<HTML dir=ltr><HEAD>
<META http-equiv=Content-Type content="text/html; charset=unicode">
<META content="MSHTML 6.00.5730.11" name=GENERATOR></HEAD>
<BODY>
<DIV><FONT face=Arial color=#000000 size=2><SPAN class=Apple-style-span style="WORD-SPACING: 0px; FONT: 13px arial; TEXT-TRANSFORM: none; COLOR: rgb(0,0,0); TEXT-INDENT: 0px; WHITE-SPACE: normal; LETTER-SPACING: normal; BORDER-COLLAPSE: separate; orphans: 2; widows: 2; -webkit-border-horizontal-spacing: 0px; -webkit-border-vertical-spacing: 0px; -webkit-text-decorations-in-effect: none; -webkit-text-size-adjust: auto; -webkit-text-stroke-width: 0">
<DIV id=mb_0>
<DIV style="DIRECTION: ltr">Hi everyone,<BR><BR>Adding to the string of great workshop proposals submitted, here's another. I've also posted it to the wiki.<BR><BR>Best,<BR><BR>Brenden</DIV>
<DIV style="DIRECTION: ltr"> </DIV>
<DIV style="DIRECTION: ltr">--<BR>Brenden Kuerbis<BR>Internet Governance Project<BR><A onclick="return top.js.OpenExtLink(window,event,this)" href="http://internetgovernance.org/" target=_blank>http://internetgovernance.org</A><BR><BR><proposal><BR><BR>Question 1: Provide a concise formulation for the proposed workshop theme.<BR><BR>DNSSEC: Securing a critical Internet resource<BR><BR>The theme of this workshop is Internet governance and cyber security,<BR>and particularly DNS Security Extensions (DNSSEC). The workshop will<BR>focus on the tensions and complementarities between global and<BR>national policy making, and the pursuit of global governance solutions<BR>to cyber security problems. Powerful national governments can often<BR>exert international influence over policy related to cyber security.<BR>However, the Internet is a global infrastructure and effective policy<BR>often requires a globally coordinated effort.<BR><BR>DNSSEC is an IETF technical standard that could improve the security<BR>of the global DNS and reduce criminal or disruptive acts. A critical<BR>step in deploying DNSSEC widely is the signing of the root zone file,<BR>a critical Internet resource. The procedure for signing the root, and<BR>more importantly, determining the authorities who control the digital<BR>signing of this critical Internet resource has yet to be decided.<BR>Arguably, current Internet governance institutions are unprepared for<BR>this cyber security challenge. What kinds of institutions and<BR>coordination are needed to secure the root and ensure demand for<BR>DNSSEC services? Are there specific and complimentary roles that<BR>governments, international organizations, non-governmental<BR>organizations, and the private sector can or should play? This<BR>session brings together experts to address these questions.<BR><BR>Question 2: Provide the Name of the Organizer(s) of the workshop and<BR>their Affiliation to various stakeholder groups. Describe how you will<BR>take steps to adhere to the multi-stakeholder principle, including<BR>geographical diversity.<BR><BR>Internet Governance Project (civil society/academic)<BR><BR>TBD (private sector)<BR><BR>TBD (government) [Government of Brazil has expressed interest in workshop]<BR><BR>Additional governmental and private sector organizations are being<BR>approached, however, it is too early to gauge level of commitment. Our<BR>choice of speakers and co-sponsors has been guided by stakeholder<BR>diversity.<BR><BR>Question 3: Why do you think the proposed theme is important?<BR><BR>Cyber security problems and the need for coordination between<BR>governments, the private sector and civil society in order to resolve<BR>them are at the forefront of issues confronting the Internet. This<BR>workshop provides an opportunity for encouraging broader understanding<BR>of DNS Security Extensions, including a technically informed<BR>discussion of the policy dimensions surrounding DNSSEC, DNS root<BR>signing, and its impact on the private sector, governments, and civil<BR>society.<BR><BR>Question 4: Describe the workshop's conformity with the Tunis Agenda<BR>in terms of substance and the mandate of the IGF.<BR><BR>The deployment of DNSSEC is intended to improve the security of the<BR>Internet's Domain Name System. The Tunis Agenda highlights "the<BR>importance of the security, continuity and stability of the Internet,<BR>and the need to protect the Internet and other ICT networks from<BR>threats and vulnerabilities." (45) Signatories "affirm the need for a<BR>common understanding of the issues of Internet security, and for<BR>further cooperation to facilitate outreach, the collection and<BR>dissemination of security-related information and exchange of good<BR>practice among all stakeholders on measures to combat security<BR>threats, at national and international levels." (45)<BR><BR>Question 5: Provide the Name and Affiliation of the panellists you are<BR>planning to invite.<BR><BR>We have yet to finalize our panelists for the workshop, but have<BR>initiated conversations with several individuals:<BR><BR>Tricia Drakes, Chair ISOC-England; founder International Banking<BR>Information Systems; former ICANN Board member (invited, to be<BR>confirmed)<BR><BR>Bernard Turcotte, President, Canadian Internet Registration Authority<BR>(invited, to be confirmed)<BR><BR>Sabine Dolderer, former Director and member of the Executive Board at<BR>DENIC eG (invited, to be confirmed)<BR><BR>Scott Rose, US Department of Commerce, National Institute of Standards<BR>and Technology (NIST) (invited, to be confirmed)<BR><BR>In addition, we anticipate contacting (or are already in the process)<BR>other individuals from the technical community including IETF, IANA,<BR>RIPE; private sector including financial services and information<BR>security sectors, ISPs; governments and IGOs; and civil society.<BR><BR>Question 6: Describe the main actors in the field. Have you approached<BR>them and asked whether they would be willing to participate in<BR>proposed workshop?<BR><BR>The United States government has been extremely active in the<BR>development of the DNSSEC standard, including participating in an IETF<BR>Working Group and the release by the US Department of Homeland<BR>Security of draft specifications for signing the root. We have<BR>invited a representative from the National Institute of Standards and<BR>Technology (NIST).<BR><BR>Representatives from some ccTLD organizations were consulted during<BR>the development of US-DHS specifications; however, several individuals<BR>affiliated with ccTLDs have expressed concern about DNSSEC and root<BR>signing at recent ICANN meetings. We have invited these individuals.<BR><BR>A critical piece in the successful deployment of DNSSEC is demand for<BR>secure DNS services. The financial services sector seems a likely<BR>candidate for these services. We have invited panelists familiar with<BR>the sector's initiatives.<BR><BR>The Internet technical community is involved in developing the<BR>standard and is aware of the implementation issues and problems. We<BR>have invited several technical experts.<BR><BR>Question 7: List similar events you have organized in the past.<BR><BR>IGP has organized several symposia for policy makers and/or academics,<BR>including two very successful, well-attended workshops at the Athens<BR>IGF. Recently, the IGP organized a Symposium on Internet Governance<BR>and Security: Exploring Global and National Solutions and panel on DNS<BR>Security Extensions (DNSSEC) at the Swiss Embassy in Washington DC.<BR><<A onclick="return top.js.OpenExtLink(window,event,this)" href="http://blog.internetgovernance.org/blog/_archives/2007/6/28/3053616.html" target=_blank>http://blog.internetgovernance<WBR>.org/blog/_archives/2007/6/28</WBR><WBR>/3053616.html</WBR></A><WBR>><BR>Several recognized technical experts from the private sector, ICANN<BR>and the US government discussed the deployment of DNSSEC, and in<BR>particular the policy dimensions of digitally signing the Internet's<BR>root zone file. The audience of nearly 80 people included Department<BR>of Commerce officials, US government contractors, policy-makers,<BR>public-interest advocates and graduate students. The discussion<BR>highlighted major technical challenges facing DNSSEC deployment, and<BR>the effects of root signing on tld zone operators and the Internet's<BR>Domain Name System (DNS).<BR></DIV></WBR><WBR>
<DIV style="DIRECTION: ltr"><SPAN class=sg><BR><BR><BR></SPAN></DIV></WBR></DIV><WBR></SPAN></FONT></DIV></BODY></HTML>