Routing, and Water, Are All about Trust: Introducing “Routing Security for Policymakers”
Introducing the new Internet Society white paper, “Routing Security for Policymakers“
The global routing system is a lot like a water system in a city. It’s vitally important to the Internet and we tend to overlook it until something goes wrong.
Routing determines how packets (data sent over a network or networks) containing information, like email messages, website data, and voice-over-IP (VoIP) calls, move from one place to another on the Internet. However, despite its importance, many people only think about the Internet routing when they hear about a major routing incident in the news or can’t reach their favorite websites.
Both the water system and the routing system are, at their core, built on trust.
A water system relies on hundreds of workers, its water suppliers, local farmers and companies, and countless others to deliver its service. The system is based on chains of trust, with each person or entity relying on the other to act appropriately.
Similarly, the global routing system is a complex, decentralized system made up of tens of thousands of individual networks. Independent business decisions and trusted relationships between individual network operators that are implementing the Border Gateway Protocol (BGP) determine how Continue reading
History Of Networking – Yuval Bachar – Backpack And The History Of Whitebox Routers
In this History of Networking episode, Yuval Bachar shares his insight about the genesis of Facebook’s Backpack open switch and the history of whitebox routing.
Yuval Bachar
Guest
Russ White
Host
Donald Sharp
Host
Outro Music:
Danger Storm Kevin MacLeod (incompetech.com)
Licensed under Creative Commons: By Attribution 3.0 License
http://creativecommons.org/licenses/by/3.0/
The post History Of Networking – Yuval Bachar – Backpack And The History Of Whitebox Routers appeared first on Network Collective.
New Internet Draft: Considerations on Internet Consolidation and the Internet Architecture
Are there assumptions about the Internet architecture that no longer hold in a world where larger, more centralized entities provide big parts of the Internet service? If the world changes, the Internet and its technology/architecture may have to match those changes. It appears that level[ing] the playing field for new entrants or small players brings potential benefits. Are there technical solutions that are missing today?
These questions were one of many asked in a new Internet Draft published yesterday by former IETF Chair Jari Arkko on behalf of several Internet Architecture Board (IAB) members with the title “Considerations on Internet Consolidation and the Internet Architecture”:
https://tools.ietf.org/html/draft-arkko-iab-internet-consolidation-00
The draft text is based on the IAB “Consolidation” blog post back in March 2018as well as a new post Jari and Brian Trammell have written for the APNIC and RIPE sites.
The abstract of the Internet Draft is:
Many of us have held a vision of the Internet as the ultimate distributed platform that allows communication, the provision of services, and competition from any corner of the world. But as the Internet has matured, it seems to also feed the creation of large, centralised entities in many areas. This Continue reading
Cloudy with a Chance of Threats
Securing multiple clouds can be very complex. What’s needed is an integrated approach that is dynamic and flexible, and able to keep pace with cloud workloads and applications as they expand.
VMware NSX: The Good, the Bad and the Ugly
After four live sessions we finished the VMware NSX Technical Deep Dive webinar yesterday. Still have to edit the materials, but right now the whole thing is already over 6 hours long, and there are two more guest speaker sessions to come.
Anyways, in the previous sessions we covered all the good parts of NSX and a few of the bad ones. Everything that was left for yesterday were the ugly parts.
Read more ...DT, SK Telecom Invest in Each Other’s 5G-Focused Pet Projects
The telecom giants will invest a like amount in DT's MobiledgeX edge computing subsidiary and SK's partner ID Quantique, which uses quantum physics to secure communication transmissions.
NetQ agent on a host
We all know and love NetQ – it works hand-in-hand with Linux to accelerate data center operations. Customers love how easy it is to install and operate which makes their lives easier. Also, it can prevent and find issues in a data center by viewing the entire data center as a whole and providing three different types of services:
- Preventative: NetQ allows an engineer to check all data center configurations and state in a few steps from any location in the network. The validation can be done on a virtual network using vagrant with Cumulus VX or if a virtual environment is not available, it can also be used during an change outage window. Since NetQ has built in analyzers of the network as a whole, no scripting is required and the validation is done from one location, rather than hop by hop. It can also shorten outage windows needed for network changes allowing shorter outage windows virtually or during outage windows.
- Proactive: NetQ supplies notifications if something goes wrong in the network by either logging it to a file or integrating with third party applications like Slack, PagerDuty, or Splunk. It can also be filtered to ensure the right Continue reading
Watch Live – DNSSEC Workshop on October 24 at ICANN 63 in Barcelona
What can we learn from recent success of the Root KSK Rollover? What is the status of DNSSEC deployment in parts of Europe – and what lessons have been learned? How can we increase the automation of the DNSSEC “chain of trust”? And what new things are people doing with DANE?
All these topics and more will be discussed at the DNSSEC Workshop at the ICANN 63 meeting in Barcelona, Spain, on Wednesday, October 24, 2018. The session will begin at 9:00 and conclude at 15:00 CEST (UTC+2).
The agenda includes:
- DNSSEC Workshop Introduction, Program, Deployment Around the World – Counts, Counts, Counts
- Panel: DNSSEC Activities
- Includes presenters from these TLDs: .DK, .DE, .CH, .UK, .SE, .IT, .ES, .CZ
- Report on the Execution of the .BR Algorithm Rollover
- Panel: Automating Update of DS records
- Panel: Post KSK Roll? Plan for the Next KSK Roll?
- DANE usage and use cases
- DNSSEC – How Can I Help?
It should be an outstanding session! For those onsite, the workshop will be room 113.
- WATCH LIVE: https://participate.icann.org/bcn63-113
- More info and slides are available from these URLs (ICANN’s online schedule system breaks it up into sections based on breaks and lunch):
Fortinet Buys ZoneFox, a Security Startup That Hunts for Insider Threats
The company’s software enables organizations to see where business-critical data is going and if people are doing things with it that they shouldn’t be – either accidentally or maliciously.
Oracle Buys DataFox, Pledges to Embed AI Into Everything
Oracle co-CEO Mark Hurd predicted that by 2025 all cloud apps will include artificial intelligence. And likely because of this AI strategy, the company reached a deal to acquire DataFox and its cloud-based AI data engine.
How to Balance Cloud-Scale Efficiencies Against Business Realities
The widespread deployment of cloud infrastructure has led IT teams to demand freedom of choice, but that might not always be what’s best for the organization as a whole.