ASK CLARIFICATION: Circulate link to ICANN technical portal and share links to relevant articles regarding threat mitigation and classification of threats.
Hi RT members, I’m working with my team to satisfy some of the outstanding asks that were directed at the Office of the CTO. One of the items is the following: —> Circulate link to ICANN technical portal and share links to relevant articles regarding threat mitigation and classification of threats. I believe the link has already been provided but my team is asking for clarification about the links to relevant articles. I believe this ask took place during Dave Piscitello’s presentation of the DART project. Thanks, Steve ----- Steve Conte steve.conte@icann.org
I think this was when Dave mentioned he had written some stuff on CircleID that might be relevant, if my memory serves me right? -James -----Original Message----- From: ssr2-review-bounces@icann.org [mailto:ssr2-review-bounces@icann.org] On Behalf Of Steve Conte Sent: 23 May 2017 19:27 To: ssr2-review@icann.org Subject: [Ssr2-review] ASK CLARIFICATION: Circulate link to ICANN technical portal and share links to relevant articles regarding threat mitigation and classification of threats. Hi RT members, I’m working with my team to satisfy some of the outstanding asks that were directed at the Office of the CTO. One of the items is the following: —> Circulate link to ICANN technical portal and share links to relevant articles regarding threat mitigation and classification of threats. I believe the link has already been provided but my team is asking for clarification about the links to relevant articles. I believe this ask took place during Dave Piscitello’s presentation of the DART project. Thanks, Steve ----- Steve Conte steve.conte@icann.org _______________________________________________ Ssr2-review mailing list Ssr2-review@icann.org https://mm.icann.org/mailman/listinfo/ssr2-review
Or perhaps Dave's securityskeptic.com blog? Regards, -drc
On May 23, 2017, at 11:28 AM, James Gannon <james@cyberinvasion.net> wrote:
I think this was when Dave mentioned he had written some stuff on CircleID that might be relevant, if my memory serves me right?
-James
-----Original Message----- From: ssr2-review-bounces@icann.org [mailto:ssr2-review-bounces@icann.org] On Behalf Of Steve Conte Sent: 23 May 2017 19:27 To: ssr2-review@icann.org Subject: [Ssr2-review] ASK CLARIFICATION: Circulate link to ICANN technical portal and share links to relevant articles regarding threat mitigation and classification of threats.
Hi RT members,
I’m working with my team to satisfy some of the outstanding asks that were directed at the Office of the CTO. One of the items is the following:
—> Circulate link to ICANN technical portal and share links to relevant articles regarding threat mitigation and classification of threats.
I believe the link has already been provided but my team is asking for clarification about the links to relevant articles. I believe this ask took place during Dave Piscitello’s presentation of the DART project.
Thanks,
Steve
----- Steve Conte steve.conte@icann.org
_______________________________________________ Ssr2-review mailing list Ssr2-review@icann.org https://mm.icann.org/mailman/listinfo/ssr2-review _______________________________________________ Ssr2-review mailing list Ssr2-review@icann.org https://mm.icann.org/mailman/listinfo/ssr2-review
Yes should also be required reading! James Gannon Governance Manager – Global Strategic Projects & IT Security Global Standards and Solutions Novartis Ireland Ltd Vista Building, Elm Park Merrion Road Dublin 4, Ireland Office: +353-1-220-4370 Cell: +353-87-146-6195 James-1.Gannon@Novartis.com -----Original Message----- From: ssr2-review-bounces@icann.org [mailto:ssr2-review-bounces@icann.org] On Behalf Of David Conrad Sent: 23 May 2017 19:59 To: James Gannon <james@cyberinvasion.net> Cc: ssr2-review@icann.org Subject: Re: [Ssr2-review] ASK CLARIFICATION: Circulate link to ICANN technical portal and share links to relevant articles regarding threat mitigation and classification of threats. Or perhaps Dave's securityskeptic.com blog? Regards, -drc
On May 23, 2017, at 11:28 AM, James Gannon <james@cyberinvasion.net> wrote:
I think this was when Dave mentioned he had written some stuff on CircleID that might be relevant, if my memory serves me right?
-James
-----Original Message----- From: ssr2-review-bounces@icann.org [mailto:ssr2-review-bounces@icann.org] On Behalf Of Steve Conte Sent: 23 May 2017 19:27 To: ssr2-review@icann.org Subject: [Ssr2-review] ASK CLARIFICATION: Circulate link to ICANN technical portal and share links to relevant articles regarding threat mitigation and classification of threats.
Hi RT members,
I’m working with my team to satisfy some of the outstanding asks that were directed at the Office of the CTO. One of the items is the following:
—> Circulate link to ICANN technical portal and share links to relevant articles regarding threat mitigation and classification of threats.
I believe the link has already been provided but my team is asking for clarification about the links to relevant articles. I believe this ask took place during Dave Piscitello’s presentation of the DART project.
Thanks,
Steve
----- Steve Conte steve.conte@icann.org
_______________________________________________ Ssr2-review mailing list Ssr2-review@icann.org https://mm.icann.org/mailman/listinfo/ssr2-review _______________________________________________ Ssr2-review mailing list Ssr2-review@icann.org https://mm.icann.org/mailman/listinfo/ssr2-review
Novartis Ireland Ltd. Registered No. 11931, Ireland. Registered Office: The Vista Building, Elm Park Business Park, Merrion Road, Dublin 4. DO4 A9N6, Ireland. Confidentiality Notice: This e-mail message, including any attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message.
Hi Steve, I went back to the detailed notes on this. In response James’ question about what keeps him up at night, Dave was talking about DNS exploit attacks and implementing coordinated vulnerability disclosure at ICANN. He mentioned that he has some links to background articles that he’s written that explain some of the attacks, as well as articles on DDOS. He also mentioned that he’d done a classification of different ways that traffic can be inserted into the root (eg. hijacking, squatting), which would be useful to share if possible. Hope this helps! -----Original Message----- From: <ssr2-review-bounces@icann.org> on behalf of "Gannon, James-1" <james-1.gannon@novartis.com> Date: Wednesday, May 24, 2017 at 9:12 AM To: David Conrad <david.conrad@icann.org>, James Gannon <james@cyberinvasion.net> Cc: "ssr2-review@icann.org" <ssr2-review@icann.org> Subject: Re: [Ssr2-review] ASK CLARIFICATION: Circulate link to ICANN technical portal and share links to relevant articles regarding threat mitigation and classification of threats. Yes should also be required reading! James Gannon Governance Manager – Global Strategic Projects & IT Security Global Standards and Solutions Novartis Ireland Ltd Vista Building, Elm Park Merrion Road Dublin 4, Ireland Office: +353-1-220-4370 Cell: +353-87-146-6195 James-1.Gannon@Novartis.com -----Original Message----- From: ssr2-review-bounces@icann.org [mailto:ssr2-review-bounces@icann.org] On Behalf Of David Conrad Sent: 23 May 2017 19:59 To: James Gannon <james@cyberinvasion.net> Cc: ssr2-review@icann.org Subject: Re: [Ssr2-review] ASK CLARIFICATION: Circulate link to ICANN technical portal and share links to relevant articles regarding threat mitigation and classification of threats. Or perhaps Dave's securityskeptic.com blog? Regards, -drc > On May 23, 2017, at 11:28 AM, James Gannon <james@cyberinvasion.net> wrote: > > I think this was when Dave mentioned he had written some stuff on CircleID that might be relevant, if my memory serves me right? > > -James > > -----Original Message----- > From: ssr2-review-bounces@icann.org [mailto:ssr2-review-bounces@icann.org] On Behalf Of Steve Conte > Sent: 23 May 2017 19:27 > To: ssr2-review@icann.org > Subject: [Ssr2-review] ASK CLARIFICATION: Circulate link to ICANN technical portal and share links to relevant articles regarding threat mitigation and classification of threats. > > Hi RT members, > > I’m working with my team to satisfy some of the outstanding asks that were directed at the Office of the CTO. One of the items is the following: > > —> Circulate link to ICANN technical portal and share links to relevant articles regarding threat mitigation and classification of threats. > > I believe the link has already been provided but my team is asking for clarification about the links to relevant articles. I believe this ask took place during Dave Piscitello’s presentation of the DART project. > > Thanks, > > Steve > > > ----- > Steve Conte > steve.conte@icann.org > > > > _______________________________________________ > Ssr2-review mailing list > Ssr2-review@icann.org > https://mm.icann.org/mailman/listinfo/ssr2-review > _______________________________________________ > Ssr2-review mailing list > Ssr2-review@icann.org > https://mm.icann.org/mailman/listinfo/ssr2-review Novartis Ireland Ltd. Registered No. 11931, Ireland. Registered Office: The Vista Building, Elm Park Business Park, Merrion Road, Dublin 4. DO4 A9N6, Ireland. Confidentiality Notice: This e-mail message, including any attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. _______________________________________________ Ssr2-review mailing list Ssr2-review@icann.org https://mm.icann.org/mailman/listinfo/ssr2-review
Thank you all. I’ll get this back to the team so that we can provide you relevant links. Steve
On May 24, 2017, at 4:10 AM, Jennifer Bryce <jennifer.bryce@icann.org> wrote:
Hi Steve,
I went back to the detailed notes on this. In response James’ question about what keeps him up at night, Dave was talking about DNS exploit attacks and implementing coordinated vulnerability disclosure at ICANN. He mentioned that he has some links to background articles that he’s written that explain some of the attacks, as well as articles on DDOS. He also mentioned that he’d done a classification of different ways that traffic can be inserted into the root (eg. hijacking, squatting), which would be useful to share if possible. Hope this helps!
-----Original Message----- From: <ssr2-review-bounces@icann.org> on behalf of "Gannon, James-1" <james-1.gannon@novartis.com> Date: Wednesday, May 24, 2017 at 9:12 AM To: David Conrad <david.conrad@icann.org>, James Gannon <james@cyberinvasion.net> Cc: "ssr2-review@icann.org" <ssr2-review@icann.org> Subject: Re: [Ssr2-review] ASK CLARIFICATION: Circulate link to ICANN technical portal and share links to relevant articles regarding threat mitigation and classification of threats.
Yes should also be required reading!
James Gannon Governance Manager – Global Strategic Projects & IT Security Global Standards and Solutions
Novartis Ireland Ltd Vista Building, Elm Park Merrion Road Dublin 4, Ireland Office: +353-1-220-4370 Cell: +353-87-146-6195 James-1.Gannon@Novartis.com -----Original Message----- From: ssr2-review-bounces@icann.org [mailto:ssr2-review-bounces@icann.org] On Behalf Of David Conrad Sent: 23 May 2017 19:59 To: James Gannon <james@cyberinvasion.net> Cc: ssr2-review@icann.org Subject: Re: [Ssr2-review] ASK CLARIFICATION: Circulate link to ICANN technical portal and share links to relevant articles regarding threat mitigation and classification of threats.
Or perhaps Dave's securityskeptic.com blog?
Regards, -drc
On May 23, 2017, at 11:28 AM, James Gannon <james@cyberinvasion.net> wrote:
I think this was when Dave mentioned he had written some stuff on CircleID that might be relevant, if my memory serves me right?
-James
-----Original Message----- From: ssr2-review-bounces@icann.org [mailto:ssr2-review-bounces@icann.org] On Behalf Of Steve Conte Sent: 23 May 2017 19:27 To: ssr2-review@icann.org Subject: [Ssr2-review] ASK CLARIFICATION: Circulate link to ICANN technical portal and share links to relevant articles regarding threat mitigation and classification of threats.
Hi RT members,
I’m working with my team to satisfy some of the outstanding asks that were directed at the Office of the CTO. One of the items is the following:
—> Circulate link to ICANN technical portal and share links to relevant articles regarding threat mitigation and classification of threats.
I believe the link has already been provided but my team is asking for clarification about the links to relevant articles. I believe this ask took place during Dave Piscitello’s presentation of the DART project.
Thanks,
Steve
----- Steve Conte steve.conte@icann.org
_______________________________________________ Ssr2-review mailing list Ssr2-review@icann.org https://mm.icann.org/mailman/listinfo/ssr2-review _______________________________________________ Ssr2-review mailing list Ssr2-review@icann.org https://mm.icann.org/mailman/listinfo/ssr2-review
Novartis Ireland Ltd. Registered No. 11931, Ireland. Registered Office: The Vista Building, Elm Park Business Park, Merrion Road, Dublin 4. DO4 A9N6, Ireland.
Confidentiality Notice: This e-mail message, including any attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. _______________________________________________ Ssr2-review mailing list Ssr2-review@icann.org https://mm.icann.org/mailman/listinfo/ssr2-review
----- Steve Conte steve.conte@icann.org
participants (5)
-
David Conrad -
Gannon, James-1 -
James Gannon -
Jennifer Bryce -
Steve Conte