Security and Stability Advisory Committee (SSAC) Advice Status

Board Advice Home | ALAC Advice Status | RSSAC Advice Status | GAC Advice Status


Latest Advice to the ICANN Board

As of 30 April 2021

Date Advice Document
22 March 2021 SAC116: SSAC Comments on the Second Security, Stability, and Resiliency (SSR2) Review Team Final Report
19 March 2021 SAC115: SSAC Report on an Interoperable Approach to Addressing Abuse Handling in the DNS

Board Advice Register Phases and Descriptions

Board Advice Register Phases and Descriptions

Advice Items by Phase

Phase SSAC
Phase 1 | Receive & Acknowledge -
Phase 2 | Understand 7
Phase 3 | Evaluate & Consider 3
Phase 3 | Deferred -
Phase 4 | Implement 13
Phase 4 | Deferred 7
Phase 5 | Close 28
Total Open Items 58
Total Items Closed in Past 12 Months 3

Open Advice Items

See also "Advice Status Reports" on Board Advice Home for PDF/Excel versions of the information below.

Advice Item Phase Action(s) Taken

SAC114: SSAC Comments on the GNSO New gTLD Subsequent Procedures Draft Final Report (R-1)

(11Feb2021)

Phase 2 | Understand Request

ICANN received SAC114 on 17 February 2021 and is currently reviewing.

SAC114: SSAC Comments on the GNSO New gTLD Subsequent Procedures Draft Final Report (R-2)

(11Feb2021)

Phase 2 | Understand Request

ICANN received SAC114 on 17 February 2021 and is currently reviewing.

SAC114: SSAC Comments on the GNSO New gTLD Subsequent Procedures Draft Final Report (R-3)

(11Feb2021)

Phase 2 | Understand Request

ICANN received SAC114 on 17 February 2021 and is currently reviewing.

SAC114: SSAC Comments on the GNSO New gTLD Subsequent Procedures Draft Final Report (R-4)

(11Feb2021)

Phase 2 | Understand Request

ICANN received SAC114 on 17 February 2021 and is currently reviewing.

SAC114: SSAC Comments on the GNSO New gTLD Subsequent Procedures Draft Final Report (R-5)

(11Feb2021)

Phase 2 | Understand Request

ICANN received SAC114 on 17 February 2021 and is currently reviewing.

SAC114: SSAC Comments on the GNSO New gTLD Subsequent Procedures Draft Final Report (R-6)

(11Feb2021)

Phase 2 | Understand Request

ICANN received SAC114 on 17 February 2021 and is currently reviewing.

SAC114: SSAC Comments on the GNSO New gTLD Subsequent Procedures Draft Final Report (R-7)

(11Feb2021)

Phase 2 | Understand Request

ICANN received SAC114 on 17 February 2021 and is currently reviewing.

SAC059: R-1 Interdisciplinary studies of security and stability implications from expanding the root zone

(18Apr2013)

Phase 3 | Evaluate & Consider

The Org (OCTO) understands SSAC to be requesting that the study described in SAC059 related to the expansion of the root zone be performed. More specifically, the study should focus on areas that have not already been explored in other studies related to scaling the root or on areas within completed studies that the community felt were inadequately addressed, as evidenced by responses provided during those studies' public comment period. The study should also explore potential interactions among the areas of inquiry suggested in SAC059. The study should be undertaken by representatives from communities that may not have been fully consulted or engaged during previous investigations into the impacts of the new gTLD program. These communities are listed in SAC059. ICANN sent this understanding to the SSAC for review on 04 June 2020. ICANN received confirmation of understanding on 13 July 2020. Issues related to the expansion of the root zone have been/are being considered through other means, including Name Collision and DNSSEC roll over. Other reports on the expansion of the root zone include: - Scaling the Root Report on the Impact on the DNS Root System of Increasing the Size and Volatility of the Root Zone: https://www.icann.org/en/system/files/files/root-scaling-study-report-31aug09-en.pdf - Summary of the Impact of Root Zone Scaling: https://archive.icann.org/en/topics/new-gtlds/summary-of-impact-root-zone-scaling-06oct10-en.pdf - Impact on Root Server Operations and Provisioning Due to New gTLDs: http://newgtlds.icann.org/en/about/historical-documentation/root-scaling-27jun12-en.pdf - Continuous Data Driven Analysis of Root Server System Stability Study Plan (Public Comment): https://www.icann.org/public-comments/cdar-study-plan-2015-12-02-en ICANN continues to work to address the issues identified in SAC059.

SAC059: R-2 Interdisciplinary studies of security and stability implications from expanding the root zone

(18Apr2013)

Phase 3 | Evaluate & Consider

The Org (OCTO) understands SSAC to be requesting that the study described in SAC059 related to the expansion of the root zone be performed. More specifically, the study should focus on areas that have not already been explored in other studies related to scaling the root or on areas within completed studies that the community felt were inadequately addressed, as evidenced by responses provided during those studies' public comment period. The study should also explore potential interactions among the areas of inquiry suggested in SAC059. The study should be undertaken by representatives from communities that may not have been fully consulted or engaged during previous investigations into the impacts of the new gTLD program. These communities are listed in SAC059ICANN sent this understanding to the SSAC for review on 04 June 2020. ICANN received confirmation of understanding on 13 July 2020. Issues related to the expansion of the root zone have been/are being considered through other means, including Name Collision and DNSSEC roll over. Other reports on the expansion of the root zone include: - Scaling the Root Report on the Impact on the DNS Root System of Increasing the Size and Volatility of the Root Zone: https://www.icann.org/en/system/files/files/root-scaling-study-report-31aug09-en.pdf - Summary of the Impact of Root Zone Scaling: https://archive.icann.org/en/topics/new-gtlds/summary-of-impact-root-zone-scaling-06oct10-en.pdf - Impact on Root Server Operations and Provisioning Due to New gTLDs: http://newgtlds.icann.org/en/about/historical-documentation/root-scaling-27jun12-en.pdf - Continuous Data Driven Analysis of Root Server System Stability Study Plan (Public Comment): https://www.icann.org/public-comments/cdar-study-plan-2015-12-02-en ICANN continues to work to address the issues identified in SAC059.

RSSAC038: RSSAC Advisory on a Proposed Governance Model for the DNS Root Server System R-3

(14Jun2018)

Phase 3 | Evaluate & Consider

The ICANN org understands RSSAC038 Recommendation 3 is for the ICANN Board and community to implement the final version of the Model for implementation based on RSSAC037 based upon the principles of accountability, transparency, sustainability, and service integrity. ICANN sent this understanding to the RSSAC for review on 24 July 2018. ICANN received confirmation of understanding on 17 August 2018.

RSSAC041: RSSAC Advisory on Organizational Reviews (R-1)

(5Oct2018)

Phase 3 | Evaluate & Consider

The ICANN org understands RSSAC041 Recommendation 5 to mean that at the conclusion of every organizational review, the ICANN org should report on how the process transpired. The ICANN org should demonstrate how the process will be modified if there are any lessons learned from the organizational review. The RSSAC confirmed this understanding on 13 June 2019.

RSSAC041: RSSAC Advisory on Organizational Reviews (R-2)

(5Oct2018)

Phase 3 | Evaluate & Consider

The ICANN org understands RSSAC041 Recommendation 5 to mean that at the conclusion of every organizational review, the ICANN org should report on how the process transpired. The ICANN org should demonstrate how the process will be modified if there are any lessons learned from the organizational review. The RSSAC confirmed this understanding on 13 June 2019.

RSSAC041: RSSAC Advisory on Organizational Reviews (R-3)

(5Oct2018)

Phase 3 | Evaluate & Consider

The ICANN org understands RSSAC041 Recommendation 5 to mean that at the conclusion of every organizational review, the ICANN org should report on how the process transpired. The ICANN org should demonstrate how the process will be modified if there are any lessons learned from the organizational review. The RSSAC confirmed this understanding on 13 June 2019.

RSSAC041: RSSAC Advisory on Organizational Reviews (R-4)

(5Oct2018)

Phase 3 | Evaluate & Consider

The ICANN org understands RSSAC041 Recommendation 5 to mean that at the conclusion of every organizational review, the ICANN org should report on how the process transpired. The ICANN org should demonstrate how the process will be modified if there are any lessons learned from the organizational review. The RSSAC confirmed this understanding on 13 June 2019.

RSSAC041: RSSAC Advisory on Organizational Reviews (R-5)

(5Oct2018)

Phase 3 | Evaluate & Consider

The ICANN org understands RSSAC041 Recommendation 5 to mean that at the conclusion of every organizational review, the ICANN org should report on how the process transpired. The ICANN org should demonstrate how the process will be modified if there are any lessons learned from the organizational review. The RSSAC confirmed this understanding on 13 June 2019.

RSSAC049: RSSAC Statement on Joining the Empowered Community

(14Apr2020)

Phase 3 | Evaluate & Consider

ICANN org understands Recommendation 1 to mean that the RSSAC believes that the best way for the RSO community to join the Empowered Community is through the implementation of the recommendations in RSSAC038. Also, the RSS GWG should note the expectations and needs of the RSO community. There is no immediate action for the ICANN Board. For the purposes of the ARR, this item will remain in Phase 3 until the RSS GWG delivers its proposed final governance model for the RSS to the ICANN Board for consideration. ICANN sent this understanding to the RSSAC for review on 04 May 2020. ICANN received confirmation of understanding on 11 May 2020. RSSAC049 is under consideration by the Root Server System Governance Working Group as it develops its proposal for root server system governance and root server operator accountability.

SAC113 SSAC Advisory on Private-Use TLDs

(18Sep2020)

Phase 3 | Evaluate & Consider

ICANN org understands SAC113 to mean SSAC is requesting the Board to choose a TLD as described in Section 4.1 of the document, and to reserve that TLD in the DNS root for private use, and to be sure that that TLD is never delegated in the DNS root. ICANN sent this understanding to the SSAC for review on 01 October 2020. ICANN Received confirmation of understanding on 22 April 2021.

SAC046: Report of the Security and Stability Advisory Committee on Root Scaling (R-4)

(6Dec2010)

Phase 4 | Deferred

The plan will be updated to include actual measurement, monitoring, and data sharing capability of root zone performance, in cooperation with RSSAC and other root zone management participants to define the specific measurements, monitoring, and data sharing framework. Further implementation of this item is deferred as of 04 December 2019 pending external activity. ICANN org will take up further action once the implementation of RSSAC037-038 and the work of the Root Server System Governance Working Group is complete.

SAC060: Active Variant TLDs (2 of 14)

(23Jul2013)

Phase 4 | Deferred

RZ-LGR-3 integrating 16 scripts is being released in July 2019. The inclusion of RZ-LGR to validate TLD labels and their variant labels has also been recommended as part of managing IDN variant TLDs. GNSO and ccNSO are currently considering this recommendation. The Study Group on Technical Utilization of Root Zone Label Generation Rules took up this item to discuss. Recommendation four (4) of their report suggests a way forward. This work has been released for public comment and will be finalized afterwards for further consideration of the ICANN Board. See report at https://www.icann.org/en/system/files/files/recommendations-rz-lgr-14may19-en.pdf and public comment at https://www.icann.org/public-comments/technical-rz-lgr-2019-05-15-en. Further implementation of this item is deferred as of 30 June 2019 pending external activity. ICANN org will take up further work once the GNSO and ccNSO have considered these items as part of their policy development work.

SAC060: Active Variant TLDs (8 of 14)

(23Jul2013)

Phase 4 | Deferred

ICANN org recently developed the Recommendations for Managing IDN Variant TLDs, published at https://www.icann.org/resources/pages/idn-variant-tld-implementation-2018-07-26-en. These have been adopted by ICANN Board at their meeting at ICANN64, where the Board asked the GNSO and ccNSO to consider these in their policy and procedures. Further implementation of this item is deferred as of 30 June 2019 pending external activity. ICANN org will take up further work once the GNSO and ccNSO have considered these items as part of their policy development work.

SAC060: Active Variant TLDs (9 of 14)

(23Jul2013)

Phase 4 | Deferred

A detailed analysis has been publised as part of recommendations for managing IDN variant TLDs, which has been approved by ICANN Board at ICANN64. The analysis has been forwarded to the GNSO and ccNSO for their consideration for relevant policy and procedure development. The analysis is avaialble at https://www.icann.org/resources/pages/idn-variant-tld-implementation-2018-07-26-en. Specifically see section 3 of the report at https://www.icann.org/en/system/files/files/idn-variant-tld-recommendations-analysis-25jan19-en.pdf.

SAC064: SSAC Advisory on DNS "Search List" Processing (R-3)

(13Feb2014)

Phase 4 | Deferred

The ICANN organization understands that SAC064 R-3 means that the SSAC recommends that in the context of mitigating name collisions, ICANN should consider the following steps to address search list processing behavior: a. ICANN should consider whether to commission additional studies to further understand the cause of invalid queries to the root zone and the significance of search list processing as a contributor to those queries. b. ICANN should communicate to system administrators that search list behaviors currently implemented in some operating systems will cause collision with names delegated as new gTLDs from the 2012 application round for the New gTLD Program.  On 24 June 2017, the ICANN Board accepted this advice and directed the ICANN organization to implement per the ICANN organization's recommendation (https://www.icann.org/resources/board-material/resolutions-2017-06-24-en#2.b). Further implementation of this item is deferred as of 23 September 2019 pending external activity. ICANN org will take up further action once the NCAP's work on analyzing the causes of queries for non-existent TLDs to the root is complete.

SAC095: SSAC Advisory on the Use of Emoji in Domain Names R-1

(25May2017)

Phase 4 | Deferred

On 2 Nov 2017, the ICANN Board directed the ICANN org to engage with gTLD and ccTLD communities on the findings and recommendations in SAC095 in addition to requesting that the ccNSO and GNSO integrate conformance with IDNA2008 and its successor into their relevant policies so as to safeguard security, stability, resiliency and interoperability of domain names (see: https://www.icann.org/resources/board-material/resolutions-2017-11-02-en#1.e). IDN ccTLD Fast Track process already limits labels at top level to IDNA2008 which does not allow for emojis (see https://www.icann.org/en/system/files/files/idn-cctld-implementation-plan-28mar19-en.pdf). Further, GNSO is considering limiting the TLDs to IDNA2008 (through the use of Root Zone Label Generation Rules) for the subsequent procedures for the gTLDs. The policy work is still under development by the community. Limiting TLDs to Root Zone LGRs is also recommended in the recent recommendations for IDN variant TLDs published at https://www.icann.org/resources/pages/idn-variant-tld-implementation-2018-07-26-en and adopted by the ICANN Board at ICANN64 for further consideration by GNSO and ccNSO. Finally the recent work on technical use of Root Zone LGR by the study group also recommends the same: see recommendations 1 and 2 in the report at https://www.icann.org/en/system/files/files/recommendations-rz-lgr-14may19-en.pdf. Further implementation of this item is deferred as of 30 June 2019 pending external activity. ICANN org will take up further work once the GNSO and ccNSO have considered these items as part of their policy development work.

SAC101v2: SSAC Advisory Regarding Access to Domain Name Registration Data (R-1C)

(11Dec2018)

Phase 4 | Deferred

On 23 June 2019 the ICANN Board considered SAC101v2 and accepted Recommendation 1 and directed the ICANN President and CEO, or his designee(s), to create a plan that reports on ICANN org's and the community's progress toward the four objectives identified in the advice (https://www.icann.org/resources/board-material/resolutions-2019-06-23-en#1.c). In its rationale the Board states "In accepting advice item one, the Board further notes that the creation of an "accredited RDDS access program," is a topic under discussion in the EPDP Phase 2. The Board cannot dictate outcomes of PDPs. Once the EPDP delivers its final Phase 2 report, the Board will consider the policy recommendations." This item continues to be deferred. It is also subject of correspondence (https://www.icann.org/en/system/files/correspondence/fouquart-to-botterman-29jan21-en.pdf) between the GNSO Council and the Board, following a motion (https://community.icann.org/display/gnsocouncilmeetings/Motions+21+January+2021) passed by the GNSO Council. The topic will be parsed and placed in Phase 4 | Deferred.

RSSAC028: Technical Analysis of the Naming Scheme Used For Individual Root Servers R-2

(3Aug2017)

Phase 4 | Implement

The ICANN org understands RSSAC028 Recommendation 2 to that studies on current behaviors of DNS software and DNS resolvers should be conducted to understand different elements of root server responses to queries, both individually and in combination; for initial priming and standard responses; and for how well specific implementations, such as the DO bit are interpreted by root servers and the DNS software. ICANN received confirmation of understanding from the RSSAC on 1/17/18. On 25 March 2021 the ICANN Board considered 2021.03.25.02 and the Board accepts Recommendation 2, relating to conducting a study to understand the current behavior of DNS resolvers and how each naming scheme discussed in this document would affect these behaviors, and directs the ICANN President and CEO, or designee(s), to commence such a study.

RSSAC028: Technical Analysis of the Naming Scheme Used For Individual Root Servers R-3

(3Aug2017)

Phase 4 | Implement

The ICANN org understands RSSAC028 Recommendation 3 to mean that a study should be conducted to understand how the current infrastructure is susceptible to various cache poisoning attack scenarios, specifically node re-delegation attacks, and that proof-of-concept code for testing these scenarios should be made available to others in the DNS community for further studies. ICANN received confirmation of understanding from the RSSAC on 1/17/18. On 25 March 2021 the ICANN Board considered 2021.03.25.03 and the Board accepts Recommendation 3, relating to conducting a study to understand the feasibility and impact of node re-delegation attacks, and directs the ICANN President and CEO, or designee(s), to commence such a study.

RSSAC038: RSSAC Advisory on a Proposed Governance Model for the DNS Root Server System R-2

(14Jun2018)

Phase 4 | Implement

The ICANN org understands RSSAC038 Recommendation 2 is for the ICANN Board to estimate costs of the Root Server System and for developing the Model for implementation based on RSSAC037. The ICANN Board should refer to RSSAC037 section 5.5.3 in estimating these costs. Initial efforts should focus on developing a timeline for costing these. The RSSAC estimates the suggested costing effort should not take more than six months. ICANN sent this understanding to the RSSAC for review on 24 July 2018. ICANN received confirmation of understanding on 17 August 2018. As the GWG begins its work to develop a final governance model for the Root Server System, ICANN org is working on a methodology for estimating the costs of the RSS. ICANN org will also work proactively with the GWG to estimate the costs of the final governance model.

RSSAC047: RSSAC Advisory on Metrics for the DNS Root Servers and the Root Server System R-1

(12Mar2020)

Phase 4 | Implement

ICANN org understands that this recommendation is asking for an initial implementation of the measurement system described in RSSAC047. The "initial implementation" is assumed to be functional, but not necessarily up to the operational expectations that a long-term service would have. This recommendation is to the ICANN Board. ICANN sent this understanding to the RSSAC for review on 21 April 2020. ICANN received confirmation of understanding on 23 April 2020. On 25 March 2021 the ICANN Board considered 2021.03.25.04 and the Board accepts Recommendation 1, which calls for implementing a prototype measurement system for RSOs, and thanks ICANN org for already developing such a system to assist with defining the metrics outlined in RSSAC047.

RSSAC047: RSSAC Advisory on Metrics for the DNS Root Servers and the Root Server System R-2

(12Mar2020)

Phase 4 | Implement

ICANN org understands that this recommendation is not asking for anything at the present time, but is instead describing a later long-term service that might be implemented. The operational details of the long-term service will be described after there is sufficient experience with the initial implementation described in Recommendation 1. After initial implementation, the ICANN Board would determine how and when the official implementation will be put in place, e.g. an RFP process for a system meeting all the requirements described in RSSAC047 or a determination that the interim implementation can meet RSSAC047 requirements (including those enumerated in Recommendation 2) or another approach. ICANN sent this understanding to the RSSAC for review on 21 April 2020. ICANN received confirmation of understanding on 23 April 2020. On 25 March 2021 the ICANN Board considered 2021.03.25.05 and the Board accepts Recommendation 2 to implement a more permanent measurement system after establishing and using the prototype measurement system from Recommendation 1, and directs the ICANN President and CEO, or designee(s), to implement such a system.

SAC060: Active Variant TLDs (4 of 14)

(23Jul2013)

Phase 4 | Implement

The IDN Guidelines were updated to version 4 in May 2018 (https://www.icann.org/en/system/files/files/idn-guidelines-10may18-en.pdf). However, these Guidelines are currently being held for review of GNSO, following the request from GNSO to the ICANN Board. In March 2020, the Guidelines for Developing Reference Label Generation Rules (LGRs) for the Second Level Version 2 were published for public comment, and the public comment staff report was issued in May 2020. The IANA Repository of IDN tables is also now being updated to address any gaps.

SAC074: SSAC Advisory on Registrant Protection: Best Practices for Preserving Security and Stability in the Credential Management Lifecycle - Item 4

(3Nov2015)

Phase 4 | Implement

At GDD Industry Summit 2019 in Bangkok in May 2019 (https://www.icann.org/gddsummit), a session on Credential Management Lifecycle was conducted. A team of community experts presented an educational material that was shared with the SSAC prior to the session for input and guidance. A community wiki space has been established for the community to share good practices in credential management. The sharing of the good practices and community awareness will continue with the participation of the community.

SAC097: SSAC Advisory Regarding the Centralized Zone Data Service (CZDS) and Registry Operator Monthly Activity Reports, R-1

(12Jun2017)

Phase 4 | Implement

On 23 June 2018, the Board accepted this advice and directed the ICANN President and CEO or his designee to implement an auto-renew feature in the CZDS system (https://www.icann.org/resources/board-material/resolutions-2018-06-23-en#1.g). CZDS platform migration is complete, making it possible to add new features to address the problem of gaps in user access to zone files. The feature has been scoped and is in the process of being added to the next product road map for future system enhancements. Due to additional updates to the roadmap, substantial updates for new features on CZDS is expected to be available in 2QFY20. Despite not implementing new features to CZDS, ICANN org did work to expand the utility of CZDS by adding the five largest legacy gTLDs, .biz, .com, .info, .net, and .org and most others to the platform as their contracts were being renewed or revised.

SAC097: SSAC Advisory Regarding the Centralized Zone Data Service (CZDS) and Registry Operator Monthly Activity Reports, R-2

(12Jun2017)

Phase 4 | Implement

On 23 June 2018, the Board accepted this advice and directed the ICANN President and CEO or his designee to adjust the zone file access subscription agreement to the extent necessary to accommodate the implementation of Recommendation 1 (https://www.icann.org/resources/board-material/resolutions-2018-06-23-en#1.g). ICANN org continues to work with the Policy team to inform the community to have the recommendation to be considered for the subsequent rounds of new gTLDs.

SAC097: SSAC Advisory Regarding the Centralized Zone Data Service (CZDS) and Registry Operator Monthly Activity Reports, R-3

(12Jun2017)

Phase 4 | Implement

On 23 June 2018, the Board accepted this advice and directed the ICANN President and CEO or his designee to produce educational materials for registry operators to increase their awareness of ICANN's expectations with respect to zone file access (https://www.icann.org/resources/board-material/resolutions-2018-06-23-en#1.g). The number of complaints requiring Contractual Compliance follow-up is decreasing. The adoption rate of the new auto-approve feature increased to 45% from 40% in June 2019. The number of TLDs that approve requests for a period longer than 2 years is increasing. SAC097 was prepared in the first half of 2017. Since then ICANN org has worked with registry operators to decrease the number of zone file related complaints by creating awareness about zone files access. This includes multiple engagements and presentations to the gTLD Registries Stakeholder Group, the Brand Registry Group, and individual registries.

SAC097: SSAC Advisory Regarding the Centralized Zone Data Service (CZDS) and Registry Operator Monthly Activity Reports, R-4

(12Jun2017)

Phase 4 | Implement

On 23 June 2018, the Board accepted this advice and directed the ICANN President and CEO or his designee to clarify the Zone File Access (ZFA) metric and to support registry operators to increase the accuracy of the public reporting for Web based WHOIS query statistics (https://www.icann.org/resources/board-material/resolutions-2018-06-23-en#1.g). ICANN org continues to facilitate the conversation between SSAC and RySG. The SSAC and RySG met to discuss observations of SSAC during ICANN65 where RySG members raised concerns. ICANN org will work with registries to improve the accuracy of the Zonefile access metric. ICANN encourages SSAC to continue engagement directly with the Registries to potentially develop best practices that can be utilized across the gTLDs. ICANN has created an interim solution for zone file access statistics, which is available through CZDS. ICANN org will continue to increase the awareness of registry operators to provide reports with the information provided by CZDS. During the September 2020 meeting with ICANN Org, SSAC leadership agreed to work with the TechOps group, which includes registry operators for a solution to have a standardization about the reported data about web-based WHOIS query statistics.

SAC101v2: SSAC Advisory Regarding Access to Domain Name Registration Data (R-1D)

(11Dec2018)

Phase 4 | Implement

On 23 June 2019 the ICANN Board considered SAC101v2 and accepted Recommendation 1 and directed the ICANN President and CEO, or his designee(s), to create a plan that reports on ICANN org's and the community's progress toward the four objectives identified in the advice (https://www.icann.org/resources/board-material/resolutions-2019-06-23-en#1.c). In its rationale the Board states "In accepting advice item one, the Board further notes that the creation of an "accredited RDDS access program," is a topic under discussion in the EPDP Phase 2. The Board cannot dictate outcomes of PDPs. Once the EPDP delivers its final Phase 2 report, the Board will consider the policy recommendations." This item remains in Phase 4 | Implement. ICANN org notes the Public Comment period regarding Phase 2 Priority 2 Topics prior to Board consideration, as well as a pending Public Comment regarding Phase 2 Priority 1 Topics. The EPDP issued the Phase 2 Final Report on the Temporary Specification for gTLD Registration Data on 31 July 2020, and was subsequently adopted by the GNSO council on 24 September 2020 and was provided to the Board for consideration. ICANN org notes the Public Comment period regarding Phase 2 Priority 2 Topics closed on 22 January 2021 and a staff report was issued on 5 February 2021 (https://www.icann.org/en/system/files/files/report-comments-policy-recommendations-epdp-phase-2-05feb21-en.pdf). ICANN org also notes as the Public Comment regarding Phase 2 closed on 30 March 2021 (https://www.icann.org/public-comments/epdp-2-policy-recs-board-2021-02-08-en). Additionally, the Board resolved (https://www.icann.org/resources/board-material/resolutions-2021-03-25-en#2.c) to direct ICANN org to conduct the Operational Design Phase (ODP) for the SSAD on 25 March 2021.

SAC101v2: SSAC Advisory Regarding Access to Domain Name Registration Data (R-2B)

(11Dec2018)

Phase 4 | Implement

On 23 June 2019 the ICANN Board considered SAC101v2 and accepted Recommendation 1 and directed the ICANN President and CEO, or his designee(s), to work with the community to clarify existing contractual obligations relating to rate limits (https://www.icann.org/resources/board-material/resolutions-2019-06-23-en#1.c). In its rationale the Board state "Advice item 2B suggests that the Board direct ICANN org to work with the community to 'clarify current expectations for the use of rate limiting under existing policy and agreements.' In accepting advice item 2B, the Board notes that the community should be involved in the discussion to clarify existing contractual obligations relating to rate limits." ICANN org is currently reviewing this advice to determine how it should be implemented. Once ICANN org has determined a path forward for implementation, further updates will be provided to the SSAC. The EPDP issued the Phase 2 Final Report on the Temporary Specification for gTLD Registration Data on 31 July 2020, and was subsequently adopted by the GNSO council on 24 September 2020 and was provided to the Board for consideration. ICANN org notes the Public Comment period regarding Phase 2 Priority 2 Topics closed on 22 January 2021 and a staff report was issued on 5 February 2021 (https://www.icann.org/en/system/files/files/report-comments-policy-recommendations-epdp-phase-2-05feb21-en.pdf). ICANN org also notes as the Public Comment regarding Phase 2 closed on 30 March 2021 (https://www.icann.org/public-comments/epdp-2-policy-recs-board-2021-02-08-en). Additionally, the Board resolved (https://www.icann.org/resources/board-material/resolutions-2021-03-25-en#2.c) to direct ICANN org to conduct the Operational Design Phase (ODP) for the SSAD on 25 March 2021.

SAC101v2: SSAC Advisory Regarding Access to Domain Name Registration Data (R-4)

(11Dec2018)

Phase 4 | Implement

On 23 June 2019 the ICANN Board considered SAC101v2 and noted advice items 2A and three through seven in SAC101 version 2 and referred them to the GNSO Council for consideration for inclusion in the EPDP Phase 2 work (https://www.icann.org/resources/board-material/resolutions-2019-06-23-en#1.c). In its rationale the Board states "Advice item four suggests that 'initiation of charges for RDS access, or any significant future changes in fees for RDDS access, must include a formal assessment of user impacts and the security and stability impacts, and be conducted as part of a formal Policy Development Process (PDP).' As this is a policy matter and the topic is in the work plan for the EPDP Phase 2, the Board notes this advice and refers to the GNSO Council as the manager of PDPs." ICANN org is currently reviewing this advice to determine how it should be implemented. Once ICANN org has determined a path forward for implementation, further updates will be provided to the SSAC. The EPDP issued the Phase 2 Final Report on the Temporary Specification for gTLD Registration Data on 31 July 2020, and was subsequently adopted by the GNSO council on 24 September 2020 and was provided to the Board for consideration. ICANN org notes the Public Comment period regarding Phase 2 Priority 2 Topics closed on 22 January 2021 and a staff report was issued on 5 February 2021 (https://www.icann.org/en/system/files/files/report-comments-policy-recommendations-epdp-phase-2-05feb21-en.pdf). ICANN org also notes as the Public Comment regarding Phase 2 closed on 30 March 2021 (https://www.icann.org/public-comments/epdp-2-policy-recs-board-2021-02-08-en). Additionally, the Board resolved (https://www.icann.org/resources/board-material/resolutions-2021-03-25-en#2.c) to direct ICANN org to conduct the Operational Design Phase (ODP) for the SSAD on 25 March 2021.

SAC101v2: SSAC Advisory Regarding Access to Domain Name Registration Data (R-6)

(11Dec2018)

Phase 4 | Implement

On 23 June 2019 the ICANN Board considered SAC101v2 and noted advice items 2A and three through seven in SAC101 version 2 and referred them to the GNSO Council for consideration for inclusion in the EPDP Phase 2 work (https://www.icann.org/resources/board-material/resolutions-2019-06-23-en#1.c). In its rationale the Board states "Advice item six suggests that the 'ICANN Board should direct the ICANN Organization to work to ensure that all methods of access to RDDS data provide an equivalent response to the same query.' As this is a policy matter and the topic is in the work plan for the EPDP Phase 2, the Board notes this advice and refers to the GNSO Council as the manager of PDPs." The EPDP issued the Phase 2 Final Report on the Temporary Specification for gTLD Registration Data on 31 July 2020, and was subsequently adopted by the GNSO council on 24 September 2020 and was provided to the Board for consideration. Pending Board consideration, this item will remain in a deferred status. The EPDP issued the Phase 2 Final Report on the Temporary Specification for gTLD Registration Data on 31 July 2020, and was subsequently adopted by the GNSO council on 24 September 2020 and was provided to the Board for consideration. ICANN org notes the Public Comment period regarding Phase 2 Priority 2 Topics closed on 22 January 2021 and a staff report was issued on 5 February 2021 (https://www.icann.org/en/system/files/files/report-comments-policy-recommendations-epdp-phase-2-05feb21-en.pdf). ICANN org also notes as the Public Comment regarding Phase 2 closed on 30 March 2021 (https://www.icann.org/public-comments/epdp-2-policy-recs-board-2021-02-08-en). Additionally, the Board resolved (https://www.icann.org/resources/board-material/resolutions-2021-03-25-en#2.c) to direct ICANN org to conduct the Operational Design Phase (ODP) for the SSAD on 25 March 2021.

SAC101v2: SSAC Advisory Regarding Access to Domain Name Registration Data (R-7)

(11Dec2018)

Phase 4 | Implement

On 23 June 2019 the ICANN Board considered SAC101v2 and noted advice items 2A and three through seven in SAC101 version 2 and referred them to the GNSO Council for consideration for inclusion in the EPDP Phase 2 work (https://www.icann.org/resources/board-material/resolutions-2019-06-23-en#1.c). In its rationale the Board states "Advice item seven suggests that the 'ICANN Board should direct the ICANN Organization to work to ensure that RDDS access is provided in a measurable and enforceable framework, which can be understood by all parties.' As this is a policy matter and the topic is in the work plan for the EPDP Phase 2, the Board notes this advice and refers to the GNSO Council as the manager of PDPs." The EPDP issued the Phase 2 Final Report on the Temporary Specification for gTLD Registration Data on 31 July 2020, and was subsequently adopted by the GNSO council on 24 September 2020 and was provided to the Board for consideration. Pending Board consideration, this item will remain in a deferred status. The EPDP issued the Phase 2 Final Report on the Temporary Specification for gTLD Registration Data on 31 July 2020, and was subsequently adopted by the GNSO council on 24 September 2020 and was provided to the Board for consideration. ICANN org notes the Public Comment period regarding Phase 2 Priority 2 Topics closed on 22 January 2021 and a staff report was issued on 5 February 2021 (https://www.icann.org/en/system/files/files/report-comments-policy-recommendations-epdp-phase-2-05feb21-en.pdf). ICANN org also notes as the Public Comment regarding Phase 2 closed on 30 March 2021 (https://www.icann.org/public-comments/epdp-2-policy-recs-board-2021-02-08-en). Additionally, the Board resolved (https://www.icann.org/resources/board-material/resolutions-2021-03-25-en#2.c) to direct ICANN org to conduct the Operational Design Phase (ODP) for the SSAD on 25 March 2021.

SAC106: SSAC Comments on Evolving the Governance of the Root Server System (R-2)

(8Aug2019)

Phase 4 | Implement

The ICANN organization understands SAC106 Recommendation 2 to mean that the SSAC recommends to the Root Server System Governance Working Group (GWG) that the SSAC not be given any operational roles in any standing committees, operational committees, or other bodies that emerge from the deliberations of the GWG. The ICANN org also understands the SSAC is open to invitations from the bodies that emerge from the deliberations of the GWG to participate in an advisory capacity, consistent with SSAC's charter, experience and capabilities. ICANN sent this understanding to the SSAC for review on 15 August 2019. SAC106 Recommendations 2 through 4 have been received by the Root Server System Governance Working Group and is incorporating it into its proposal. The Root Server System Governance Working Group (RSS GWG) is aware of this SSAC statement. The emerging proposal from the RSS GWG includes a community performing the Strategy, Architecture, and Policy Function (SAPF). SAC106 is under consideration by the Root Server System Governance Working Group as it develops its proposal for root server system governance and root server operator accountability.

SAC106: SSAC Comments on Evolving the Governance of the Root Server System (R-4)

(8Aug2019)

Phase 4 | Implement

The ICANN organization understands SAC106 Recommendation 4 to mean that the SSAC recommends the SSAC recommends to the Root Server System Governance Working Group (GWG) that bodies involved in the ongoing oversight of the Root Server System (RSS) be reviewed regularly to ensure that the RSS is both meeting its commitments and that it remains responsive to evolutionary needs and changing environmental factors as appropriate. ICANN sent this understanding to the SSAC for review on 15 August 2019. SAC106 Recommendations 2 through 4 have been received by the Root Server System Governance Working Group and is incorporating it into its proposal.

RSSAC028: Technical Analysis of the Naming Scheme Used For Individual Root Servers R-1

(3Aug2017)

Phase 5 | Close Request

The ICANN org understands RSSAC028 Recommendation 1 to mean that no changes should be made to the current naming scheme used in the root server system until more studies have been conducted. ICANN received confirmation of understanding from the RSSAC on 1/17/18. On 25 March 2021 the ICANN Board considered 2021.03.25.01 and the Board accepts Recommendation 1, calling for the current naming scheme used in the root server system to remain unchanged until more studies have been conducted.

RSSAC038: RSSAC Advisory on a Proposed Governance Model for the DNS Root Server System R-1

(14Jun2018)

Phase 5 | Close Request

The ICANN org understands RSSAC038 Recommendation 1 is for the ICANN Board to initiate a process to produce a final version of the Model for implementation based on RSSAC037. ICANN sent this understanding to the RSSAC for review on 24 July 2018. ICANN received confirmation of understanding on 17 August 2018. On 07 November 2019 a Board Resolution addressed RSSAC037 Recommendation 1 https://www.icann.org/resources/board-material/resolutions-2019-11-07-en#2.d. The ICANN Board directed the ICANN President and CEO, or his designee(s), to publish the final charter, operating procedures, and work plan for the GWG and to convene the GWG. RSSAC037; the Concept Paper; and the GWG charter, operating procedures, and work plan provide a starting point for discussions in the ICANN community about evolving RSS governance. By convening the GWG, the ICANN Board completes its consideration of recommendation one from RSSAC038. Furthermore, the ICANN Board continues its evaluation and consideration of recommendations two and three from RSSAC038.

RSSAC047: RSSAC Advisory on Metrics for the DNS Root Servers and the Root Server System R-3

(12Mar2020)

Phase 5 | Close Request

ICANN org understands that this recommendation is asking for additional work to be done in the future. The work would be initiated by RSSAC, and would be done in collaboration with ICANN org and the Internet community. This recommendation is to RSSAC itself. ICANN sent this understanding to the RSSAC for review on 27 March 2020. ICANN received confirmation of understanding on 02 April 2020. On 25 March 2021 the ICANN Board considered 2021.03.25.06: RSSAC047's Recommendation 3 calls for additional work in the future, so there is no action for the Board at this time. The future work would be initiated by the RSSAC (or a successor organization as a result of implementing the recommendations in RSSAC038), and would be performed in collaboration with ICANN org and the Internet community. This item is in Phase 5 | Close Request as of 25 March 2021.

SAC045: Invalid Top Level Domain Queries at the Root Level of the Domain Name System (R-6)

(15Nov2010)

Phase 5 | Close Request

This advice item requires further policy determination. ICANN will refer this advice to the GNSO for consideration.

SAC047: SSAC Comment on the ICANN gTLD Registry Transition Processes Model (2 of 7)

(15Apr2011)

Phase 5 | Close Request

On 23 June 2018, the Board accepted this advice and directed the CEO or his designee to implement the advice (https://www.icann.org/resources/board-material/resolutions-2018-06-23-en#1.g).

SAC051: SSAC Report on WHOIS Terminology and Structure (R-2)

(14Jun2011)

Phase 5 | Close Request

The Board accepted this advice in October 2011 and requested that a roadmap to implementation of SAC051 be developed (https://www.icann.org/resources/board-material/minutes-2011-10-28-en#5). A roadmap to implementing SAC051 was published for public comment in February 2012: https://www.icann.org/news/announcement-6-2012-06-04-en. As of 26 August 2019 all contracted parties are required to provide an RDAP service in addition to the WHOIS service. ICANN org expects to initiate the formal process for amending the Base gTLD Registry Agreement and 2013 Registrar Accreditation Agreement respectively to incorporate robust requirements for RDAP and define a smooth transition from WHOIS to RDAP including a sunset of the obligations for the WHOIS service.

SAC058: R-3 SSAC Report on Domain Name Registration Data Validation

(27Mar2013)

Phase 5 | Close Request

The ICANN organization understands SAC058 Recommendation 3 to mean that the ICANN community should seek to identify validation techniques to be used by registrars and registries for validating registration data. On 23 June 2018, the Board accepted this advice and directed the CEO or his designee to implement the advice (https://www.icann.org/resources/board-material/resolutions-2018-06-23-en#1.g).

SAC061: R-2 SSAC Comment on ICANN's Initial Report from the Expert Working Group on gTLD Directory Services

(6Sep2013)

Phase 5 | Close Request

On 23 June 2018, the Board accepted this advice and noted that implementation has been completed (https://www.icann.org/resources/board-material/resolutions-2018-06-23-en#1.g). Subsequently, on 2 August 2018 the SSAC contacted the ICANN org to oppose this determination and requested the ICANN org change SAC061 Recommendation 2's status from 'Closed' to 'Open." Upon review of SAC061 and SAC101v2, the ICANN org has returned SAC061 to Phase 2 | Understand. SAC061 Recommendation 2 will be considered in conjunction with SAC101v2. On 23 June 2019 the ICANN Board considered SAC101v2 and noted advice items 2A and three through seven in SAC101 version 2 and referred them to the GNSO Council for consideration for inclusion in the EPDP Phase 2 work (https://www.icann.org/resources/board-material/resolutions-2019-06-23-en#1.c). In its rationale the Board states "Advice item five reiterates Recommendation 2 from SAC061 and suggests that 'The ICANN Board should ensure that a formal security risk assessment of the registration data policy be conducted as an input into the Policy Development Process. A separate security risk assessment should also be conducted regarding the implementation of the policy.' The advice further suggests that 'These assessments should be incorporated in PDP plans at the GNSO.' As the advice suggests that the assessments be incorporated into PDP plans and the GNSO is the manager of PDPs, the Board notes and refers this advice to the GNSO Council."

SAC062: SSAC Advisory Concerning the Mitigation of Name Collision Risk (R-1)

(7Nov2013)

Phase 5 | Close Request

On 24 June 2017, the ICANN Board accepted this advice and directed the ICANN organization to implement per the ICANN organization's recommendation (https://www.icann.org/resources/board-material/resolutions-2017-06-24-en#2.b).

SAC063: SSAC Advisory on DNSSEC Key Rollover in the Root Zone - Item 1

(7Nov2013)

Phase 5 | Close Request

On 15 October 2018 ICANN org determined that the first-ever changing of the cryptographic key that helps protect the DNS has been completed with minimal disruption of the global Internet (https://www.icann.org/news/announcement-2018-10-15-en). The communication plan is part of the overall KSK Rollover Project. See: https://www.icann.org/resources/pages/ksk-rollover.

SAC063: SSAC Advisory on DNSSEC Key Rollover in the Root Zone - Item 2

(7Nov2013)

Phase 5 | Close Request

On 15 October 2018 ICANN org determined that the first-ever changing of the cryptographic key that helps protect the DNS has been completed with minimal disruption of the global Internet (https://www.icann.org/news/announcement-2018-10-15-en). The test pass is part of the overall KSK Rollover Project. See: https://www.icann.org/resources/pages/ksk-rollover.

SAC063: SSAC Advisory on DNSSEC Key Rollover in the Root Zone - Item 5

(7Nov2013)

Phase 5 | Close Request

On 15 October 2018 ICANN org determined that the first-ever changing of the cryptographic key that helps protect the DNS has been completed with minimal disruption of the global Internet (https://www.icann.org/news/announcement-2018-10-15-en). The data collection program is part of the overall KSK Rollover Project. See: https://www.icann.org/resources/pages/ksk-rollover.

SAC064: SSAC Advisory on DNS "Search List" Processing (R-2)

(13Feb2014)

Phase 5 | Close Request

The ICANN organization understands that SAC064 R-2 means that the SSAC recommends that ICANN organization work with the DNS community and the IETF to encourage the standardization of search list processing behavior, beginning with the submission of an Internet-Draft to the IETF and advocating for its standardization within the IETF process. Updates to RFC 1535 and other RFCs related to this topic should be included within the Internet-Draft. On 24 June 2017, the ICANN Board accepted this advice and directed the ICANN organization to implement per the ICANN organization's recommendation (https://www.icann.org/resources/board-material/resolutions-2017-06-24-en#2.b).

SAC065: SSAC Advisory on DDoS Attacks Leveraging DNS Infrastructure (R-1)

(18Feb2014)

Phase 5 | Close Request

The ICANN organization understands that SAC065 R-1 means that ICANN should help to facilitate an Internet-wide community effort to reduce the number of open resolvers and networks that allow network spoofing. This initiative, which should involve measurement efforts and outreach, should be supported by ICANN with appropriate staffing and funding to promote the recommendations made in SAC065 Recommendations 2-5.  On 24 June 2017, the ICANN Board accepted this advice and directed the ICANN organization to implement per the ICANN organization's recommendation (https://www.icann.org/resources/board-material/resolutions-2017-06-24-en#2.b).

SAC070: Advisory on the Use of Static TLD / Suffix Lists (R-5)

(28May2015)

Phase 5 | Close Request

The ICANN organization understands recommendation 5 of SAC070 as directing IANA staff to host an authoritative PSL containing information about the domains within the registries with which IANA has direct communication. This list should at least include all TLDs in the root zone. ICANN org hired a contractor to provide the materials. Estimated time to completion is end of November 2019. On 24 June 2017, the ICANN Board accepted this advice and directed the ICANN organization to implement per the ICANN organization's recommendation (https://www.icann.org/resources/board-material/resolutions-2017-06-24-en#2.b). As of 01 December 2019, IANA staff is now hosting an authoritative PSL for all TLDs in the root zone as stated in recommendation 5 of SAC070.

SAC070: SSAC Advisory on the Use of Static TLD/Suffix Lists (R-3)

(28May2015)

Phase 5 | Close Request

The ICANN organization understands this recommendation to mean that ICANN, in concert with the Mozilla Foundation, prepare educational materials on the Mozilla PSL covering the meaning of the resource and the impact of the resource. ICANN org hired a contractor to provide the materials. Estimated time to completion is end of December 2019. On 24 June 2017, the ICANN Board accepted this advice and directed the ICANN organization to implement per the ICANN organization's recommendation (https://www.icann.org/resources/board-material/resolutions-2017-06-24-en#2.b). On 18 May 2020, "The Public Suffix List: A Guide for TLD Administrators" was published, (https://www.icann.org/en/system/files/files/octo-011-18may20-en.pdf) closing the knowledge gap between registries and popular PSL maintainers with the creation of informational material that can be given to TLD registry operators about the Mozilla PSL. This item is in Phase 5 | Close Request as of 5 June 2020.

SAC073: SSAC Comments on Root Zone Key Signing Key Rollover Plan

(5Oct2015)

Phase 5 | Close Request

On 15 October 2018 ICANN org determined that the first-ever changing of the cryptographic key that helps protect the DNS has been completed with minimal disruption of the global Internet (https://www.icann.org/news/announcement-2018-10-15-en). See: https://www.icann.org/resources/pages/ksk-rollover.

SAC090: SSAC Advisory on the Stability of the Domain Namespace, R-1

(22Dec2016)

Phase 5 | Close Request

On 23 June 2018, the Board accepted this advice and will ask the GNSO Subsequent Procedures PDP to include this recommendation in its work (https://www.icann.org/resources/board-material/resolutions-2018-06-23-en#1.g).

SAC090: SSAC Advisory on the Stability of the Domain Namespace, R-2

(22Dec2016)

Phase 5 | Close Request

On 23 June 2018, the Board accepted this advice and will ask the GNSO Subsequent Procedures PDP to include this recommendation in its work (https://www.icann.org/resources/board-material/resolutions-2018-06-23-en#1.g).

SAC090: SSAC Advisory on the Stability of the Domain Namespace, R-3

(22Dec2016)

Phase 5 | Close Request

On 23 June 2018, the Board accepted this advice and will ask the GNSO Subsequent Procedures PDP to include this recommendation in its work (https://www.icann.org/resources/board-material/resolutions-2018-06-23-en#1.g).

SAC090: SSAC Advisory on the Stability of the Domain Namespace, R-4

(22Dec2016)

Phase 5 | Close Request

On 23 June 2018, the Board accepted this advice and will ask the GNSO Subsequent Procedures PDP to include this recommendation in its work (https://www.icann.org/resources/board-material/resolutions-2018-06-23-en#1.g).

SAC095: SSAC Advisory on the Use of Emoji in Domain Names R-2

(25May2017)

Phase 5 | Close Request

On 2 Nov 2017, the ICANN Board directed the ICANN org to engage with gTLD and ccTLD communities on the findings and recommendations in SAC095 in addition to requesting that the ccNSO and GNSO integrate conformance with IDNA2008 and its successor into their relevant policies so as to safeguard security, stability, resiliency and interoperability of domain names (see: https://www.icann.org/resources/board-material/resolutions-2017-11-02-en#1.e). Registrations under gTLDs are limited to IDNA2008 under the new gTLDs program. So registrations for such gTLDs do not permit emojis. The same restrictions are also also extended for contracts for other gTLDs. There is active outreach to the ccTLDs for following the same practice, and not register emojis, by ICANN org's GSE team and the IDN program team. ICANN org has also translated the advice from SSAC to training materials, e.g. see the flyer and its translations at the bottom of the webpage www.icann.org/idn - which is being disseminated by the GSE team. ICANN org continues to conduct outreach to ccTLDs to inform them of the risks of registering emoji domains.

SAC098: The Security, Stability and Resiliency of the DNS Review (SSR2)

(4Oct2017)

Phase 5 | Close Request

On 28 October 2017, the Board issued a letter to the SSR2 Review Team instructing the team to pause all work related to the review, excepting only planned engagement meetings at ICANN 60 (https://www.icann.org/en/system/files/correspondence/crocker-to-ssr2-28oct17-en.pdf). On 7 June 2018 ICANN Org announced the formal restart of the SSR2 Review with four additional Review Team members (https://www.icann.org/news/announcement-2-2018-06-07-en).

SAC101v2: SSAC Advisory Regarding Access to Domain Name Registration Data (R-1A)

(11Dec2018)

Phase 5 | Close Request

On 23 June 2019 the ICANN Board considered SAC101v2 and accepted Recommendation 1 and directed the ICANN President and CEO, or his designee(s), to create a plan that reports on ICANN org's and the community's progress toward the four objectives identified in the advice (https://www.icann.org/resources/board-material/resolutions-2019-06-23-en#1.c). In its rationale the Board states "In accepting advice item one, the Board further notes that the creation of an "accredited RDDS access program," is a topic under discussion in the EPDP Phase 2. The Board cannot dictate outcomes of PDPs. Once the EPDP delivers its final Phase 2 report, the Board will consider the policy recommendations." The EPDP issued the Phase 2 Final Report on the Temporary Specification for gTLD Registration Data on 31 July 2020, and was subsequently adopted by the GNSO council on 24 September 2020 and was provided to the Board for consideration. The EPDP Phase 2 Report contains recommendations regarding: Accreditation of SSAD requestors, Required criteria and content of SSAD requests, Response requirements, Required Service Level Agreements (SLAs), Automation of SSAD processing, Terms and conditions of SSAD, Logging, auditing, and reporting requirements, Implementation of a GNSO Standing Committee. ICANN org notes the SSAC confirmation that item "a" is considered complete. This item will be parsed and placed in Phase 5.

SAC101v2: SSAC Advisory Regarding Access to Domain Name Registration Data (R-1B)

(11Dec2018)

Phase 5 | Close Request

On 23 June 2019 the ICANN Board considered SAC101v2 and accepted Recommendation 1 and directed the ICANN President and CEO, or his designee(s), to create a plan that reports on ICANN org's and the community's progress toward the four objectives identified in the advice (https://www.icann.org/resources/board-material/resolutions-2019-06-23-en#1.c). In its rationale the Board states "In accepting advice item one, the Board further notes that the creation of an "accredited RDDS access program," is a topic under discussion in the EPDP Phase 2. The Board cannot dictate outcomes of PDPs. Once the EPDP delivers its final Phase 2 report, the Board will consider the policy recommendations." ICANN notes that the SSAC has stated this item is complete pending implementation work. ICANN continues to work with gTLD registries and registrars to implement a service-level agreement and registry reporting requirements for RDAP. Per the 26 February 2019 legal notification "Pursuant to Appendix A (Section 1.1) of the Temporary Specification for gTLD Registration Data [https://www.icann.org/resources/pages/gtldregistration-data-specs-en [icann.org]] and other contractual provisions relating to Registration Data Directory Services, all gTLD registries and registrars are required to implement RDAP no later than 26 August 2019." Accordingly, this item will also be parsed and placed in Phase 5.

SAC101v2: SSAC Advisory Regarding Access to Domain Name Registration Data (R-2A)

(11Dec2018)

Phase 5 | Close Request

On 23 June 2019 the ICANN Board considered SAC101v2 and noted advice items 2A and three through seven in SAC101 version 2 and referred them to the GNSO Council for consideration for inclusion in the EPDP Phase 2 work (https://www.icann.org/resources/board-material/resolutions-2019-06-23-en#1.c). In its rationale the Board states "Advice item 2A suggests that the Board direct ICANN org to work with the community to 'develop policy with clearly defined uniform purposes for RDDS rate-limiting and corresponding service level agreement requirements.' As policy is developed by the community and this topic is in the work plan for the EPDP Phase 2, the Board notes this advice and refers to the GNSO Council as the manager of PDPs. In taking this action, the Board also notes that in the Annex to the Temporary Specification for gTLD Registration Data, the Board asked that the topic of rate limit be discussed and resolved by the community as quickly as possible."

SAC101v2: SSAC Advisory Regarding Access to Domain Name Registration Data (R-3)

(11Dec2018)

Phase 5 | Close Request

On 23 June 2019 the ICANN Board considered SAC101v2 and noted advice items 2A and three through seven in SAC101 version 2 and referred them to the GNSO Council for consideration for inclusion in the EPDP Phase 2 work (https://www.icann.org/resources/board-material/resolutions-2019-06-23-en#1.c). In its rationale the Board states "Advice item three suggests that the 'Board and EPDP policy-makers should ensure that security practitioners and law enforcement authorities have access to domain name contact data, via RDDS, to the full extent allowed by applicable law.' As this is a policy matter and the topic is in the work plan for the EPDP Phase 2, the Board notes this advice and refers to the GNSO Council as the manager of PDPs."

SAC101v2: SSAC Advisory Regarding Access to Domain Name Registration Data (R-5)

(11Dec2018)

Phase 5 | Close Request

On 23 June 2019 the ICANN Board considered SAC101v2 and noted advice items 2A and three through seven in SAC101 version 2 and referred them to the GNSO Council for consideration for inclusion in the EPDP Phase 2 work (https://www.icann.org/resources/board-material/resolutions-2019-06-23-en#1.c). In its rationale the Board states "Advice item five reiterates Recommendation 2 from SAC061 and suggests that 'The ICANN Board should ensure that a formal security risk assessment of the registration data policy be conducted as an input into the Policy Development Process. A separate security risk assessment should also be conducted regarding the implementation of the policy.' The advice further suggests that 'These assessments should be incorporated in PDP plans at the GNSO.' As the advice suggests that the assessments be incorporated into PDP plans and the GNSO is the manager of PDPs, the Board notes and refers this advice to the GNSO Council."

SAC102: SSAC Comment on the Updated Plan for Continuing the Root KSK Rollover

(20Aug2018)

Phase 5 | Close Request

The ICANN org understands SAC102 is the SSAC's response to ICANN Board Resolution 2018.05.13.09. ICANN org understands the SSAC had not identified any reason within the SSAC's scope why the October 2018 root zone KSK rollover should have not proceeded as it was planned. The ICANN org also understands that the SSAC would like the ICANN org to establish a framework for scheduling further rolls of the root KSK based on analysis of the outcomes of this initial roll of the KSK. This is an updated understanding of SAC102 based on feedback provided by the SSAC on 16 July 2019. ICANN sent this updated understanding to the SSAC for review on 15 August 2019. As of 07 November 2019, a proposed framework requested in the SSAC advice has been put up for public comment and communicated to the community in various sessions in ICANN 66 and on the customary DNSSEC-related mailing lists.

SAC106: SSAC Comments on Evolving the Governance of the Root Server System (R-3)

(8Aug2019)

Phase 5 | Close Request

The ICANN organization understands SAC106 Recommendation 3 to mean that the SSAC recommends to the Root Server System Governance Working Group (GWG) that decisions of the GWG be made on the basis of consensus, and that votes only be taken when formality is required or consensus is not achievable. ICANN sent this understanding to the SSAC for review on 15 August 2019. SAC106 Recommendation 2 through 4 was provided to the Root Server System Governance Working Group (GWG) and is operating on the basis of consensus. The Root Server System Governance Working Group operates transparently and makes decision by consensus. This item is in Phase 5 | Close Request as of 07 April 2021.

SSAC2020-06: SSAC Public Comment on the Initial Report of the New gTLD Auction Proceeds Cross-Community Working Group

(14Feb2020)

Phase 5 | Close Request

The ICANN org understands the SSAC recommends that, following the completion and submission of the CCWG's report, the next step in the process be to have an outside expert with a demonstrated track-record in designing funding programs review the report, comment on its finding and recommendations, and use it as a basis to inform the Board on the design of a grant making process for the auction proceeds that implements grant making best practices. The ICANN org also understands that the SSAC recommends that this step should be undertaken before the Board formally considers the CCWG's Final Report as its advice would assist the Board in its consideration of the CCWG recommendations. ICANN sent this understanding to the SSAC for review on 16 June 2020. ICANN received confirmation of understanding on 22 July 2020.

 

Advice Items Closed in the Last 12 Months

Advice Item Close Date Action(s) Taken

SAC115: SSAC Report on an Interoperable Approach to Addressing Abuse Handling in the DNS

(19Mar2021)

4/23/21

ICANN org understands this to be a request directed at the ICANN community recommending that they work towards forming a new body. That body being a neutral facilitator on matters related to "Abuse", titled as a "Common Abuse Response Facilitator. The proposed Facilitator is suggested to be a new "entity should ideally be a wholly independent non-governmental, not-for-profit organization" As this recommendation is directed to the community and does not solicit any actions from the ICANN Board, the item will be considered closed. ICANN Org sent this understanding to the SSAC for review on 30 March 2021. This item is considered complete as of the SSAC's confirmation of understanding on 22 April 2021.

SAC116: SSAC Comments on the Second Security, Stability, and Resiliency (SSR2) Review Team Final Report

(22Mar2021)

3/25/21

The ICANN organization understands this is the SSAC's comment on the Second Security, Stability, and Resiliency (SSR2) Review Team Final Report. The respective public comment period closes on 8 April 2021. A Report of Public Comments is due on 22 April 2021 and this comment will be included in that consideration https://www.icann.org/public-comments/ssr2-final-report-2021-01-28-en. There is no action for the ICANN Board. This understanding was sent to the SSAC on 25 March 2021.

SAC111: SSAC Comment on the Initial Report of the Temporary Specification for gTLD Registration Data Phase 2 Expedited Policy Development Process

(4 May 2020)

5/19/20

The ICANN org understands that this statement is the SAC111: SSAC Comment on the Initial Report of the Temporary Specification for gTLD Registration Data Phase 2 Expedited Policy Development Process. As this item will be considered via the Public Comment process, there is no action for the ICANN Board, and the item will be considered closed. This understanding was sent to the SSAC on 19 May 2020.