Introducing DNS Resolver for Tor

In case you haven’t heard yet, Cloudflare launched a privacy-first DNS resolver service on April 1st. It was no joke! The service, which was our first consumer-focused service, supports emerging DNS standards such as DNS over HTTPS:443 and TLS:853 in addition to traditional protocols over UDP:53 and TCP:53, all in one easy to remember address: 1.1.1.1.

As it was mentioned in the original blog post, our policy is to never, ever write client IP addresses to disk and wipe all logs within 24 hours. Still, the exceptionally privacy-conscious folks might not want to reveal their IP address to the resolver at all, and we respect that. This is why we are launching a Tor hidden service for our resolver at dns4torpnlfs2ifuz2s2yf3fc7rdmsbhm6rw75euj35pac6ap25zgqad.onion and accessible via tor.cloudflare-dns.com.

NOTE: the hidden resolver is still an experimental service and should not be used in production or for other critical uses until it is more tested.

Crash Course on Tor

What is Tor?

Imagine an alternative Internet where, in order to connect to www.cloudflare.com, instead of delegating the task of finding a path to our servers to your internet provider, you had to go through the following Continue reading

The Internet of Food is on the table

The food sector is one of the few large remaining sectors that have not been radically transformed by new technologies yet. Up to now, the Internet in particular was not involved as much as other sectors. However, in a not-too-distant future, the everyday question “what’s for dinner?” will be answered by algorithms managed by the next generation of food companies. When these algorithms are governing the food industry, they will also be governing people as well as their health and well-being.

As food is online, we will start realizing how important network design has become for our existence. The question “what’s for dinner?” will be replaced by “who decides what we eat?”. The Internet Society members, Johan Jörgensen, Michael Daun and Patrik Fältström, assure that this is the most profound question that the tech revolution has asked so far. That is the reason why they created a Special Interest Group on Internet of Food to focus on general discussions around the future infrastructure and standards for the digital world of food.

The project leader Johan Jörgensen explains: “The initial work in the SIG has been about discussing which standards already exist in the food Continue reading

Practical Computational Balance: The Challenges Of Software

Three months ago, The Next Platform promised a three part conversation about practical computational balance with the final part focusing on software. …

Practical Computational Balance: The Challenges Of Software was written by James Cuff at .

Your hardware order is ready. Do you want cables with that?

In a previous blog post, 5 reasons to buy refurbished Cisco equipment, I talked about five facts to keep in mind as you consider how to proceed with your Cisco hardware solutions.Well, my engineering group reminded me of something else to consider for any hardware solution, not just a Cisco solution.Cabling![ Read also: Getting grounded in intent-based networking ] It seems that cabling can be an afterthought. Sure, you just used a blended solution of new and pre-owned hardware, where each makes the most sense in your infrastructure and creates a unique and potentially game-changing opportunity to maximize value in your investments.To read this article in full, please click here

Your hardware order is ready. Do you want cables with that?

In a previous blog post, 5 reasons to buy refurbished Cisco equipment, I talked about five facts to keep in mind as you consider how to proceed with your Cisco hardware solutions.Well, my engineering group reminded me of something else to consider for any hardware solution, not just a Cisco solution.Cabling![ Read also: Getting grounded in intent-based networking ] It seems that cabling can be an afterthought. Sure, you just used a blended solution of new and pre-owned hardware, where each makes the most sense in your infrastructure and creates a unique and potentially game-changing opportunity to maximize value in your investments.To read this article in full, please click here

Your hardware order is ready. Do you want cables with that?

In a previous blog post, 5 reasons to buy refurbished Cisco equipment, I talked about five facts to keep in mind as you consider how to proceed with your Cisco hardware solutions.Well, my engineering group reminded me of something else to consider for any hardware solution, not just a Cisco solution.Cabling![ Read also: Getting grounded in intent-based networking ] It seems that cabling can be an afterthought. Sure, you just used a blended solution of new and pre-owned hardware, where each makes the most sense in your infrastructure and creates a unique and potentially game-changing opportunity to maximize value in your investments.To read this article in full, please click here

Watch live – June 6 panel on “Innovation, security, and the Internet of Things (IoT)” in Ottawa

As a side event before the 2018 G7 Summit this week in Canada, tomorrow, 6 June 2018, the Internet Society will hold a panel to not only talk about the risks and opportunities the Internet of Things (IoT) brings, but also what policy makers can do to build a connected future for everyone.

The panel, Innovation, security, and the Internet of Things, will take place in Ottawa Ontario. If you’re in Ottawa, you can join us from 7:30 to 9:30 a.m. on Wednesday, 6 June, at the Alt Hotel Ottawa at 185 Slater St. If you’re somewhere else, the event will be
livestreamed.

Moderator David Akin (Global News) will facilitate a discussion between:

• Jeff Wilbur, Director, Online Trust Alliance
• Katie Watson, Policy Advisor, Internet Society
• Jacques Latour, Chief Technology Officer, Canadian Internet Registration Authority
• Mike Hoye, Engineering Community Manager, Mozilla

While the opportunities these connected devices can bring us are virtually unprecedented, the steps we must go through to protect ourselves online can feel overwhelming. At the Internet Society, we believe in a future where manufactures, software developers and service providers put people first and ensure user’s privacy and security is their top priority.

To understand Continue reading

For IoT, alternative location services are better than GPS

Traditional location positioning such as GPS isn’t going to be suitable for a Location of Things world filled with Internet of Things (IoT) sensors, say experts. The centralized, anchor-like system we use now, as found in GPS, mobile network cell tower positioning services, and Wi-Fi-based location positioning, is going to be a problem. The usual suspects being bandwidth, excessive power use, and cost.The problem is IoT devices are required to communicate with positioning anchors, whether it be satellites or radio towers. That’s bandwidth-intensive; it can use a significant amount of power to cover the distances, as well as to power the multiple chips needed. The system is also conceivably susceptible to congestion as the numbers of devices increases — projections are for billions and billions of IoT things worldwide, ultimately.To read this article in full, please click here

For IoT, alternative location services are better than GPS

Traditional location positioning such as GPS isn’t going to be suitable for a Location of Things world filled with Internet of Things (IoT) sensors, say experts. The centralized, anchor-like system we use now, as found in GPS, mobile network cell tower positioning services, and Wi-Fi-based location positioning, is going to be a problem. The usual suspects being bandwidth, excessive power use, and cost.The problem is IoT devices are required to communicate with positioning anchors, whether it be satellites or radio towers. That’s bandwidth-intensive; it can use a significant amount of power to cover the distances, as well as to power the multiple chips needed. The system is also conceivably susceptible to congestion as the numbers of devices increases — projections are for billions and billions of IoT things worldwide, ultimately.To read this article in full, please click here

Amazon, Google Vulnerable to Zip Slip, Says Snyk Security Research

The security startup maintains a massive database of vulnerabilities in open source libraries.

Druva Buys CloudRanger, Grows Its AWS-Native Backup and Disaster Recovery Tech

The acquisition follows an $80 million funding round and signals a growth trajectory for the SD-storage company.

Inside the Beach House Connecting the World’s Internet

Video shows just how boring networking is.

Increased programmability brings more options to networks

Options. Everyone needs options. Whenever I travel somewhere with my wife, Christine, even if it’s for a weekend, she needs to check a bag. When I ask her why, she says, “A girl needs options,” hence the oversize luggage.While it’s been easy for someone like my wife to have options, network engineers have never really had the same luxury. Network switches were typically built with fixed functionality, so an organization would need to purchase a wide range of equipment to meet all their needs. Network professionals need greater flexibility from the network Recently, the chip manufacturers have been building more programmable, flexible products. One of the examples of this is the Cavium XPliant processor that is the silicon that powers Arista’s 7160 switch. Another example is the Barefoot Networks Tofino processor. In addition to being one of the most scenic places on the planet, Tofino is a powerful system on a chip with a fully programmable parser and pipeline. The chip supports 256x 25 Gig-E Serializer/Deserializer (SerDes) at speeds of 1, 10, 25, 40, 50, and 100 Gig-E.To read this article in full, please click here

Increased programmability brings more options to networks

Options. Everyone needs options. Whenever I travel somewhere with my wife, Christine, even if it’s for a weekend, she needs to check a bag. When I ask her why, she says, “A girl needs options,” hence the oversize luggage.While it’s been easy for someone like my wife to have options, network engineers have never really had the same luxury. Network switches were typically built with fixed functionality, so an organization would need to purchase a wide range of equipment to meet all their needs. Network professionals need greater flexibility from the network Recently, the chip manufacturers have been building more programmable, flexible products. One of the examples of this is the Cavium XPliant processor that is the silicon that powers Arista’s 7160 switch. Another example is the Barefoot Networks Tofino processor. In addition to being one of the most scenic places on the planet, Tofino is a powerful system on a chip with a fully programmable parser and pipeline. The chip supports 256x 25 Gig-E Serializer/Deserializer (SerDes) at speeds of 1, 10, 25, 40, 50, and 100 Gig-E.To read this article in full, please click here

Increased programmability brings more options to networks

Options. Everyone needs options. Whenever I travel somewhere with my wife, Christine, even if it’s for a weekend, she needs to check a bag. When I ask her why, she says, “A girl needs options,” hence the oversize luggage.While it’s been easy for someone like my wife to have options, network engineers have never really had the same luxury. Network switches were typically built with fixed functionality, so an organization would need to purchase a wide range of equipment to meet all their needs. Network professionals need greater flexibility from the network Recently, the chip manufacturers have been building more programmable, flexible products. One of the examples of this is the Cavium XPliant processor that is the silicon that powers Arista’s 7160 switch. Another example is the Barefoot Networks Tofino processor. In addition to being one of the most scenic places on the planet, Tofino is a powerful system on a chip with a fully programmable parser and pipeline. The chip supports 256x 25 Gig-E Serializer/Deserializer (SerDes) at speeds of 1, 10, 25, 40, 50, and 100 Gig-E.To read this article in full, please click here

Exploring Kubernetes with Kubeadm, Part 1: Introduction

I recently started using kubeadm more extensively than I had in the past to serve as the primary tool by which I stand up Kubernetes clusters. As part of this process, I also discovered the kubeadm alpha phase subcommand, which exposes different sections (phases) of the process that kubeadm init follows when bootstrapping a cluster. In this blog post, I’d like to kick off a series of posts that explore how one could use the kubeadm alpha phase command to better understand the different components within Kubernetes, the relationships between components, and some of the configuration items involved.

Before I go any further, I’d like to point readers to this URL that provides an overview of kubeadm and using it to bootstrap a cluster. If you’re new to kubeadm, go read that before continuing on here.

<aside>Quick side note: it’s my understanding that at some point the intent is to move kubeadm alpha phase out of alpha, at which point the command might look more like kubeadm phase or similar (that hasn’t been fully determined yet as far as I know). If you’re reading this at some point in the future, just make note that this was written back Continue reading

BMC retools its service management offerings for AI, cloud era

Many if not most large enterprises run hybrid computing environments and are looking for management software flexible enough to run in and manage assets across private and public clouds.Against this backdrop, BMC has rebuilt its venerable IT service-management product suite to run on a range of cloud platforms while incorporating machine learning to enhance predictive-analysis capabilities.[ Now see who's developing quantum computers.] The BMC Helix Cognitive Service Management is a software-as-a-service (SaaS) offering that runs on Amazon Web Services as well as BMC's own cloud. It will be available for Azure in the fourth quarter and for Google Public Cloud at the end of the year or beginning of next year, BMC said.To read this article in full, please click here

BMC retools its service management offerings for AI, cloud era

Many if not most large enterprises run hybrid computing environments and are looking for management software flexible enough to run in and manage assets across private and public clouds.Against this backdrop, BMC has rebuilt its venerable IT service-management product suite to run on a range of cloud platforms while incorporating machine learning to enhance predictive-analysis capabilities.[ Now see who's developing quantum computers.] The BMC Helix Cognitive Service Management is a software-as-a-service (SaaS) offering that runs on Amazon Web Services as well as BMC's own cloud. It will be available for Azure in the fourth quarter and for Google Public Cloud at the end of the year or beginning of next year, BMC said.To read this article in full, please click here

Universal Cloud Networking with Arista 7170

There is a shift happening in the world of Artificial Intelligence requiring a new breed of servers, storage and cloud networks. Artificial intelligence applications for patterns, photos and speech recognition have driven a processor evolution from CPUs to NPUs to now, GPUs. Networking is witnessing a parallel evolution and pushing the scale of shuttling massive data between machines. It creates an ever-increasing need for control over the way networks are rebuilt. Building these networks requires both, programmable paths to drive intelligence and uncompromised performance. Doing both hasn’t been easy until now.

Universal Cloud Networking with Arista 7170

There is a shift happening in the world of Artificial Intelligence requiring a new breed of servers, storage and cloud networks. Artificial intelligence applications for patterns, photos and speech recognition have driven a processor evolution from CPUs to NPUs to now, GPUs. Networking is witnessing a parallel evolution and pushing the scale of shuttling massive data between machines. It creates an ever-increasing need for control over the way networks are rebuilt. Building these networks requires both, programmable paths to drive intelligence and uncompromised performance. Doing both hasn’t been easy until now.