Russ

Author Archives: Russ

Worth Reading: Dynamics on emerging spaces

The article (and the expectations set by the introduction to the paper itself) promise a little more than they deliver in my view – but what we do concretely get is a description of a generative process that can produce distributions like those seen in the real world, with new / novel items appearing at the observed rates and following observed distributions. Previous models have all fallen short in one way or another, so the model does indeed seem to teach us something about the process of generating the new. —The Morning Paper

The post Worth Reading: Dynamics on emerging spaces appeared first on 'net work.

Worth Reading: There is no “normal” in microservices

There is no “normal” for a microservices environment. And if a groundbreaking November 2016 white paper [PDF], produced by a team of six researchers from the University of Messina, the U.K.’s Newcastle University, and IBM Research, is to be taken at face value, perhaps such a state of equilibrium may never be attained. Every data center, the researchers write, has unique operating requirements. Once microservices are deployed there, the configurations they require become not only unique, but baked into their respective systems. —The New Stack

The post Worth Reading: There is no “normal” in microservices appeared first on 'net work.

Worth Reading: Evolving LTE for 5G

With 5G research progressing at a rapid pace, the standardization process has started in 3GPP. As the most prevalent mobile broadband communication technology worldwide, LTE constitutes an essential piece of the 5G puzzle. As such, its upcoming releases (Rel-14 and Rel-15) are intended to meet as many 5G requirements as possible and address the relevant use cases expected in the 5G era. —Ericsson

The post Worth Reading: Evolving LTE for 5G appeared first on 'net work.

Worth Reading: Security and the Internet of Things

Last year, on October 21, your digital video recorder ­- or at least a DVR like yours ­- knocked Twitter off the internet. Someone used your DVR, along with millions of insecure webcams, routers, and other connected devices, to launch an attack that started a chain reaction, resulting in Twitter, Reddit, Netflix, and many sites going off the internet. You probably didn’t realize that your DVR had that kind of power. But it does. —Schneier on Security

The post Worth Reading: Security and the Internet of Things appeared first on 'net work.

Worth Reading: IPv6 for the Home Network Nerd

For the more tech savvy, IPv6 does indeed bring fifteen bajillion addresses, so to speak. And while that doesn’t seem like a big deal, it is. For example, most of us at home have gear obscured by NAT. This makes us feel more secure — all these addresses hidden behind a single address feels like a bit of anonymity, and we like that. But private address space and network address translation are features that were created because the Internet was quickly running out of address space. Not because the powers that were felt that a layer of indirection was required to make us more secure. —Ethan Banks

The post Worth Reading: IPv6 for the Home Network Nerd appeared first on 'net work.

Leave Your Ego at the Door

You are just about to walk into the interview room. Regardless of whether you are being interviewed, or interviewing—what are you thinking about? Are you thinking about winning? Are you thinking about whining? Or are you thinking about engaging? I have noticed, on many mailing lists, and in many other forums, that interviews in our world have devolved into a contest of egos.

The person on the other side of the table has some certification I don’t care about—how can I prove they are dumb, not as smart as their certification might indicate, or… The person on the other side of the table claims to know some protocol, can I find some bit of information they don’t know? These kinds of questions are really just ego questions—and you need to leave them at the door. This is particularly acute with certifications right now—a lot of people doubt the value of certifications, claiming folks who have them don’t know anything, the certifications are worthless, they don’t reflect the real world, etc.

I will agree that we have a problem with the depth and level of knowledge of network engineers at the moment. We all need to grow up a little, learn Continue reading

Worth Reading: ARM challenges x86 in the cloud

The idea of ARM processors being used in datacenter servers has been kicking around more most of the decade. The low-power architecture dominates the mobile world of smartphones and tablets as well as embedded IoT devices, and with datacenters increasingly consuming more power and generating more heat, the idea of using highly efficient ARM chips in IT infrastructure systems gained steam. —The Next Platform

The post Worth Reading: ARM challenges x86 in the cloud appeared first on 'net work.

Worth Reading: Addressing in 2016

The process of exhausting the remaining pools of IPv4 addresses in each of the Regional Internet Registries (RIRs) is continuing. Yet, despite this hiatus in the supply of IPv4 addresses, the Internet continues to grow. The reasons for this growth are changing, however. Personal computers have gone the way of mainframes and are no longer the staple of the consumer IT market. It looks as if laptops are now also feeling the pinch as the mainstream computer industry continues to focus on the smart device market. But even in the personal device sector, we see a market that is no longer expanding at massive rates. —APNIC

The post Worth Reading: Addressing in 2016 appeared first on 'net work.

Upcoming Webinar: Open Networking for Large Scale Networks

Shawn Zandi and I are doing a two part webinar over at ipspace.net—

Most modern data centers are still using vendor-driven “future proof” routers and switches with offering lots of (often unnecessary) capabilities. To build large, however, it is often better to build simple—radically simple. This webinar will cover the design components involved in building a data center or cloud fabric using a single, disaggregated device—the way some hyperscale and web scale operators build their networks. The first live session of the webinar will consider the benefits of disaggregated switch, focusing on the components, sources, and challenges in using disaggregated hardware and software in data center fabrics. The second live session will focus on the topologies and design concepts used in large scale data center fabrics using a single switching device as a leaf, spine and superspine switch.

Jump over to ipspace if you want to learn more.

The post Upcoming Webinar: Open Networking for Large Scale Networks appeared first on 'net work.

Worth Reading: Shopping for tax information

The 2016 tax season is now in full swing in the United States, which means scammers are once again assembling vast dossiers of personal data and preparing to file fraudulent tax refund requests on behalf of millions of Americans. But for those lazy identity thieves who can’t be bothered to phish or steal the needed data, there is now another option: Buying stolen W-2 tax forms from other crooks who have phished the documents wholesale from corporations. —Krebs on Security

The post Worth Reading: Shopping for tax information appeared first on 'net work.

Mitigating DDoS

Your first line of defense to any DDoS, at least on the network side, should be to disperse the traffic across as many resources as you can. Basic math implies that if you have fifteen entry points, and each entry point is capable of supporting 10g of traffic, then you should be able to simply absorb a 100g DDoS attack while still leaving 50g of overhead for real traffic (assuming perfect efficiency, of course—YMMV). Dispersing a DDoS in this way may impact performance—but taking bandwidth and resources down is almost always the wrong way to react to a DDoS attack.

But what if you cannot, for some reason, disperse the attack? Maybe you only have two edge connections, or if the size of the DDoS is larger than your total edge bandwidth combined? It is typically difficult to mitigate a DDoS attack, but there is an escalating chain of actions you can take that often prove useful. Let’s deal with local mitigation techniques first, and then consider some fancier methods.

  • TCP SYN filtering: A lot of DDoS attacks rely on exhausting TCP open resources. If all inbound TCP sessions can be terminated in a proxy (such as a load balancer), Continue reading

Worth Reading: Quantum safe glossary

The Cloud Security Alliance’s Quantum-Safe Security (QSS) Working Group announces their latest release with the Quantum-Safe Security Glossary. The QSS Working Group was formed to address key generation and transmission methods and to help the industry understand quantum-safe methods for protecting networks and data. The working group is focused on long-term data protection amidst a climate of rising cryptanalysis capabilities. As the working group continues to produce documents to address concerns in a quantum world, the opportunity to share terms to provide a starting point to learn more about quantum-safe security. —Cloud Security Alliance

The post Worth Reading: Quantum safe glossary appeared first on 'net work.

Worth Reading: Sorting through SD-WAN

I’ve written a lot about SDN and SD-WAN. SD-WAN is the best example of how SDN should be marketed to people. Instead of talking about features like APIs, orchestration, and programmability, you need to focus on the right hook. Do you see a food processor by talking about how many attachments it has? Or do you sell a Swiss Army knife by talking about all the crazy screwdrivers it holds? Or do you simply boil it down to “This thing makes your life easier”? —Networking Nerd

The post Worth Reading: Sorting through SD-WAN appeared first on 'net work.

Worth Reading: Automation and ethics

As technologists, we have to mix together two concerns: relentlessly automating all aspects of business and life, while at the same time resisting the urge to become job-destroying, and, thus life-destroying jerks. “I was just doing my job” will be poor solace when we’re all licking the slime out of empty dog food cans. In the same way that we expect oil, chemical, and soda companies to manage the negative effects of their profits, we need to keep a closer eye on the negative effects of automation and, more broadly, IT innovation. —The New Stack

The post Worth Reading: Automation and ethics appeared first on 'net work.

Worth Reading: Lazy thinking and modularity

There are two flaws in the Modularity Always Wins theory. In order to succeed, “disruptive modularity” needs a stable architecture with well-defined and documented boundaries. Module innovators need to be able to slide their creations into place without playing havoc with the rest of the edifice. This is how it worked in the Wintel PC world…sort of. In PC reality, as many of us have experienced, the sliding in and out of modules wasn’t so neat and often landed us in Device Driver purgatory. In the mid-nineties, one Microsoft director told me that the Redmond company actually spent more engineering resources on drivers than on Windows’ core software. —Monday Note

The post Worth Reading: Lazy thinking and modularity appeared first on 'net work.

1 97 98 99 100 101 159