Zoom chat: 2022-08-31 At-Large Consolidated Policy Working Group (CPWG)
15:38:57 From Yeşim Saglam - ICANN Org to Everyone:
Welcome to At-Large Consolidated Policy Working Group (CPWG) Call taking place on Wednesday, 31 August 2022 at 13:00 UTC.
15:39:11 From Yeşim Saglam - ICANN Org to Everyone:
Agenda: https://icann-community.atlassian.net/wiki/x/38nwBQ
16:01:23 From Hadia Elminiawi (ALAC-Participant) to Everyone:
Hello all
16:02:20 From Hadia Elminiawi (ALAC-Participant) to Everyone:
16:02:47 From Jonathan Zuck to Everyone:
I should be ready in an hour or two
16:03:00 From Heidi Ullrich - ICANN Org to Everyone:
Welcome, All.
16:04:48 From Yeşim Saglam - ICANN Org to Everyone:
RTT Link: https://www.streamtext.net/player?event=ICANN
16:04:54 From Herb Waye Ombuds to Everyone:
Greeting all from the Office of the Ombuds.
16:07:42 From Alan Greenberg to Everyone:
Short report for me on both Scoping Team and SSAD
16:08:43 From Satish Babu (Member, ALAC) to Everyone:
Not published yet.
16:09:46 From Priyatosh Jana to Everyone:
sorry for the late
16:09:52 From Priyatosh Jana to Everyone:
hi everyone
16:12:23 From Carlos Dionisio Aguirre to Everyone:
hi all . sorry to be late
16:15:59 From Chantelle Doerksen - ICANN Org to Everyone:
Hi Priyatosh and Carlos, welcome
16:29:22 From Jonathan Zuck to Everyone:
I think it's just a comment on implementation, no?
16:32:02 From Jonathan Zuck to Everyone:
isn't this about whether the implementation is aligned with the polcies?
16:34:11 From Marita Moll to Everyone:
This is very confusing. I am lost.
16:36:18 From Hadia Elminiawi (ALAC-Participant) to Everyone:
@Alan we can comment now on that
16:36:27 From Marita Moll to Everyone:
Contract words can't change the policy or recomendations. Are there any contract words in place right now or is this creating the contract words?
16:38:24 From Hadia Elminiawi (ALAC-Participant) to Everyone:
@Jonathan and Alan I agree with both of you
16:38:45 From Hadia Elminiawi (ALAC-Participant) to Everyone:
comment is also required on the implementation plan
16:39:02 From Chantelle Doerksen - ICANN Org to Everyone:
Thank you Hadia, Jonathan, and Alan. I'll note this as an action item
16:39:29 From Hadia Elminiawi (ALAC-Participant) to Everyone:
The inent
16:39:42 From Hadia Elminiawi (ALAC-Participant) to Everyone:
16:40:47 From Marita Moll to Everyone:
So this is about verifying the implementation of a policy .... period. Nothing else
16:41:10 From Olivier MJ Crepin-Leblond to Everyone:
I can see the questionnaire but had to login
16:41:15 From Olivier MJ Crepin-Leblond to Everyone:
so yes Alan that's a good idea
16:41:29 From Hadia Elminiawi (ALAC-Participant) to Everyone:
Thank you
16:42:01 From avri doria to Everyone:
the second part about application of the new policy to other existing policies sounds sort of substantive. Maybe.
16:42:41 From Jonathan Zuck to Everyone:
right, Avri. I think that's why it makes sense to get clarity
16:45:07 From Alberto Soto to Everyone:
Can you put the link here? Thanks
16:45:33 From Hadia Elminiawi (ALAC-Participant) to Everyone:
The public Comment says please provide feedback: section 1 accurately reflects the policy recommendations with no issues. Section 1 accurately reflects the policy recommendations; however, the following clarification(s) are suggested. (Please provide the suggested language change.) Section 1 does not accurately reflect the intent of the Registration Data Consensus Policy. (Please provide an explanation including Recommendations from the EPDP-TempSpec Phase 1 or Phase 2 Final Report where there are inconsistencies and the suggested change to make this section consistent.) Additional concern or issue identified in Section 1. (Please describe further.)
16:47:06 From Chantelle Doerksen - ICANN Org to Everyone:
@Alberto, Here is the link to Hadia's presentation: https://icann-community.atlassian.net/wiki/pages/viewpage.action?pageId=99666399&preview=/212107674/212108236/Registration-Data-Consensus-Policy-for-gTLDs-H%5B1%5D%20%20-%20%20Read-Only.pdf#PDPs--391621659
16:49:02 From Chantelle Doerksen - ICANN Org to Everyone:
Here is the link to the current Transfer Policy: https://www.icann.org/resources/pages/transfer-policy-2016-06-01-en
16:49:31 From Christopher Wilkinson to Everyone:
@MM If ALAC did not agree with the Policy in the first place, I query the interest of mobilising At Large to comment on its Implementation. CW
16:51:47 From Hadia Elminiawi (ALAC-Participant) to Everyone:
Thank you Steinar
16:52:26 From Jonathan Zuck to Everyone:
well, it was originally to give enough time for credit cards to clear
16:53:43 From Jonathan Zuck to Everyone:
We had supported shortening this period previously.
17:08:07 From Marita Moll to Everyone:
I am getting Alan's point. Small price to pay for detering hijackers
17:10:47 From avri doria to Everyone:
is there any evidence on whether the current lock policy is preventing hijacks and that is the reason we are not seeing a big problem?
17:11:54 From Jonathan Zuck to Everyone:
Good question, Avri. It sounds like we are, as usual, proceeding without data.
17:12:04 From Marita Moll to Everyone:
There seems to be a lack of evidence, but I am not clear how that is collected/determined
17:12:15 From Alan Greenberg to Everyone:
A really good question Avri. I would also like to know how many hijack complaints are there and how many are resolved with the same registrar.
17:12:57 From avri doria to Everyone:
this data would be hard to get and might only be anecdotal. but is there any of that anecdotal info.
17:12:59 From Alan Greenberg to Everyone:
It is VERY common sadly that the only entity that has data is the registrar and generally they will not publish such data.
17:14:01 From Alan Greenberg to Everyone:
My recollection is that it is one of the issues that ICANN compliance regularly gets complaints about.
17:17:46 From Marita Moll to Everyone:
cctld's -- at least the Canadian one -- require some identification so they know who you are
17:22:27 From Greg Shatan to Everyone:
17:23:07 From Greg Shatan to Everyone:
17:24:44 From Marita Moll to Everyone:
Thanks Greg. Food for thought -- and a bit chilling.
17:24:56 From Roberto Gaetano to Everyone:
actually, the option 60 days is not included
17:26:14 From Greg Shatan to Everyone:
US Cybersecurity Agency warning on domain name hijacking "at scale": https://www.cisa.gov/uscert/ncas/alerts/AA19-024A
17:27:34 From Amrita Choudhury to Everyone:
It would be great if we could select multiple responses in this question
17:27:49 From Alan Greenberg to Everyone:
I think the lack of multiple answers makes this meaningless.
17:27:55 From Roberto Gaetano to Everyone:
would it make sense to have multiple choices? like name and email? or am I missing something
17:27:58 From Marita Moll to Everyone:
I wanted to choose all so entered "other"
17:28:23 From Carlos Dionisio Aguirre to Everyone:
+1 @Marita
17:28:25 From Greg Shatan to Everyone:
Me, too - Marita
17:28:32 From Amrita Choudhury to Everyone:
17:29:17 From Mouloud Khelif - ICANN75 Fellow to Everyone:
17:29:48 From Hadia Elminiawi (ALAC-Participant) to Everyone:
Thank Steinar this was really helpful
17:29:55 From Greg Shatan to Everyone:
DNS Hijacking as (alleged) state-sponsored activity: https://www.mandiant.com/resources/blog/global-dns-hijacking-campaign-dns-record-manipulation-at-scale
17:31:54 From Greg Shatan to Everyone:
DNS Hijacking targeting government and infrastructure related domains: https://www.crowdstrike.com/blog/widespread-dns-hijacking-activity-targets-multiple-sectors/
17:32:23 From Steinar Grøtterød to Everyone:
Sorry for a badly phrased poll question #4. I will not include the results in the wording to the TRP PDP working group. Next meeting in the TRP PDP is on Sep 6, 2022
17:33:55 From Roberto Gaetano to Everyone:
@Steinar - you could send the Q4 to the list in rthe modified form
17:35:14 From Steinar Grøtterød to Everyone:
Please 18:00 UTC
17:35:35 From Greg Shatan to Everyone:
DNS hijacking is often linked to other forms of DNS Abuse. There appear to be significant instances where Hijacked domains were used in conjunction with previously stolen credentials to direct users to fake websites designed to steal login credentials and other sensitive information
17:36:20 From Steinar Grøtterød to Everyone:
@Roberto: Sure
17:36:32 From Yeşim Saglam - ICANN Org to Everyone:
Next week's call at 18:00 UTC
17:36:52 From Alberto Soto to Everyone:
Ok, thanks, bye bye!!
17:36:55 From Amrita Choudhury to Everyone:
Thanks all bye
17:36:57 From Hadia Elminiawi (ALAC-Participant) to Everyone:
Thank you all bye for now
17:37:06 From Mouloud Khelif - ICANN75 Fellow to Everyone:
Thanks everyone
17:37:12 From Priyatosh Jana to Everyone:
thanks all and good bye
17:37:15 From Chantelle Doerksen - ICANN Org to Everyone:
Thank you all
17:37:21 From Nthabiseng Pule to Everyone:
Thank you everyone
17:37:41 From Greg Shatan to Everyone:
Hijack for crypto theft: ttps://cryptopotato.com/binance-recovers-83-of-stolen-funds-in-curve-finance-dns-attack/
17:37:51 From Greg Shatan to Everyone:
Bye all!
17:37:52 From Roberto Gaetano to Everyone: