The Week in Internet News: WiFi Gets a New Security Standard

A more secure Wi-Fi: The Wi-Fi Alliance has released the new WPA2 standard for WiFi that’s designed to mitigate several long-standing security problems. Among the fixes: The new standard mandates stronger WiFi passwords, Wired.com reports. The new standard also will include 192-bit encryption. The alliance also published the new WiFi Easy Connect protocol, designed for IoT devices that have limited or no display, says SlashGear.

Wait for us, says email: The Electronic Frontier Foundation, one of the organizations behind the HTTPS-encryption initiative Let’s Encrypt, has launched an email server encryption project called STARTTLS Everywhere. The project is designed to help admins run more secure email servers, Engadget reports.

AI targets fraud: Insurers are increasingly turning to artificial intelligence technologies to root out fraud, Fast Company says. AI can help pick out inconsistencies and unusual patterns to identify “sophisticated rings of fraudsters rigging auto accidents” and people exaggerating the worth of their damaged property.

AI also examines eruptions: Scientists at the Earth-Life Science Institute in Tokyo are using AI to help predict the types of eruptions coming from volcanos, says Phys.org. By examining tiny particles of volcanic ash, the AI is predicting the types of eruptions coming from Continue reading

5 ways the IoT must improve to achieve enterprise success

If you think you know the problems facing the Internet of Things (IoT), a new Deloitte report, Five vectors of progress in the Internet of Things, offers a great chance to check your assumptions against the IoT experts.Despite the fancy-pants “vectors of progress” language, the report’s authors — David Schatsky, Jonathan Camhi, and Sourabh Bumb — basically lay out the IoT’s chief technical challenges and then look at what’s being done to address them. Some of the five are relatively well-known, but others may surprise you.To read this article in full, please click here

5 ways the IoT must improve to achieve enterprise success

If you think you know the problems facing the Internet of Things (IoT), a new Deloitte report, Five vectors of progress in the Internet of Things, offers a great chance to check your assumptions against the IoT experts.Despite the fancy-pants “vectors of progress” language, the report’s authors — David Schatsky, Jonathan Camhi, and Sourabh Bumb — basically lay out the IoT’s chief technical challenges and then look at what’s being done to address them. Some of the five are relatively well-known, but others may surprise you.To read this article in full, please click here

The rise of the citizen developer: assessing the security impact of online app generators

The rise of the citizen developer: assessing the security impact of online app generators Oltrogge et al., IEEE Security & Privacy 2018

“Low code”, “no code”, “citizen developers”, call it what you will, there’s been a big rise in platforms that seek to make it easy to develop applications for non-export developers. Today’s paper choice studies the online application generator (OAG) market for Android applications. When what used to be a web site (with many successful web site templating and building options around) is often in many cases now also or instead a mobile app, so it makes sense that the same kind of templating and building approach should exist there too. For a brief period at the end of last year, Apple flirted with banning such apps from their app store, before back-tracking just a couple of weeks after the initial announcement. After reading today’s paper I can’t help but feel that perhaps they were on to something. Not that templated apps are bad per se, but when the generated apps contain widespread vulnerabilities and privacy issues, then that is bad.

With the increasing use of OAGs the duty of generating secure code shifts away from the Continue reading

What’s in a Mutable Field? — We Can’t Tell You

In conversations I often hear people using the word “mutable”. Typically it would be something similar to the following.

The IP TTL is a mutable field and decreases as it traverses a router.

If we look up the word “mutable” we find that it is something that is likely to change.

So the IP TTL is a great example of a mutable field. That value is expected to decrease at each hop throughout the network.

By contrast, IP Source Address, Destination Address, and Protocol would be immutable because it is not normal for those to change. They should stay constant from source to destination.

I know someone might consider something like NAT or PAT to change some of these attributes. While that is true, I still would not consider those mutable fields.

No related content found.

Vagrant + vQFX + Ansible = EVPN-VXLAN Fabric

Did you know that Juniper vQFX images are available in Vagrant Cloud? There is vQFX RE image and vQFX PFE one. You can use only RE image to build simple topologies, or pair every RE with PFE to use more complex protocols. There is also a bunch of examples in Juniper’s github repository.

What is Vagrant? Let me quote official website: “Vagrant is a tool for building and managing virtual machine environments in a single workflow. Vagrant gives you a disposable environment and consistent workflow for developing and testing infrastructure management scripts.” I hope you already knew that. And I also hope there is no need to present Ansible.

I played with this stuff a little bit and created a couple of new examples using full vQFX option (e.g. RE+PFE for every box) – IP fabric and EVPN-VXLAN fabric.

This is really easy way if you want to get yourself familiar with configuration of IP fabric and EVPN-VXLAN on QFX (and some Ansible as well), but don’t want to spend time figuring out how to set everything up in GNS3 or EVE-NG.

Just a few simple steps:

We’ve Added A New Juniper Security Technology Course To Our Video Library!

Our Newest Juniper course, Juniper Security (JSEC) Technology is now live! Whether you’re preparing for your Juniper Specialist Exam, or just looking to brush up on Juniper SRX Devices, this course is an excellent resource for IT security professionals. Tune in for 3 hours of instruction with Juniper expert Mauricio Spinelli by logging into your members account here.



About The Course:

In this course you will learn about the Junos Security platform and be prepared for the Juniper Specialist exam (JN0-332). You will learn about the benefits, architecture and how to deploy environments with Juniper SRX devices. This is the introduction of Security platform of Juniper Networks, after complete this course you will be ready to deploy, manage and troubleshooting Juniper SRX devices.

Weekend Reads 062918

The Internet and related digital systems that the United States did so much to create have effectuated and symbolized US military, economic, and cultural power for decades. The question raised by this essay is whether these systems, like the Roman Empire’s roads, will come to be seen as a platform that accelerated US decline. @The Hoover Institute

Article 13 reverses one of the key legal doctrines that allowed the Internet to thrive: the idea that computer networks are not “publishers” and are therefore not liable for the actions or statements of their users. This means that you can sue an individual user for libel or copyright infringement, but not the e-mail service or bulletin board or social media platform on which he did it. This immunity made it possible for computer networks to open a floodgate of content produced by independent individuals, without requiring service providers to serve as editors or moderators. —Robert Tracinski @The Federalist

The U.S. Supreme Court today ruled that the government needs to obtain a court-ordered warrant to gather location data on mobile device users. The decision is a major development for privacy rights, but experts say it may have limited bearing on the selling Continue reading

Show 396: Ignition Launch And The State Of The Industry

Today on the Weekly Show, the Packet Pushers officially launch Ignition, our new membership site.

Ignition offers exclusive content to help you develop as a networking and IT professional, including blogs, white papers, videos, and e-books. Over time we’ll add in-depth technical courses and other materials to help you advance your career.

You can join for free and get limited access to the site (plus Link Propagation and the Human Infrastructure Magazine), or get a premium membership for $99 a year for full access.

We also spend some time reviewing the state of the networking industry, including a look at the true drivers of automation, whether Intent-Based Networking is a real thing, why legacy networking vendors are flocking to multicloud as a strategy, the trend of AI-washing, and whether SD-WAN is going to kill private circuits.

Sponsor: Cumulus Networks

Cumulus Networks presents Networking with S.O.U.L – Simple, Open, Untethered Linux. These 4 tenants enable modern, agile networks be built to support the new demands of the business. Save an average of 45% on CapEx and approximately 74% on OpenEx by adopting these SOULful networking solutions. Learn how to leverage the top 5 automation tips and tricks Continue reading

1 1,543 1,544 1,545 1,546 1,547 3,836