Experiment with post-quantum cryptography today
Practically all data sent over the Internet today is at risk in the future if a sufficiently large and stable quantum computer is created. Anyone who captures data now could decrypt it.
Luckily, there is a solution: we can switch to so-called post-quantum (PQ) cryptography, which is designed to be secure against attacks of quantum computers. After a six-year worldwide selection process, in July 2022, NIST announced they will standardize Kyber, a post-quantum key agreement scheme. The standard will be ready in 2024, but we want to help drive the adoption of post-quantum cryptography.
Today we have added support for the X25519Kyber512Draft00 and X25519Kyber768Draft00 hybrid post-quantum key agreements to a number of test domains, including pq.cloudflareresearch.com.
Do you want to experiment with post-quantum on your test website for free? Mail [email protected] to enroll your test website, but read the fine-print below.
What does it mean to enable post-quantum on your website?
If you enroll your website to the post-quantum beta, we will add support for these two extra key agreements alongside the existing classical encryption schemes such as X25519. If your browser doesn’t support these post-quantum key agreements (and none at the time Continue reading
HS029 Do You Want A Strategic Vendor ?
The pro and con's of having preferred supplier for IT technology ? You can save time and effort, simplify purchasing and move quicker but are you getting the best solution and support. We discuss different perspectives on going down the path and point out the subscription pricing moves towards vendor lockin.
The post HS029 Do You Want A Strategic Vendor ? appeared first on Packet Pushers.
HS029 Do You Want A Strategic Vendor ?
The pro and con's of having preferred supplier for IT technology ? You can save time and effort, simplify purchasing and move quicker but are you getting the best solution and support. We discuss different perspectives on going down the path and point out the subscription pricing moves towards vendor lockin.
Are Cloud Outages the Result of Choosing Price Over Reliability?
Market pressures and risk tradeoffs made by cloud providers might be the key to understanding why outages happen and what lies ahead for resolving cloud outages that can bring down regional, if not national commerce.Day Two Cloud 157: Highlights Of Cloud Field Day 14
Today's Day Two Cloud podcast brings you highlights from Cloud Field Day 14, where Day Two Cloud's Ned Bellavance was a delegate. The Field Day event brings together cloud vendors and tech bloggers for in-depth presentations. Ned will share highlights and impressions from presentations from companies including Weka, Alkira, and Morpheus Data.Bigger, Faster, Better (and Cheaper!)
There has been much speculation on the evolution of the Internet. Is our future somewhere out there in the blockchains? Is it all locked up in crypto? Or will it all shatter under the pressure of fragmentation? It seems to me that all this effort is being driven by a small number of imperatives: making it bigger, faster and better. Oh, and making it cheaper as well!I, The Braggart – A Network Fable
My boss stepped into our shared cubicle space and rested his arm on top of the fabric wall. He peered down at me. “Hey.” He always started with a quiet “hey” when he was about to ask me to do something new. I glanced at my whiteboard filled with projects and statuses, and steeled myself for the fresh request.
“Hey. I just got out of a meeting with Lewis.” I groaned inwardly. Lewis was my boss’s boss, and while Lewis was a fantastic human being, meetings with him were usually in the context of projects. Big ones. I put on a fake smile to mask creeping despair. “Oh? How did that go?”
My boss ripped off the band-aid. “Lewis wants a monthly summary from everyone of what they’ve been doing. So, on the last Friday of the month, make sure you have all your project statuses updated, including key milestones. Your whiteboard is great for you and me since we share this space, but now you’re going to need to log your statuses into the project database.” He smirked. “Like a big boy.”
I died a little inside. One of the reasons I’d left consulting Continue reading
Hedge 141: Improving WAN Router Performance
Wide area networks in large-scale cores tend to be performance choke-points—partially because of differentials between the traffic they’re receiving from data center fabrics, campuses, and other sources, and the availability of outbound bandwidth, and partially because these routers tend to be a focal point for policy implementation. Rachee Singh joins Tom Ammon, Jeff Tantsura, and Russ White to discuss “Shoofly, a tool for provisioning wide-area backbones that bypasses routers by keeping traffic in the optical domain for as long as possible.”
Notes from DNS OARC 38
There is still much in the way the DNS behaves that we really don't know, much we would like to do that we can't do already, and much we probably want to do better. DNS-OARC Meetings bring together a collection of people interested in all aspects of the DNS, from its design through to all aspects of its operation, and the presentations and discussions at OARC meetings touch upon the current hot topics in the DNS today.Building and using Managed Components with WebCM
Managed Components are here to shake up the way third-party tools integrate with websites. Two months ago we announced that we’re open sourcing parts of the most innovative technologies behind Cloudflare Zaraz, making them accessible and usable to everyone online. Since then, we’ve been working hard to make sure that the code is well documented and all pieces are fun and easy to use. In this article, I want to show you how Managed Components can be useful for you right now, if you manage a website or if you’re building third-party tools. But before we dive in, let’s talk about the past.
Third-party scripts are a threat to your website
For decades, if you wanted to add an analytics tool to your site, a chat widget, a conversion pixel or any other kind of tool – you needed to include an external script. That usually meant adding some code like this to your website:
<script src=”https://example.com/script.js”></script>
If you think about it – it’s a pretty terrible idea. Not only that you’re now asking the browser to connect to another server, fetch and execute more JavaScript code – you’re also completely giving up the control on your Continue reading