[Aftld-members] Fwd: [Tech] REMINDER: Call for Participation -- ICANN81 DNSSEC and Security Workshop

barrack at aftld.org barrack at aftld.org
Sun Sep 8 07:45:13 EAT 2024 

Dear Members,

This might be of interest to your technical teams.

Thank you

Best Regards


-------- Original Message --------
Subject: [Tech] REMINDER: Call for Participation -- ICANN81 DNSSEC and 
Security Workshop
Date: 2024-09-04 17:57
 From: Jacques Latour via Tech <tech at centrlists.org>
To: 'tech' <tech at centrlists.org>
Cc: "dnssec-security-workshop at icann.org" 
<dnssec-security-workshop at icann.org>
Reply-To: Jacques Latour <Jacques.Latour at cira.ca>

Hi all!

We still have a few openings in our schedule.

Thanks,

Jacques

Call for Participation -- ICANN DNSSEC and Security Workshop for ICANN
Annual General Meeting

  In cooperation with the ICANN Security and Stability Advisory Committee
(SSAC), we are planning a DNSSEC and Security Workshop for the ICANN81
Annual General Meeting being held as a hybrid meeting from 09-14
November 2024 in Istanbul, Türkiyea in the Turkey Time TRT- (UTC +3).
This workshop date will be determined once ICANN creates a block
schedule for us to follow; then we will be able to request a day and
time. The DNSSEC and Security Workshop has been a part of ICANN meetings
for several years and has provided a forum for both experienced and new
people to meet, present and discuss current and future DNSSEC
deployments.  For reference, the most recent session was held at the
ICANN80 The Policy Forum on Monday, 10 June 2024. The presentations and
transcripts are available at: https://icann80.sched.com/ [1].

  The DNSSEC Workshop Program Committee is developing a program for the

  upcoming meeting.  Proposals will be considered for the following topic
areas and included if space permits.  In addition, we welcome
suggestions for additional topics either for inclusion in the ICANN78
workshop, or for consideration for future workshops.

  1.  Global DNSSEC Activities Panel

  For this panel, we are seeking participation from those who have been
involved in DNSSEC deployment as well as from those who have not
deployed DNSSEC but who have a keen interest in the challenges and
benefits of deployment, including Root Key Signing Key (KSK) Rollover
activities and plans.

  2.  DNSSEC Best Practice

  Now that DNSSEC has become an operational norm for many registries,
registrars, and ISPs, what have we learned about how we manage DNSSEC?


  	* Do you still submit/accept DS records with Digest Type 1?
	* What is the best practice around key roll-overs?
	* What about Algorithm roll-overs?
	* Do you use and support DNSKEY Algorithms 13-16?
	* How often do you review your disaster recovery procedures?
	* Is there operational familiarity within your customer support teams?
	* What operational statistics have been gathered about DNSSEC?
	* Are there experiences being documented in the form of best practices,
or something similar, for transfer of signed zones?

  Activities and issues related to DNSSEC in the DNS Root Zone are also
desired.

  3. DNSSEC Deployment Challenges

  The program committee is seeking input from those that are interested
in implementation of DNSSEC but have general or particular concerns with
DNSSEC.  In particular, we are seeking input from individuals that would
be willing to participate in a panel that would discuss questions of the
following nature:

  	* Are there any policies directly or indirectly impeding your DNSSEC
deployment? (RRR model, CDS/CDNSKEY automation)
	* What are your most significant concerns with DNSSEC, e.g.,
complexity, training, implementation, operation or something else?
	* What do you expect DNSSEC to do for you and what doesn't it do?
	* What do you see as the most important trade-offs with respect to
doing or not doing DNSSEC?

  4. Security Panel

  The program committee is looking for presentations on DNS, DNSSEC,
routing and other topics that could impact the security and/or stability
of the Internet.

  We are looking for presentations that cover implementation issues,
challenges, opportunities and best practices for:

  	* Emerging threats that could impact the security and/or stability of
the Internet
	* DoH and DoT
	* RPKI (Resource Public Key Infrastructure)
	* BGP routing & secure implementations
	* MANRS ( Mutually Agreed Norms for Routing Security)
	* Browser security - DNS, DNSSEC, DoH
	* EMAIL & DNS related security - DMARC, DKIM, TLSA, etc…

  If you are interested in participating, please send a brief (1-3
sentence) description of your proposed presentation to
dnssec-security-workshop at icann.org by Friday, 13 September 2024.

  Thank you,

  Kim and Kathy

  On behalf of the DNSSEC Workshop Program Committee:

Gautam Akiwate, Stanford University

  Steve Crocker, Edgemoor Research Institute

  Mark Elkins, DNS/ZARC

  Jacques Latour, .CA

Ram Mohan, Identity Digital

  Russ Mundy, Tislabs

  Yoshiro Yoneya

  Dan York, Internet Society



Links:
------
[1] 
https://urldefense.com/v3/__https:/icann80.sched.com/__;!!PtGJab4!7Vwf_nce_rPxRjD_jP1wRhuny_oTUzM3I0Qc9MRXSeo2_SUo-grj_9Sd6k3mOAc3XIhjKx9KJTIzPA7TckRlZNz7gW214I3n3w$
_______________________________________________
Tech mailing list -- tech at centrlists.org
To unsubscribe send an email to tech-leave at centrlists.org

More information about the Aftld-members mailing list