DNSSEC SysTrust Certification
ICANN is committed to ensuring the security and stability of the Internet's unique identifier systems. As the DNSSEC Root Zone Key Signing Key (RZ KSK) manager, we are pleased to announce that ICANN's RZ KSK System has achieved SysTrust certification — an audit by the international accounting firm, PricewaterhouseCoopers, LLP (PwC) to ensure we have appropriate internal controls in place to meet the availability, processing integrity and security objectives for our RZ KSK System.
The Trust Services Principles and Criteria is an international set of principles and criteria developed and managed jointly by the American Institute of Certified Public Accountants (AICPA) and the Canadian Institute of Chartered Accountants (CICA). The SysTrust examination is a rigorous process developed by the AICPA and CICA to provide independent assurance that an organization's systems are reliable. Our SysTrust certification focuses on the following Trust Services principles:
- Availability — the system was available for operation and use, as committed or agreed
- Processing Integrity — the system processing was complete, accurate, timely, and authorized
- Security — the system was protected against unauthorized access
Each principle is supported by well-defined and detailed criteria that encompass a company's infrastructure, software, data, people, and procedures.
ICANN engaged PwC to perform the SysTrust audit, which covered the period of 15 June 2010 through 30 November 2010. PwC evaluated the IT operational practices and controls around the ICANN RZ KSK System and awarded ICANN with an unqualified opinion. ICANN will renew this certification annually.