Difference between revisions of "Security and Stability Advisory Committee"

Latest revision as of 17:29, 14 October 2022

The Security and Stability Advisory Committee (SSAC) advises the ICANN Board and community on matters pertaining to the correct and reliable operation of the root name system, address allocation and Internet number assignment, and registry and registrar services such as WHOIS. The SSAC also tracks and assesses threats and risks to the Internet naming and address allocation services.^[1]

SSAC History and Membership

During the ICANN meeting from November 2001, the ICANN Board asked the Board President to assign a President for "security and stability of the Internet's naming and address allocation system" which has the responsibility to create an in-depth analysis of the risks and threats. On May 13, 2002, the President of the committee for security and stability was converted to the President of the Security and Stability Advisory Committee (SSAC).^[2] The SSAC's chair and members are appointed and can be removed by the ICANN Board. SSAC membership appointments run for three years, but there are no limits on how many times members can be re-appointed.^[3] Rod Rasmussen is the current Chair of the SSAC. He was appointed for another three-year term as Chair in September 2020.^[4] The current SSAC membership is as follows:^[5]

James Galvin (Liaison to the ICANN Board)
Robert Guerra
Julie Hammer (Vice Chair)
Cristian Hesselman
Russ Housley
Geoff Huston
Merike Kaeo
Andrei Kolesnikov
Warren Kumari
Jacques Latour
Barry Leiba
John R. Levine

SSAC Support Staff

Support for the committee is provided by:

Andrew McConachie, Policy and Technology Senior Manager
Danielle Rutherford, SSAC and RSSAC Policy and Technology Analyst
Kathy Schnitt, SSAC and RSSAC Support Lead Administrator
Steve Sheng, Senior Director, Policy Development Support

How does SSAC work?

SSAC conducts ongoing threat assessment and risk analysis for Internet allocation services to determine which are viable threats and how these threats could influence the stability of the Internet. SSAC advises the ICANN community based on the results of these assessments.

In order to fulfill its objective to advise ICANN, SSAC develops comments, reports, and advisories on the issues which may concern the Internet community.

Reports are technical documents that contain substantive information and are developed in a few months' time. The reports represent a well-structured, in-depth analysis of a specific topic and include recommendations for ICANN.
Comments are SSAC responses to reports created by other ICANN bodies or organizations. These comments are usually supplied through Public Comment proceedings or to the ICANN Board when it asks the SSAC for an opinion.
Correspondence are documents concerning administrative, governance, or community-related issues and are normally signed by the SSAC Chair.
Advisories are concise documents containing useful, clear advice for ICANN and the Internet community so that they can act in a timely manner. The advisories supply recommendations and solutions for problems and ways to reduce risks and threats. ^[6]

SSAC Policy Advice Development Process

SSAC members, ICANN, the ICANN Board, or an SO or AC requests that SSAC review an issue.
If the SSAC agrees to review the issue, a work party begins drafting a document.
The Work party shares the document with those it might affect and then sends revisions to the SSAC.
The SSAC posts the revised document for Public Comment.
The SSAC reaches a consensus on the final document, which the SSAC chair shares with relevant parties in the ICANN community or legal team.
The SSAC publishes the approved document and tracks and reviews its effects.^[7]

References

[1] SSAC overview

[2] SSAC history

[3] ICANN Bylaws Article 12.2 (b)

[4] ICANN Resolution - SSAC Member Appointments, September 10, 2020

[5] ICANN - About the SSAC

[6] SSAC reporting

[7] How policy is developed

[1]

[2]

[3]

[4]

[5]

[6]

[7]

@@ Line 1: / Line 1: @@
-The '''Security and Stability Advisory Committee''' ('''SSAC''') advises the [[ICANN Board]] on matters related to the security and integrity of domain names and the allocation of [[IP]] addresses, including but not limited to security assurance for operational matters, administrative matters and registrations matters. <ref>[http://www.trafficmedia.com/knowledgebase/Internet-Business/Legal/Security-and-Stability-Advisory-Committee/?artid=584 SSAC overview]</ref>
+The '''Security and Stability Advisory Committee''' ('''SSAC''') advises the [[ICANN Board]] and community on matters pertaining to the correct and reliable operation of the root name system, address allocation and Internet number assignment, and registry and registrar services such as WHOIS. The SSAC also tracks and assesses threats and risks to the Internet naming and address allocation services.<ref>[http://www.trafficmedia.com/knowledgebase/Internet-Business/Legal/Security-and-Stability-Advisory-Committee/?artid=584 SSAC overview]</ref>
-==SSAC History==
-During the ICANN meeting from November 2001, the ICANN Board asked the Board President to assign a President for "security and stability of the Internet's naming and address allocation system" which has the responsibility to create a in-depth analysis of the risks and threats. In May 13 year 2002 the President of the committee for security and stability was converted to the President of the Security and Stability Advisory Committee (SSAC).<ref>[http://www.icann.org/en/committees/security/biographies-31jan11-en.htm SSAC history]</ref>
-There are currently 37 members of SSAC<ref>[http://www.icann.org/en/groups/ssac/biographies-08oct13-en.htm members]</ref>, with [[Rod Rasmussen]] as the Chair. Others include:<ref> List of SSAC Membership as of Oct 2013 http://www.icann.org/en/committees/security/</ref>
+==SSAC History and Membership==
+During the ICANN meeting from November 2001, the ICANN Board asked the Board President to assign a President for "security and stability of the Internet's naming and address allocation system" which has the responsibility to create an in-depth analysis of the risks and threats. On May 13, 2002, the President of the committee for security and stability was converted to the President of the Security and Stability Advisory Committee (SSAC).<ref>[http://www.icann.org/en/committees/security/biographies-31jan11-en.htm SSAC history]</ref>
+The SSAC's chair and members are appointed and can be removed by the [[ICANN Board]]. SSAC membership appointments run for three years, but there are no limits on how many times members can be re-appointed.<ref>[https://www.icann.org/resources/pages/governance/bylaws-en/#article12 ICANN Bylaws Article 12.2 (b)]</ref>
+[[Rod Rasmussen]] is the current Chair of the SSAC. He was appointed for another three-year term as Chair in September 2020.<ref>[https://features.icann.org/security-and-stability-advisory-committee-ssac-member-appointments-1 ICANN Resolution - SSAC Member Appointments, September 10, 2020]</ref> The current SSAC membership is as follows:<ref>[https://www.icann.org/groups/ssac ICANN - About the SSAC]</ref>
+{|
+|-
+|
 *[[Greg Aaron]]
 *[[Joe Abley]]
@@ Line 12: / Line 14: @@
 *[[Tim April]]
 *[[Jeffrey Bedser]]
-*[[Ben Butler]]
 *[[Lyman Chapin]]
 *[[KC Claffy]]
 *[[Steve Crocker]]
-*[[Andrew de la Haije]]
 *[[Paul Ebersman]]
 *[[Patrik Fältström]]
 *[[Ondrej Filip]]
-*[[Bobby Flaim]]
+|
-*[[James Galvin]]
+|
+*[[James Galvin]] (Liaison to the [[ICANN Board]])
 *[[Robert Guerra]]
-*[[Julie Hammer]]
+*[[Julie Hammer]] (Vice Chair)
 *[[Cristian Hesselman]]
+*[[Russ Housley]]
 *[[Geoff Huston]]
 *[[Merike Kaeo]]
-*[[Andrei Kolesnikov}}
+*[[Andrei Kolesnikov]]
 *[[Warren Kumari]]
 *[[Jacques Latour]]
 *[[Barry Leiba]]
 *[[John R. Levine]]
+|
+|
 *[[Danny McPherson]]
 *[[Ram Mohan]]
 *[[Russ Mundy]]
-*[[Rod Rasmussen]]
 *[[Chris Roosenraad]]
 *[[Mark Seiden]]
 *[[Doron Shikmoni]]
+*[[Jonathan Spring]]
+*[[Matthew Thomas]]
 *[[Tara Whalen]]
-*[[Suzanne Woolf]]<br>
+*[[Suzanne Woolf]]
+*[[Jiankang Yao]]<br>
+|}
 == SSAC Support Staff ==
 Support for the committee is provided by:
-* [[Andrew McConachie]], Technical and Policy Specialist
+* [[Andrew McConachie]], Policy and Technology Senior Manager
-* [[Kathy Schnitt]], Secretariat Operations Coordinator for <abbr>RSSAC</abbr> and <abbr>SSAC</abbr>
+* [[Danielle Rutherford]], SSAC and [[RSSAC]] Policy and Technology Analyst
-* [[Steve Sheng]], Senior Technical Analyst
+* [[Kathy Schnitt]], SSAC and [[RSSAC]] Support Lead Administrator
+* [[Steve Sheng]], Senior Director, Policy Development Support
 ==How does SSAC work?==
 SSAC conducts ongoing threat assessment and risk analysis for Internet allocation services to determine which are viable threats and how these threats could influence the stability of the Internet. SSAC advises the ICANN community based on the results of these assessments.
-In order to fulfill its objective to advise [[ICANN]], SSAC develops comments, reports and advisories on the issues which may concern the Internet community.
+In order to fulfill its objective to advise [[ICANN]], SSAC develops comments, reports, and advisories on the issues which may concern the Internet community.
-* ''Reports'' are documents which contain substantive information and are developed in a few months' time. The reports represent a well-structured and in-depth analysis concerning a specific topic or issue, and includes recommendations for ICANN.
+* ''Reports'' are technical documents that contain substantive information and are developed in a few months' time. The reports represent a well-structured, in-depth analysis of a specific topic and include recommendations for ICANN.
-* ''Comments'' are the responses received based on the reports created by ICANN groups or other eligible organizations. These comments are usually supplied to public calls.
+* ''Comments'' are SSAC responses to reports created by other ICANN bodies or organizations. These comments are usually supplied through [[Public Comment]] proceedings or to the ICANN Board when it asks the SSAC for an opinion.
-* ''Advisories'' are concise documents containing useful and clear advice for ICANN and the Internet community. The advisories supply recommendations and solutions for problems and ways to reduce risks and threats. <ref>[http://www.icann.org/en/committees/security/ SSAC reporting]</ref>
+* ''Correspondence are documents concerning administrative, governance, or community-related issues and are normally signed by the SSAC Chair''.
+* ''Advisories'' are concise documents containing useful, clear advice for ICANN and the Internet community so that they can act in a timely manner. The advisories supply recommendations and solutions for problems and ways to reduce risks and threats. <ref>[http://www.icann.org/en/committees/security/ SSAC reporting]</ref>
-The SSAC produces Reports, Advisories, and Comments on a range of topics. Reports are longer, substantive documents, which usually take a few or several months to develop. Advisories are shorter documents produced more quickly to provide timely advice to the community. Comments are responses to reports or other documents prepared by others, i.e. ICANN staff, SOs, other ACs, or, perhaps, by other groups outside of ICANN. The SSAC considers matters pertaining to the correct and reliable operation of the root name system, to address allocation and Internet number assignment, and to registry and registrar services such as WHOIS. The SSAC also tracks and assesses threats and risks to the Internet naming and address allocation services.
+===SSAC Policy Advice Development Process===
+#SSAC members, ICANN, the ICANN Board, or an SO or AC requests that SSAC review an issue.
+#If the SSAC agrees to review the issue, a work party begins drafting a document.
+#The Work party shares the document with those it might affect and then sends revisions to the SSAC.
+#The SSAC posts the revised document for Public Comment.
+#The SSAC reaches a consensus on the final document, which the SSAC chair shares with relevant parties in the ICANN community or legal team.
+#The SSAC publishes the approved document and tracks and reviews its effects.<ref>[https://www.icann.org/policy#how_is_policy_developed How policy is developed]</ref>
 ==References==
 {{Reflist}}
-[[Category: Glossary]]
 [[Category: ICANN Bodies]]
 __FORCETOC__