Skip to main content

Security and Stability Advisory Committee (SSAC) Review

SSAC Review Wiki Workspace Page
Find the latest status updates, recordings of past meetings, and opportunities to participate
Introduction to Reviews
Learn more about Reviews, their purpose and process for conducting and opportunities to participate

The Security and Stability Advisory Committee (SSAC) advises the ICANN community and Board on matters relating to the security and integrity of the Internet's naming and address allocation systems. This includes operational, administrative, and registration matters. SSAC engages in ongoing threat assessment and risk analysis of the Internet naming and address allocation services to assess where the principal threats to stability and security lie, and advises the ICANN community accordingly.  For more information on SSAC, click here.

SSAC Organizational Review

The goal of the review, to be undertaken pursuant to such criteria and standards as the Board shall direct, shall be to determine (i) whether that organization, council or committee has a continuing purpose in the ICANN structure, (ii) if so, whether any change in structure or operations is desirable to improve its effectiveness and (iii) whether that organization, council or committee is accountable to its constituencies, stakeholder groups, organizations and other stakeholders.

These periodic reviews shall be conducted no less frequently than every five years, based on feasibility as determined by the Board. Each five-year cycle will be computed from the moment of the reception by the Board of the final report of the relevant review Working Group.

The graphic below illustrates phases and status of each review - a indicates that all activities within a given phase have been completed.  The chart that follows the graphic provides further details of key activities and milestones within each phase – you can view these details by clicking on each of the phases in the graphic.  The table also contains links to relevant documents.

PhaseActivityDescriptionStart DateDocuments
Plan ReviewInitiate ReviewBoard Resolution Initiating the Second Review of the Security and Stability Advisory Committee18 May 2017
RFP for Independent ExaminerAnnouncement of Independent Examiner Request for Proposals7 Jul 2017
Request for Proposal ExtensionExtended Deadline: Request for Proposal for the SSAC Organizational Review1 Aug 2017
Conduct ReviewSelection of Independent ExaminerAnnouncement of selection of Independent Examiner22 Feb 2018
Assessment ReportIndependent Review of the ICANN Security and Stability Advisory Committee: Assessment Report including translated executive summaries21 Jun 2018
Draft report posted for public comment Draft Final Report posted for public comment15 Oct 2018
Final Report Executive SummaryIndependent Review of the ICANN Security and Stability Advisory Committee: Executive Summary 17 Dec 2018
Final ReportIndependent Review of the ICANN Security and Stability Advisory Committee: Final Report17 Dec 2018
Plan ImplementationFeasibility Assessment and Initial Implementation PlanSSAC Review Feasibility Assessment and Initial Implementation Plan13 May 2019
Board Accepts Final Report and Implementation Plan Board accepts Final Report and Feasibility Assessment of the Initial Implementation Plan23 Jun 2019

PhaseActivityDescriptionStart DateDocuments
Plan ReviewAppointment of review team membersAppointment of review team members26 Jun 2008
Terms of ReferenceDocument outlining the scope of work adopted by the review team16 Sep 2008
RFP for external consultantIndependent Expert Request for Proposals announcement16 Sep 2008
Conduct ReviewDraft Final Report of Independent ConsultantReview of the ICANN Security and Stability Advisory Committee – Public Discussion Draft #116 Feb 2009
Public Comment on Draft Final Report of Independent ConsultantPublic comment on JAS Communications’ Draft Final Report20 Mar 2009
Final Report of Independent ConsultantReview of the ICANN Security and Stability Advisory Committee prepared by JAS Communications, LLC15 May 2009
Public Comment on Independent Consultant’s Final ReportPublic comment on JAS Communications’ Final Report21 May 2009
Draft ReportDraft Report of the SSAC Review Working Group posted for public comment18 Sep 2009
Public Comment on SSAC Review WG’s Draft ReportPublic comment on SSAC Review Working Group’s Draft Report5 Oct 2009
Final ReportFinal report submitted to ICANN Board29 Jan 2010
Board receipt of the Final ReportBoard action and resolution12 Mar 2010
Plan ImplementationBoard receipt of Implementation PlanBoard receipt of Implementation Plan12 Mar 2010
Implement ImprovementsDetails of implementation and periodic updatesSSAC Improvements Implementation Plan18 Mar 2011
Board action on review team recommendationsBoard action and resolution25 Jun 2010

Domain Name System
Internationalized Domain Name ,IDN,"IDNs are domain names that include characters used in the local representation of languages that are not written with the twenty-six letters of the basic Latin alphabet ""a-z"". An IDN can contain Latin letters with diacritical marks, as required by many European languages, or may consist of characters from non-Latin scripts such as Arabic or Chinese. Many languages also use other types of digits than the European ""0-9"". The basic Latin alphabet together with the European-Arabic digits are, for the purpose of domain names, termed ""ASCII characters"" (ASCII = American Standard Code for Information Interchange). These are also included in the broader range of ""Unicode characters"" that provides the basis for IDNs. The ""hostname rule"" requires that all domain names of the type under consideration here are stored in the DNS using only the ASCII characters listed above, with the one further addition of the hyphen ""-"". The Unicode form of an IDN therefore requires special encoding before it is entered into the DNS. The following terminology is used when distinguishing between these forms: A domain name consists of a series of ""labels"" (separated by ""dots""). The ASCII form of an IDN label is termed an ""A-label"". All operations defined in the DNS protocol use A-labels exclusively. The Unicode form, which a user expects to be displayed, is termed a ""U-label"". The difference may be illustrated with the Hindi word for ""test"" — परीका — appearing here as a U-label would (in the Devanagari script). A special form of ""ASCII compatible encoding"" (abbreviated ACE) is applied to this to produce the corresponding A-label: xn--11b5bs1di. A domain name that only includes ASCII letters, digits, and hyphens is termed an ""LDH label"". Although the definitions of A-labels and LDH-labels overlap, a name consisting exclusively of LDH labels, such as"""" is not an IDN."