IASA2 | B. Haberman |
Internet-Draft | Johns Hopkins University |
Intended status: Informational | J. Hall |
Expires: January 17, 2019 | CDT |
J. Livingood | |
Comcast | |
July 16, 2018 |
Proposed Structure of the IETF Administrative Support Activity (IASA), Version 2.0 (for Discussion)
draft-ietf-iasa2-struct-01
The IETF Administrative Support Activity (IASA) was originally established in 2005. In the 13 years from 2005 to 2018, the needs of the IETF have evolved in ways that require changes to its administrative structure. The purpose of this document is to outline a proposed new “IASA 2.0” structure. The proposal is for the work of the IETF’s administrative and fundraising tasks to be conducted by a new administrative organization, the IETF Administration Limited Liability Corporation (“LLC”). Under the proposal, the Internet Administrative Oversight Committee (IAOC) will be eliminated, and its oversight and advising functions transferred to the new LLC Board.
This Internet-Draft is submitted in full conformance with the provisions of BCP 78 and BCP 79.
Internet-Drafts are working documents of the Internet Engineering Task Force (IETF). Note that other groups may also distribute working documents as Internet-Drafts. The list of current Internet-Drafts is at https://datatracker.ietf.org/drafts/current/.
Internet-Drafts are draft documents valid for a maximum of six months and may be updated, replaced, or obsoleted by other documents at any time. It is inappropriate to use Internet-Drafts as reference material or to cite them other than as "work in progress."
This Internet-Draft will expire on January 17, 2019.
Copyright (c) 2018 IETF Trust and the persons identified as the document authors. All rights reserved.
This document is subject to BCP 78 and the IETF Trust's Legal Provisions Relating to IETF Documents (https://trustee.ietf.org/license-info) in effect on the date of publication of this document. Please review these documents carefully, as they describe your rights and restrictions with respect to this document. Code Components extracted from this document must include Simplified BSD License text as described in Section 4.e of the Trust Legal Provisions and are provided without warranty as described in the Simplified BSD License.
The IETF Administrative Support Activity (IASA) was originally established in 2005. In the 13 years from 2005 to 2018, the needs of the IETF have evolved in ways that require changes to its administrative structure. The purpose of this document is to outline a proposed new “IASA 2.0” structure. The proposal is for the work of the IETF’s administrative and fundraising tasks to be conducted by a new administrative organization, the IETF Administration Limited Liability Corporation (“LLC”). Under the proposal, the Internet Administrative Oversight Committee (IAOC) will be eliminated, and its oversight and advising functions transferred to the new LLC Board. This document explores all of the details involved in the proposal.
[I-D.haberman-iasa20dt-recs] discusses the challenges facing the current structure as well as several options for reorganizing the IETF’s administration under different legal structures. This document outlines how such an organization will be structured and describes how the organization will fit together with existing and new IETF community structures.
This document outlines some details of a potential “IASA 2.0” arrangement. Some of the details of the organizational structure are dependent on the choice of legal structure, but others are not. The point of this document is to solicit community input about how to address the challenges identified in [I-D.haberman-iasa20dt-recs]. Ultimately, if the IETF community decides to make changes to IASA, those changes will subsequently be documented in a replacement of RFC 4071 (BCP 101) and RFC 4371.
The proposal in this document is to transfer most of the responsibilities that RFC 4071 currently assigns to the Internet Administrative Director (IAD) and Internet Society (ISOC) to the newly created LLC. The IAOC would be eliminated, and its oversight and advising functions transferred to the LLC Board. It would be the job of LLC to meet the administrative needs of the IETF and ensure that LLC and IASA 2.0 is meeting the needs of the IETF community.
Eliminating the IAOC means that there will need to be another way for trustees to be appointed for the IETF Trust. The details of how this is done are outlined in (PLACEHOLDER: FILL IN WITH I-D NAME IN FUTURE UPDATE).
The proposal in this document is depicted visually in [Diagrams] showing the IETF Trust and [Diagrams-no-trust] not showing the IETF Trust. (NOTE: DIAGRAMS WILL BE UPDATED AS CONSENSUS FURTHER DEVELOPS, IN A FUTURE UPDATE)
The document does not propose any changes to anything related to the oversight or steering of the standards process as currently conducted by the Internet Engineering Steering Group (IESG) and Internet Architecture Board (IAB), the appeals chain, the process for making and organizations involved in confirming IETF and IAB appointments, the IETF Nominations Committee (NomCom), the Internet Research Task Force (IRTF), or ISOC’s memberships in or support of other organizations.
If the community decides to make changes to IASA along the lines sketched out in this document, normative changes to IETF processes will need to be documented in an RFC. Additional legal documents (e.g., certificate of formation, operating agreement, transition and shared services agreement) relating to the legal entity would provide the official, legal definitions of processes, roles, etc. Section 9 sketches some initial thoughts about transition; publishing a detailed transition plan would likely also be useful.
The Operating Agreement (OA) is also out of scope for this document. The OA will be developed between the IETF and ISOC and is expected to include all critical terms, while still enabling maximum unilateral flexibility for the LLC Board. Thus, it is anticipated that the OA will include only basic details about how the Board manages itself or manages LLC staff, so that the LLC Board has flexibility to make changes without amending the OA. The LLC Board can independently develop policy or procedures documents that fill gaps.
The LLC will be established to provide administrative support to the IETF. It will have no authority over the standards development activities of the IETF.
The proposed responsibilities of the LLC are:
The manner by which these responsibilities under the LLC are organized is intended to address the problems described in Sections 3.1.1., 3.1.2, and 3.1.3 of [I-D.haberman-iasa20dt-recs]. Specifically, this is intended to bring greater clarity around roles, responsibilities, representation, decision-making, and authority.
In addition, by having the LLC manage the IETF’s finances and conduct the IETF’s fundraising, confusion about who is responsible for representing the IETF to sponsors and who directs the uses of sponsorship funds will be eliminated. Finally, having the LLC reside in a defined, distinct legal entity, and taking responsibility for operations, will enable the organization to execute its own contracts without the need for review and approval by ISOC.
The LLC will be expected to conduct its work according to the following proposed principles:
The transparency and responsiveness principles are designed to address the concern outlined in Section 3.3 of [I-D.haberman-iasa20dt-recs] about the need for improved timeliness of sharing of information and decisions and seeking community comments. The issue of increased transparency was important throughout the IASA 2.0 process, with little to no dissent. It was recognized that there will naturally be a confidentiality requirement about some aspects of hotel contracting, personnel matters, and other narrow areas.
The LLC Board will be responsible for conducting oversight of LLC’s execution of its responsibilities, as described in Section 4.1. They have duties of loyalty, care, and good faith. This includes the responsibility to:
The Board will be an oversight body, with responsibilities limited to those listed above. It will not directly conduct any of the IETF’s administrative work, which is the day-to-day job of the Executive Director at their team.
The role of the LLC Board will be to ensure that the strategy and conduct of LLC is consistent with the IETF’s needs – both its concrete needs and its needs for transparency and accountability. The Board is not intended to directly define the IETF’s needs; to the extent that is required, the IETF community should document its needs in consensus-based RFCs (e.g., as the community is aiming to do in [I-D.ietf-mtgvenue-iaoc-venue-selection-process]) and provide more detailed input via consultations with the LLC Board (such as takes place on email discussion lists or at IETF meetings).
As part of the responsibilities outlined above, some of which is outlined further in (TODO: reference board-policies document) the Board shall work to ensure that LLC will:
The description below outlines the composition of the LLC Board, selection of LLC Board Directors, and related details.
The LLC shall be led by an Executive Director chosen by the Board. The Executive Director will be responsible for managing the day-to-day operations of the LLC, including hiring staff to perform various operational functions. The Executive Director and any staff may be employees or independent contractors.
Allowing for the division of responsibilities among multiple staff members and contractors should hopefully address some of the concerns raised in Section 3.2 (Lack of Resources) and Section 3.4 (Funding/Operating Model Mismatch and Rising Costs) of [I-D.haberman-iasa20dt-recs].
Based on the amount of work currently undertaken by the IAD and others involved in the IETF administration who are not currently in contracted roles, it is anticipated that the Executive Director may need to hire multiple additional staff members. For example, there will likely be a need for resources to manage fundraising, to manage the various contractors that are engaged to fulfill the IETF’s administrative needs, and to support outreach and communications.
The IETF currently benefits from the use of contractors for accounting, finance, meeting planning, administrative assistance, legal counsel, tools, and web site support, as well as other services related to the standards process (RFC Editor and IANA). The IETF budget currently reflects specific support from ISOC for communications and fundraising as well as some general support for accounting, finance, legal, and other services. The division of responsibilities between staff and contractors will be at the discretion of the Executive Director and his or her staff.
The IETF has a long history of community involvement in the execution of certain administrative functions, in particular development of IETF tools, the NOC’s operation of the meeting network, and some outreach and communications activities conducted by the EDU and Mentoring Directorate. The LLC staff would be expected to respect the IETF community’s wishes about community involvement in these and other functions going forward as long as the staff feels that they can meet the otherwise-stated needs of the community. Establishing the framework to allow the LLC to staff each administrative function as appropriate may require the IETF community to document its consensus expectations in areas where no documentation currently exists (see Section 9).
In summary, the LLC Executive Director, with support from the team that they alone direct and lead, will be responsible for: * Developing and refining an annual budget and other strategic financial planning documents at the direction of the LLC Board. * Executing on the annual budget, including reporting to the LLC Board regularly with forecasts and actual performance to budget. * Hiring and/or contracting the necessary resources to meet their goals, within the defined limits of their authority and within the approved budget. This includes managing and leading any such resources, including performing regular performance reviews. * Following the pre-approval guidelines set forth by the LLC Board for contracts or other decisions that have financial costs that exceed a certain threshold of significance. Such threshold will be set reasonably high so that the need for such approvals is infrequent and only occurs when something is truly significant or otherwise exceptional. It is important to ensure that the Executive Director is sufficiently empowered to perform their job on a day to day basis, being held accountable for meeting high level goals rather than micromanaged. * Regularly updating the LLC Board on operations and other notable issues as reasonable and appropriate. * Ensuring that all staff and/or other resources comply with any applicable policies established or approved by the LLC Board, such as ethics guidelines and/or a code of conduct.
A goal of this proposed Board composition is to balance the need for the LLC to be accountable to the IETF community with the need for this Board to have the expertise necessary to oversee a small non-profit corporation. The Board is smaller than the current IAOC and the other leadership bodies of the IETF, in part to keep the Board focused on its rather limited set of strategic responsibilities as noted in Section 4.3.
This board structure, with limited strategic responsibilities noted in Section 4.3 and limited size, together with the staff responsibilities noted in Section 4.4, is designed to overcome the challenges described in Section 3.1.4 of [I-D.haberman-iasa20dt-recs] concerning oversight. This establishes a clear line of oversight over staff performance: the Board oversees the Executive Director’s performance and has actual legal authority to remove a non-performing Executive Director. The Executive Director is responsible for the day-to-day operation of the LLC.
Finally, the Board would be expected to operate transparently, to further address the concern raised in Section 3.3 of [I-D.haberman-iasa20dt-recs]. The default transparency rule arrived at during the IASA 2.0 design process is detailed above in in Section 4.2. The Board will need to establish how it will meet that commitment.
The structure of the Board of Directors of the LLC shall be composed of up to seven people as follows:
The LLC Board itself, as well as the community as a whole, should take an active role in recruiting potential new Directors, regardless of the process that may be used to appoint them. In particular, the NomCom is primarily focused on considering requirements expressed by the Board and others, reviewing community feedback on candidates, conducting candidate interviews, and ultimately appointing Directors. The LLC Board and others can recruit potential Directors and get them into the consideration process of the NomCom or other appointing bodies.
The term length for a Director shall be three years in length. The exceptions to this guideline will be for the terms for some Directors during the first full formation of the LLC Board in order to establish staggered terms and for any appointments to fill a vacancy. The final exception is if a Director role is occupied by the IETF Chair ex officio, since that person’s term length is governed instead by the term lengths established in RFC 7437, Section 3.4.
A director may serve no more than two consecutive terms, with at least one full term prior to the start of any additional terms. The only exception is if a Director role is occupied by the IETF Chair ex officio, since that person’s service is governed instead by the term lengths established in [RFC7437], Section 3.4.
The only exception to the two consecutive term rule is for an LLC-appointed Director. For such a Director, they may serve only one term via this appointment method, after which any subsequent terms would be occur via other appointment processes (such as via the NomCom process).
The limit on consecutive terms supports the healthy regular introduction of new ideas and energy into the Board and mitigates potential long-term risk of ossification or conflict, without adversely impacting the potential pool of director candidates over time.
ISOC, the IESG, the Nominating Committee, and the Board shall coordinate with each other to ensure that collectively their appointment processes provide for no more than three Directors’ terms concluding in the same year.
Directors may be removed with or without cause. A vote in favor of removal must be no fewer than the number of Directors less two. Directors may also be removed via the IETF recall process defined in [RFC7437], Section 7. So for example, if there are seven directors, then five votes are required. Directors may also be removed via the IETF recall process defined in [RFC7437], Section 7.
It shall be the responsibility of each respective body that appointed a Director that vacates the Board to appoint a new Director to fill the vacancy. For example, if a Director appointed by the NomCom departs the Board prior to the end of their term for whatever reason, then it is the responsibility of the NomCom as the original appointing body to designate a replacement that will serve out the remainder of the term of the departed Director.
An initial interim Board will be necessary in order to legally form and bootstrap the LLC. As a result, an interim Board will be formed on a temporary basis until the first full board is constituted.
The interim Board shall be comprised of:
A minimum of five Directors must be seated in order for the Board to be constituted, and the Interim Board to be dissolved. Accordingly, the following steps must take place to ensure that this occurs on a timely basis:
Following the formation of the first full LLC Board, and at each subsequent annual meeting of the LLC Board, the Directors shall elect by a majority vote of the LLC Board a Director to serve as Board Chair. The Board may also form committees of the Board and/or define other roles for LLC Board Directors as necessary.
The Board shall develop policies as necessary to achieve the goals of the LLC, meet transparency expectations of the community, comply with applicable laws or regulations, or for other reasons as appropriate. All policies should be developed with input from the IETF community. Some policies of ISOC may provide a good starting point from which the Board can begin.
The Board shall develop a Conflict of Interest policy for the LLC. While the details shall be determined by the Board, at a minimum such policy will include the following:
The Board shall develop additional policies for the LLC as necessary, covering Directors, employees, and contractors, concerning issues such as:
The LLC shall develop and implement a compliance program to ensure its compliance with all applicable laws, rules and regulations, including without limitation laws governing bribery, anti-terrorism sanctions, export controls, data protection/privacy, as well as other applicable policies noted in Section 5. In addition, actions and activities of the LLC must be consistent with 501(c)(3) purposes.
The LLC shall report to ISOC on the implementation of its compliance plan on an annual basis.
At all meetings of the Board, at least 2/3 of the Directors then in office shall constitute a quorum for the transaction of business. If a quorum shall not be present at any meeting of the Board, the Directors present thereat may adjourn the meeting without notice other than announcement at the meeting, until a quorum shall be present.
The Board can hold votes during synchronous live meetings of the Board (including telephonic and video) or via asynchronous written (including electronic) means. Decisions on regular LLC matters shall be made by a 2/3 majority vote in favor, with the exception of removal of a Director as specified in Section 4.11. Absentee voting and voting by proxy shall not be permitted.
When the LLC conducts fundraising, it will substantiate charitable contributions on behalf of ISOC. The LLC will evaluate and facilitate state, federal, and other applicable law and regulatory compliance for ISOC and/or the LLC with respect to such fundraising activities. In addition, the LLC shall ensure that all fundraising activities are conducted in compliance with any policies developed by the LLC, including but not limited to those noted in Section 5.
Conducting a transition as envisioned in this document will encompass many different work activities and will require action, involvement, support, and/or feedback from groups and individuals across the IETF community. The transition is likely to proceed in these steps but the community should remain flexible and adapt this plan as changes occur and complications inevitably arise.
Phase 1: LLC Formation * The LLC is formed with an Interim Board (see {#interim-board}) * The IAOC continues to operate as usual, such as reviewing and approving the IETF’s FY2019 budget * The NomCom is given instructions by the IETF chair to not recruit for 2019 IAOC positions, and instead recruit for LLC Board Directors * An update of RFC 7437 is started, reflecting this change
Phase 2: Transition from IAOC to LLC * The LLC’s Interim Board and IAOC shall agree to a transition schedule to transition IAOC responsibilities one-by-one to the LLC * This phase MUST conclude prior to the expiration of IAOC member terms in 1Q2019
Phase 3: Transition Complete * First full board is seated (see {#first-full-board}) * All responsibilities of the IAOC have been assumed by the LLC * The IAOC can then be shut down
The initial tasks of the LLC Board should be prioritized according to legal necessity and relative importance. Below are suggested priorities to consider as and after the LLC is formed.
High priority for the Interim Board: 1 – Form the LLC legally 2 – Setup a bank account so that funds can be moved over 3 – Transfer all necessary contracts from ISOC/IAOC to the LLC 4 – Establish & implement a process to pay any employees or contractors, as necessary 5 - Agree to a transition schedule with the IAOC 6 - Secure any necessary insurance such as Commercial General Liability and other appropriate insurance policies, with appropriate coverage limits
Medium Priority for the Interim Board: 1 – Create a job description for the IETF Executive Director 2 - Initiate the process of beginning to search for an IETF Executive Director and/or outline a process to do so and defer it to the first full board, as appropriate
Low Priority for the Interim Board / First Tasks of the Full Board: 1 – Develop all necessary LLC policies 2 – Develop all necesssary Board operating procedures and bylaws 3 – Determine the employee benefits/salary framework and/or make associated staffing decisions 4 – Interview and hire an IETF Executive Director (targeting 1H2019)
The first full Board will also need to focus on the following tasks: * Selecting a chair and other positions as necessary * Define and document how the Board will fulfill its transparency obligations to the IETF community * Defining the “significant materiality threshold”, above which the Board must approve any contracts, expenditures, or other commitments.
Once the Executive Director and any additional staff are hired, it would be expected for LLC to: * Do a thorough review of existing contracts, community volunteer arrangements, and administrative assets to determine the need for initial changes. * Assess areas where the IETF community needs to document its consensus, e.g., expectations about community involvement in NOC or tools efforts.
Thanks to Jari Arkko, Richard Barnes, Alissa Cooper, Sean Turner and the IASA 2.0 Working Group for discussions of possible structures, and to the attorneys of Morgan Lewis and Brad Biddle for legal advice.