Dan York

Author Archives: Dan York

Rough Guide to IETF 102: DNSSEC, DNS Security and Privacy

DNS privacy will receive a large focus in the latter half of the IETF 102 week with attention in the DPRIVE, DNSSD, and OPSEC working groups. In an interesting bit of scheduling (which is always challenging), most of the DNS sessions are Wednesday through Friday. As part of our Rough Guide to IETF 102, here’s a quick view on what’s happening in the world of DNS.

Given that IETF 102 is in Montreal, Canada, all times below are Eastern Daylight Time (EDT), which is UTC-4.

IETF 102 Hackathon

The “DNS team” has become a regular feature of the IETF Hackathons and the Montreal meeting is no different. The IETF 102 Hackathon wiki outlines the work that will start tomorrow (scroll down to see it). Major security/privacy projects include:

Anyone is welcome to join the DNS team for part or all of that event.

DNS Operations (DNSOP)

The DNS sessions at IETF 102 start on Wednesday morning from 9:30am – 12noon with the DNS Operations (DNSOP) Working Group. Paul Wouters and Ondrej Sury Continue reading

Watch Live On Monday, 25 June – DNSSEC Workshop at ICANN 62 in Panama

With the DNSSEC Root Key Rollover coming up on October 11, how prepared are we as an industry? What kind of data can we collect in preparation? What is the cost benefit (or not) of implementing DANE? What can we learn from an existing rollover of a cryptographic algorithm?

All those questions and more will be discussed at the DNSSEC Workshop at the ICANN 62 meeting in Panama City, Panama, on Monday, June 25, 2018. The session will begin at 9:00 and conclude at 12:15 EST (UTC-5). [Note: this is one hour different than current US Eastern Daylight Time – Panama does not change to daylight savings time – and so this will begin at 10:00 EDT (UTC-4).]

The agenda includes:

  • DNSSEC Workshop Introduction, Program, Deployment Around the World – Counts, Counts, Counts
  • Panel: DNSSEC Activities and Post Key Signing Key Rollover Preparation
  • DANE: Status, Cost Benefits, Impact from KSK Rollover
  • An Algorithm Rollover  (case study from CZ.NIC)
  • Panel: KSK Rollover Data Collection and Analysis
  • DNSSEC – How Can I Help?
  • The Great DNSSEC/DNS Quiz

It should be an outstanding session!  For those onsite, the workshop will be in Salon 4, the ccNSO room.

Alert – Web server host migration on June 19, 2018

As you may have noticed, our shiny new website has some speed issues. It is slow for many visitors. Over the past few months we’ve worked on a number of potential changes to improve the site performance. One big change we’re making is to move to a different hosting provider.

That change will happen tomorrowTuesday, 19 June 2018 at 13:00 UTC.

Assuming all goes well, you shouldn’t really notice – except that the site should be faster! But if you happen to be browsing the site around 13:00 UTC, you might see some glitches on pages while the DNS magic happens and we change to pointing to the new server.

Once we’ve made this migration, I’ll write more about what we have done and how it has helped our site’s performance. Meanwhile, I just wanted to give a quick alert about this impending change to anyone viewing our site.

The post Alert – Web server host migration on June 19, 2018 appeared first on Internet Society.

Video – Vint Cerf on the 6th anniversary of World IPv6 Launch and why IPv6 is so critical now

Today, on the sixth anniversary of World IPv6 Launch, Vint Cerf, co-designer of the TCP/IP protocol and a “Father of the Internet”, sent us this video message to share with you all:

To learn more about IPv6, read our State of IPv6 Deployment 2018. And if you have not yet started, visit our Deploy360 IPv6 resources to learn how you can begin.

The post Video – Vint Cerf on the 6th anniversary of World IPv6 Launch and why IPv6 is so critical now appeared first on Internet Society.

Watch live – June 6 panel on “Innovation, security, and the Internet of Things (IoT)” in Ottawa

As a side event before the 2018 G7 Summit this week in Canada, tomorrow, 6 June 2018, the Internet Society will hold a panel to not only talk about the risks and opportunities the Internet of Things (IoT) brings, but also what policy makers can do to build a connected future for everyone.

The panel, Innovation, security, and the Internet of Things, will take place in Ottawa Ontario. If you’re in Ottawa, you can join us from 7:30 to 9:30 a.m. on Wednesday, 6 June, at the Alt Hotel Ottawa at 185 Slater St. If you’re somewhere else, the event will be
livestreamed.

Moderator David Akin (Global News) will facilitate a discussion between:

  • Jeff Wilbur, Director, Online Trust Alliance
  • Katie Watson, Policy Advisor, Internet Society
  • Jacques Latour, Chief Technology Officer, Canadian Internet Registration Authority
  • Mike Hoye, Engineering Community Manager, Mozilla

While the opportunities these connected devices can bring us are virtually unprecedented, the steps we must go through to protect ourselves online can feel overwhelming. At the Internet Society, we believe in a future where manufactures, software developers and service providers put people first and ensure user’s privacy and security is their top priority.

To understand Continue reading

Podcast: Talking Data Privacy and GDPR with Todd M. Tolbert

Let’s raise the bar on data privacy and make the Internet safer.”  With the imminent arrival of the EU’s General Data Protection Regulation (GDPR), this was one of the points raised by Todd M. Tolbert, our Chief Administrative Officer, in an episode of the Non-Profit Tech Podcast published yesterday. Hosted by fusionSpan’s Justin Burniske, the 35-minute episode covered a wide range of topics, including:

  • the difference between data privacy and data protection
  • Todd’s thinking about the value the GDPR brings in terms of thinking about data
  • mistakes organizations make with regard to handling their data
  • resources for organizations to do more
  • how you can’t be liable for data that you don’t have in the first place
  • asking the question… do you really need to keep those 700 email addresses that no longer work?

And, of course, Todd being who he is, there were some Texan things mixed in to the conversation as well. I very much enjoyed the episode and found it a useful contribution to the ongoing privacy discussions that tomorrow’s GDPR deadline has generated.

Some of the resources Todd shared included:

Call for Participation – ICANN DNSSEC Workshop at ICANN62, Panama City

The DNSSEC Deployment Initiative and the Internet Society Deploy360 Programme, in cooperation with the ICANN Security and Stability Advisory Committee (SSAC), are planning a DNSSEC Workshop during the ICANN62 meeting held from 25-28 June 2018 in Panama City, Panama.

If you are interested in participating, please send a brief (1-2 sentence) description of your proposed presentation to  [email protected] by Friday, 4 May 2018

The DNSSEC Workshop has been a part of ICANN meetings for several years and has provided a forum for both experienced and new people to meet, present and discuss current and future DNSSEC deployments.  For reference, the most recent session was held at the ICANN Community Forum in San Juan, Puerto Rico on 14 March 2018. The presentations and transcripts are available at:

As this is the shorter “Policy Forum” format for ICANN meetings, the DNSSEC Workshop Program Committee is developing a 3-hour program.  Proposals will be considered for the following topic areas and included if space permits.  In addition, we welcome suggestions for additional topics either for inclusion in the ICANN62 workshop, or for consideration for Continue reading

At RSA USA 2018 in San Francisco this week? Join the IoT Security conversation on Tuesday, April 17

Are you attending the RSA USA 2018 Conference this week in San Francisco? If so, please plan to join this panel session happening Tuesday, April 17, 2018, from 3:30 – 4:14pm (PDT):

IoT Trust by Design: Lessons Learned in Wearables and Smart Home Products

Moderated by my colleague Jeff Wilbur, Director of the Online Trust Alliance (OTA), the panel abstract is:

The world has awakened to the need for tighter security and privacy in consumer-grade IoT offerings. This panel will present a trust framework for IoT, and wearable and smart home experts will discuss top attack vectors, typical vulnerabilities in devices, apps and systems, common reasons for design compromise, the evolution of security and privacy in IoT and where it needs to go.

They will be discussing the OTA’s IoT Trust Framework, as well as some new mechanisms available to help enterprises understand the risks associated with IoT devices.

If you believe securing the Internet of Things is a critical step to having a secure Internet, please join Jeff and his panelists to learn more.

Unfortunately there appears to be no live stream available but they do seem to be recording many of the sessions. If Jeff’s Continue reading

Deadline TODAY (23:59 UTC) to submit comments to ICANN on 2018 DNSSEC Root KSK Rollover Plan

Do you believe ICANN should go ahead with the plan to roll the Root Key Signing Key (KSK) on 11 October 2018? If so (or if not), the deadline for public comment is TODAY, 2 April 2018, at 23:59 UTC. That’s about 9.5 hours from the time I’m publishing this post.

My colleague Kevin Meynell provided more info about this public comment process when it began in March. At the IETF 101 meeting in London, I spoke with ICANN staff who again stated that they would like to hear from many voices about whether they should go ahead with the Root KSK Rollover on 11 October 2018. It’s very simple to send in comments:

Learn how to submit your comments to ICANN

You can see the current list of comments at: https://mm.icann.org/pipermail/comments-ksk-rollover-restart-01feb18/2018q1/thread.html (All comments are public.)

I would encourage anyone interested to submit comments (even if they are simply “I support the plan.”).

And if you have want more information about how to get started with using DNSSEC, please see our Deploy360 Start page to begin.

Image credit: Bryce Barker on Unsplash

The post Deadline TODAY (23:59 UTC) to submit comments to ICANN Continue reading

Building Our New Website: POSSE and Sharing on Facebook, Twitter, LinkedIn, Google+ and More

As we built our new website, one of my own guiding principles was “POSSE“, a content publishing model from the “IndieWeb” movement. The idea is:

Publish on your
Own
Site,
Syndicate
Elsewhere

Essentially, make sure you own your own content – and then share it out onto other sites and services. (See the IndieWeb page about POSSE for more discussion.) Make your own website the “hub” for all your content, and then have spokes going out to all the other places where people might discover and learn about your content.

To me, this model is the best way to support the principles of the open Internet, while engaging people in the places where they already are.

This is part of a series of posts about the evolution of our new site.

Why does this matter?

We aren’t just publishing reports, papers, blog posts and articles for the sake of talking about what we are doing.

We are publishing content to bring about change that ensures the Internet remains open, globally connected, and secure. As we said in our vision statement for the new website:

Our website is a driving force in Continue reading

How Do We Connect Everyone to the Internet? An IETF 101 Technical Plenary

How do we connect everyone, everywhere, to the Internet? What role do “community networks” play in helping connect more people? How can we best use wireless spectrum and what are the issues with that? How can satellites fit into the picture? And what is the state of satellite technology? And what about the role of “space lasers”?

All that and more was the subject of yesterday’s featured panel at the Technical Plenary at IETF 101 in London.

Interested to learn more? Watch/listen to the Global Access to the Internet for All (GAIA) session TODAY (22 March) at 1:30pm UTC:
Agenda
Video/slides/chat
Audio-only

Organized by the Internet Architecture Board (IAB) and the Internet Research Task Force (IRTF), the panel was moderated by our Jane Coffin and included these speakers:

  • Leandro Navarro Moldes, Associate Professor, Universitat Politècnica de Catalunya (SLIDES)
  • Steve Song, Wireless Spectrum Research Associate, Network Startup Resource Center (SLIDES)
  • Jonathan Brewer, Consulting Engineer, Telco2 Limited (SLIDES)

You can watch the recording of the session at:

The session began with Leandro Navarro outlining how half the world is still not connected to the Internet and is not Continue reading

Comment connecter tout le monde à Internet? Une réunion plénière technique de l’IETF 101

Comment connecter tout le monde, partout, à Internet? Quel rôle jouent les «réseaux communautaires» pour aider à connecter plus de gens? Comment pouvons-nous utiliser au mieux le spectre sans fil et quels sont les problèmes avec cela? Comment les satellites peuvent-ils s’intégrer dans l’image? Et quel est l’état de la technologie par satellite? Et qu’en est-il du rôle des “lasers spatiaux”?

Pour savoir plus cliquez ici

The post Comment connecter tout le monde à Internet? Une réunion plénière technique de l’IETF 101 appeared first on Internet Society.

Rough Guide to IETF 101: DNSSEC, DANE, DNS Security and Privacy

It’s going to be a crazy busy week in London next week in the world of DNS security and privacy! As part of our Rough Guide to IETF 101, here’s a quick view on what’s happening in the world of DNS.  (See the full agenda online for everything else.)

IETF 101 Hackathon

As usual, there will be a good-sized “DNS team” at the IETF 101 Hackathon starting tomorrow. The IETF 101 Hackathon wiki outlines the work (scroll down to see it). Major security/privacy projects include:

  • Implementing some of the initial ideas for DNS privacy communication between DNS resolvers and authoritative servers.
  • Implementation and testing of the drafts related to DNS-over-HTTPS (from the new DOH working group).
  • Work on DANE authentication within systems using the DNS Privacy (DPRIVE) mechanisms.

Anyone is welcome to join us for part or all of that event.

Thursday Sponsor Lunch about DNSSEC Root Key Rollover

On Thursday, March 22, at 12:30 UTC, ICANN CTO David Conrad will speak on “Rolling the DNS Root Key Based on Input from Many ICANN Communities“. As the abstract notes, he’ll be talking about how ICANN got to where it is today with the Continue reading

DNSSEC Activities at ICANN 61 in San Juan on March 11-14, 2018

Sunday marks the beginning of the DNSSEC activities at the ICANN 61 meeting in San Juan, Puerto Rico. As per usual there will be a range of activities related to DNSSEC or DANE. Two of the sessions will be streamed live and will be recorded for later viewing. Here is what is happening.

All times below are Atlantic Standard Time (AST), which is UTC-4.

DNSSEC For Everybody: A Beginner’s Guide – Sunday, 11 March

On Sunday, March 11, we’ll have our “DNSSEC For Everybody: A Beginner’s Guide” session that will include our usual skit where a bunch of engineers act out how DNS and DNSSEC work! Yes, it’s a good bit of fun and people have told us it has helped tremendously.

Please come with your questions and prepare to learn all about DNSSEC!

DNSSEC Workshop – Wednesday, 14 March

Our big 6-hour workshop will take place on Wednesday, March 14, from 09:00 – 15:00 in Room 208-BC. Lunch will be included. Thank you to our lunch sponsors: Afilias, CIRA, and SIDN.

The very full agenda includes:

Voting open for 2018 Internet Society Board of Trustees elections

The 2018 Internet Society Board of Trustees elections have begun!

Electronic ballots were emailed today to all voting representatives. They will have until Monday, 9 April at 15:00 UTC to cast their ballots.

In this year’s election cycle, Organization Members are asked to elect one Trustee to the Board. So voting representatives may vote for only one of the candidates on the Organization Members ballot.

Similarly, in this year’s election cycle, Chapters are asked to elect one Trustee to the Board. So voting representatives may vote for only one of the candidates on the Chapters ballot.

All new Trustees will serve three-year terms commencing in June.

Additional details on the elections, as well as information on all of the candidates can be found here:

https://www.internetsociety.org/board-of-trustees/elections/

To facilitate dialogue between OMAC members and candidates for the Organization Members election, and between Chapter leaders and candidates for the Chapters election, the Elections Committee has again launched an online Candidate Forum. In response to feedback from members, we moved the Forum from the Connect platform to a Mailman mailing list.

Everyone subscribed to the OMAC list was subscribed automatically to the ISOC Organization Members Candidate Forum list. Everyone subscribed to the Continue reading

Watch the “State of the Net 2018” Live on Monday, January 29

Internet governance, blockchain, algorithms, free speech, net neutrality, IoT, cybersecurity, fragmentation … and so much more!  On Monday, January 29, 2018, the State of the Net 2018 conference will be streaming live out of the Newseum in Washington DC. You can watch starting at 9:00am US EST (UTC-5) Monday morning at:

http://www.stateofthenet.org/live/

The SOTN 2018 agenda is packed with many of the leading voices in US Internet policy, including Senators, Representatives, and even an FCC Commissioner. Global organizations and corporations will be represented, too, among the many speakers.

At 11:00am EST, our own Sally Shipman Wentworth, VP of Global Policy Development, will participate in a panel, Internet Governance: Are We In A Post Multi-Stakeholder World?, along with Larry Strickling. Larry is perhaps best known recently for the IANA transition work but has been working with us on efforts to expand the use of the multistakeholder model for Internet governance. Others panelists will be Dr. Jovan Kurbalija from our partner the DiploFoundation; Steve DelBianco of NetChoice; and the Hon. Robert Strayer of the US State Department. The session will be moderated by Shane Tews from the Internet Education Foundation. The abstract is:

It will have been Continue reading

Building Our New Website: Improved search, speed, and an open issue tracker

As we continue to evolve our new website, I will provide more regular updates to all of you visiting our site. Today’s topics are: improved search; much faster speed; and an open issue tracker.

Searching our content

For all of you who contacted us saying “I can’t find anything” on the site through the search box (the magnifying glass in the upper right corner of the screen), we’ve got some great news – it should now work!   We tried two different search solutions for all our content before we moved on to a third solution that we find works well. Please do let us know if you are still having challenges finding content.

Speeding up the site

The site should now be much faster! We recently deployed some caching servers in front of our site and the speed should be dramatically improved for most all of the pages. This was very important to us as we want to provide the best user experience.

Tracking open issues

If you do find anything wrong with the new site, we have an open issue tracker on Github. You can visit the repository at:

https://github.com/InternetSociety/web-site-feedback

and the actual list of Continue reading

Meltdown and Spectre: Why We Need Vigilance, Upgradeability, and Collaborative Security

Today the tech media is focused on the announcement of two security vulnerabilities, nicknamed Meltdown and Spectre, that are found in almost all CPUs used in modern devices. Mobile phones, laptops, desktop computers, cloud services, and Internet of Things (IoT) devices are all vulnerable.

There are many articles being published on this topic. The best source of information I’ve found is this site by the security researchers at the Graz University of Technology:

https://meltdownattack.com/

At the bottom of that page are links to the security blog posts, advisories, and other statements from companies and organizations across the industry. In an excellent example of the principles of Collaborative Security, the announcement was coordinated with the release of patches and updates for a wide range of operating systems and devices.

For readers wanting a deeper technical dive, the site from Graz University has links to multiple academic papers. Google’s Project Zero team also published a detailed technical analysis.

From our perspective, today’s news highlights a couple of points:

  • Keeping up to date on patches is critical. We each need to ensure that we upgrade our own systems and devices. If we work for organizations/companies, we need to ensure that processes are in place Continue reading

Watch Live – IETF 100 Plenary Panel on the Future of the Internet

What is this future of the Internet? What will the Internet look like in 30 years? On Wednesday, November 15, three prominent strategists will gaze into the future and share their unique perspectives.  This panel on “The Internet, a look forward: Social, political, and technical perspectives” is part of the IETF 100 plenary session streaming live out of Singapore. The plenary session will also include the presentation of the Jonathan B. Postel Service award.

You can watch live at:    https://www.ietf.org/live

The entire IETF 100 plenary session is from 17:10 – 19:40 Singapore time. This is UTC+8, which translates into:

  • 10:10 – 12:40 Central European Time
  • 9:10 – 11:40 UTC
  • 4:10 – 6:40 US Eastern time

IMPORTANT NOTE – The panel and the Postel Award presentation are just two sections of the IETF 100 plenary session – and happen somewhere in the middle of the session. The full agenda can be found at:  https://datatracker.ietf.org/meeting/100/materials/agenda-100-ietf-sessa/

The live video stream will be recorded if you want to watch later.

Moderated by Brian Trammell, member of the Internet Architecture Board, panelists include:

  • Monique Morrow, President and Co-Founder of the Humanized Internet, a non-profit Continue reading

New Policy Brief published on Community Networks and Access to Spectrum

Yesterday we published a new policy brief: Spectrum Approaches for Community Networks

Access to affordable and available spectrum is critical for Community Networks. Policy makers can play a key role in ensuring adequate access to spectrum. The policy brief examines the various ways that Community Networks can gain access to spectrum, including:

  • the use of unlicensed spectrum,
  • sharing licensed spectrum, and
  • innovative licensing.

Network operators also play a key role in helping Community Networks. The policy brief outlines recommendations for operators which include:

  • access to backhaul infrastructure at fair rates,
  • equipment and training partnerships, and
  • the sharing of infrastructure as well as spectrum.

Please read our press release for more information about this new paper.  Also visit our World Telecommunications Development Conference (WTDC) 2017 page for more about what our team is doing there in Buenos Aires this week.

The post New Policy Brief published on Community Networks and Access to Spectrum appeared first on Internet Society.

1 2 3