RSSAC062: Security Incident Reporting
RSSAC062 was published on 6 May 2025. All RSSAC publications can be found at https://www.icann.org/groups/rssac/documents.
Item | Description | Current Phase |
|---|---|---|
The Root Server System (RSS) is a critical part of the global DNS infrastructure and its security and stability are essential to the functioning of the Internet. While the RSS has operated well since its inception in 1985, no system on the Internet is immune to security threats. It is important to assure the Internet community that the RSS is functioning properly and will remain a secure and stable resource. This document discusses ways that an RSS governance structure (RSS GS) and Internet community can be informed about security incidents that affect the proper functioning of the RSS. The primary audiences of this publication are RSOs and parties that might collect and disseminate security incident information. Additionally, the advice in this publication should be interesting to policy makers and other stakeholders of the RSS. The primary purpose of this publication is to assist an RSS GS in implementing criterion A.1.1.1 from RSSAC058, which states, “The RSS GS must include provision for security incident oversight and disclosure obligations, and codify security threat and vulnerability information sharing amongst RSOs and the RSS GS Body.” This document is initial guidance for an RSS GS and is expected to be superseded by subsequent documentation from an RSS GS. | Closed |