICANN pursuing for the organisation and staff?
2. Which certifications and compliance frameworks has ICANN completed?
3. Who are ICANN’s auditors, what audits are completed regularly?

 

Review Team volunteers: Eric, Denise, Norm, Boban

Workstream: Future Challenges

Topic: Coalescence of registrars/registry/backend operators for multiple TLDs

 

Clarification requested: Can you please provide further context behind the question or clarify the question?

1. Has ICANN identified the issue of coalescence of registrars/registry operators in their risk management and what are the measures be taken? 
2. Are there any and if so, what are the control mechanisms for operational availability of the TLD’s?

 

Best,

Jennifer

-- 

www.icann.org