Another BGP Hijacking Event Highlights the Importance of MANRS and Routing Security

Another BGP hijacking event is in the news today. This time, the event is affecting the Ethereum cryptocurrency. (Read more about it here, or here.) Users were faced with an insecure SSL certificate. Clicking through that, like so many users do without reading, they were redirected to a server in Russia, which proceeded to empty the user’s wallet. DNSSEC is important to us, so please check out the Deploy360 DNSSEC resources to make sure your domain names are protected. In this post, though, we’ll focus on the BGP hijacking part of this attack.

What happened?

First, here’s a rundown of routing attacks on cryptocurrency in general – https://btc-hijack.ethz.ch/.

In this case specifically, the culprit re-routed DNS traffic using a man in the middle attack using a server at an Equinix data center in Chicago. Cloudflare has put up a blog post that explains the technical details. From that post:

“This [hijacked] IP space is allocated to Amazon(AS16509). But the ASN that announced it was eNet Inc(AS10297) to their peers and forwarded to Hurricane Electric(AS6939).

“Those IPs are for Route53 Amazon DNS servers. When you query for one of their client zones, those servers Continue reading

Update: What will programming look like in the future?

Update: Ólafur Arnalds built a robotic music system to accompany him on the piano. He calls his system of two semi generative, self playing pianos—STRATUS. You can hear his most recent song re:member. There's more explanation in The Player Pianos pt. II and a short Facebook live session. His software reacts to his playing in real-time. Then he has to react to the robots because he's not sure what they're going to do. He's improvising like a jazz band would do, but it's with robots. It's his own little orchestra. The result is beautiful. The result is also unexpected. Ólafur makes the fascinating point that usually your own improvisation is limited by your own muscle memory. But with the randomness of the robots you are forced to respond in different ways. He says you get a "pure unrestricted creativity." And it's fun he says with a big smile on his face.

Maybe programming will look something like the above video. Humans and AIs working together to produce software better than either can separately.

The computer as a creative agent, working in tandem with a human partner, to produce software, in a beautiful act of Continue reading

Short Take: Death of the Seven Layer Model

Is the seven-layer OSI model really all that useful any longer? Before you answer, it’s worth listening to my latest short take over at the Network Collective.

AT&T Says the 5G Secret Sauce Is in the Software

5G trials from Kalamazoo, Michigan, to Waco, Texas, have helped the company fine-tune its commercial deployment plans. 

This Girls in ICT Day, Let’s Increase the Visibility of Women on Wikipedia

At the Women’s Special Interest Group of the Internet Society we are committed to promoting the participation of women in the Internet ecosystem. We also consider it important to increase the content created by and about women on the Internet to give voice and make visible the actions, work, and participation of women in Information and Communication Technologies (ICT).

Just 17% of Wikipedia biographies are of women. This happens because of the invisibility on the Internet of their work, which makes it difficult to create their biographies, no matter how valuable their work is.

April 26 is the International Day of Girls in ICT, promoted by the ITU. It aims to reduce the digital gender gap and encourage and motivate girls to participate in tech careers. With the support of the Wikimedia Foundation and Internet Society Chapters, we are going to commemorate the Girls in ICT Day with an editathon marathon in Wikipedia, to include all the women who are working to build an open Internet, free, safe, transparent, and affordable for everyone.

The important thing about this Global Editathon “Girls in ICT” is that the content will be created by women in their native language or in the Continue reading

Enterprise IoT Benefits and Challenges

Red Hat Gets Serious About Selling Open Source Storage

If there is one consistent complaint about open source software over the past three decades that it has been on the rise, it is that it is too difficult to integrate various components to solve a particular problem because the software is not really enterprise grade stuff. Well, that is two complaints, and really, there are three because even if you can get the stuff integrated and running well, that doesn’t mean you can keep it in that state as you patch and update it. So now we are up to three complaints.

Eventually, all software needs to be packaged …

Red Hat Gets Serious About Selling Open Source Storage was written by Timothy Prickett Morgan at The Next Platform.

Google: Addressing Cascading Failures

Like the Spanish Inquisition, nobody expects cascading failures. Here's how Google handles them.

This excerpt is a particularly interesting and comprehensive chapter—Chapter 22 - Addressing Cascading Failures—from Google's awesome book on Site Reliability Engineering. Worth reading if it hasn't been on your radar. And it's free!

Written by Mike Ulrich

If at first you don't succeed, back off exponentially."

Dan Sandler, Google Software Engineer

Why do people always forget that you need to add a little jitter?"

Ade Oshineye, Google Developer Advocate

A cascading failure is a failure that grows over time as a result of positive feedback.¹⁰⁷ It can occur when a portion of an overall system fails, increasing the probability that other portions of the system fail. For example, a single replica for a service can fail due to overload, increasing load on remaining replicas and increasing their probability of failing, causing a domino effect that takes down all the replicas for a service.

We’ll use the Shakespeare search service discussed in Shakespeare: A Sample Service as an example throughout this chapter. Its production configuration might look something like Figure 22-1.

Causes of Cascading Failures and Designing to Avoid Them

Verizon, Citrix, and Hitachi Invest in The Fabric’s Latest $20M Funding Pool

The investment firm was part of the funding behind VeloCloud, Perspica, and Appcito.

Continuing Support for the Work of the IETF

The Internet Engineering Task Force (IETF) has been working recently to update its administrative arrangements to match the changing requirements it faces as the premiere Internet standards organization.

It has been more than a decade since the IETF became an organized activity of the Internet Society. Given the changes in the world and the Internet in the intervening time, it is natural to reconsider how to most effectively organize and implement its administrative structure. The Internet Society Board of Trustees supports the IETF in this work, and has set aside funding for this purpose. Internet Society staff are prepared to help implement the changes required.

Aspects of the mutual relationship between the Internet Society and the IETF, such as the role of the Internet Society in the standards appeal process, the confirmation of the Internet Architecture Board (IAB) members by the Internet Society’s Board of Trustees, and four members of the Internet Society’s Board of Trustees being appointed by the IAB on the IETF’s behalf, are not subject to change.

Both the Internet Society and IETF will benefit from an updated administrative structure for the IETF that continues to provide a solid foundation for the development of open standards for the global Internet.

The post Continuing Support for the Work of the IETF appeared first on Internet Society.

Docker for Desktop is Certified Kubernetes

“You are now Certified Kubernetes.” With this comment, Docker for Windows and Docker for Mac passed the Kubernetes conformance tests. Kubernetes has been available in Docker for Mac and Docker for Windows since January, having first being announced at DockerCon EU last year. But why is this important to the many of you who are using Docker for Windows and Docker for Mac?

Kubernetes is designed to be a platform that others can build upon. As with any similar project, the risk is that different distributions vary enough that applications aren’t really portable. The Kubernetes project has always been aware of that risk – and this led directly to forming the Conformance Working Group. The group owns a test suite that anyone distributing Kubernetes can run, and submit the results for to attain official certification. This test suite checks that Kubernetes behaves like, well, Kubernetes; that the various APIs are exposed correctly and that applications built using the core APIs will run successfully. In fact, our enterprise container platform, Docker Enterprise Edition, achieved certification using the same test suite  You can find more about the test suite at https://github.com/cncf/k8s-conformance.

This is important for Docker for Windows and Docker for Continue reading

Datanauts 131: Masters And Mentorship

The post Datanauts 131: Masters Continue reading

History Of Networking – Tony Przygienda – History of BIER

Outro Music:
Danger Storm Kevin MacLeod (incompetech.com)
Licensed under Creative Commons: By Attribution 3.0 License
http://creativecommons.org/licenses/by/3.0/

The post History Of Networking – Tony Przygienda – History of BIER appeared first on Network Collective.

Cyxtera offers on-demand data center provisioning software

Cyxtera Technologies has launched the Cyxtera Extensible Data Center (CXD) platform, a software platform for data centers that offers customers rapid on-demand provisioning to a host of colocation and connectivity services.Through a combination of a network and services provisioning engine and an intra-data center software-defined network fabric, the CXD platform allows colocation customers to provision services on demand or via a web console.CXD brings cloud-like experience to colocation CXD comes with two key features: the Unified Services Port and Network Exchange. The Unified Services Port enables access to multiple data center services over a single physical port, while the Network Exchange provides automated provisioning to select network service providers. The caveat is they must also be running CXD.To read this article in full, please click here

Cyxtera offers on-demand data center provisioning software

Cyxtera Technologies has launched the Cyxtera Extensible Data Center (CXD) platform, a software platform for data centers that offers customers rapid on-demand provisioning to a host of colocation and connectivity services.Through a combination of a network and services provisioning engine and an intra-data center software-defined network fabric, the CXD platform allows colocation customers to provision services on demand or via a web console.CXD brings cloud-like experience to colocation CXD comes with two key features: the Unified Services Port and Network Exchange. The Unified Services Port enables access to multiple data center services over a single physical port, while the Network Exchange provides automated provisioning to select network service providers. The caveat is they must also be running CXD.To read this article in full, please click here

BGP Hijack of Amazon DNS to Steal Crypto Currency

IDG Contributor Network: Hello, cellular IoT

The Internet of Things (IoT) is an overused buzz phrase, but hype is finally giving way to some valuable IoT use cases. In 2017, 433.1 million smart home devices were shipped worldwide, according to IDC. Smart speakers are leading the way, and smart locks, fridges, thermostats, pet food dishes and more have become part of our daily, connected lives.What would I do without my smart egg tray?While there are plenty of smart “fill-in-the-blank” devices, the IoT still has some growing up to do. Battery life and standards still present significant challenges, and not all smart devices get along. The good news is, high-performance RF filters are providing faster data throughput, minimizing energy losses and extending battery life. Imagine a world where sensors need a charge only once in a decade?To read this article in full, please click here

Video – Enterprise IT is Luxury Market, Stop Whining About The Price

Stop pretending that you got a good deal when you paid premium prices for goods that cost a fraction of the sale price to make.

Cohesity SD-Storage Automates Data Backup in Public Clouds

The software integrates with public cloud APIs so that backups scale automatically as cloud workloads are added or deleted.

Juniper multicloud management software targets enterprise data centers

Facing the reality that many enterprise data-center managers now work in a hybrid cloud environment, Juniper Networks is set to release Contrail Enterprise Multicloud, a software package designed to monitor and manage workloads and servers deployed across networking and cloud infrastructure from multiple vendors.Enterprises are moving to the cloud for operational efficiency and cost optimization, but at the moment most big companies are operating hybrid environments, which has added to the complexity of managing computing infrastructure.[ Check out What is hybrid cloud computing and learn what you need to know about multi-cloud. | Get regularly scheduled insights by signing up for Network World newsletters. ] Juniper is competing with a variety of networking and multicloud orchestration tools from major data center players, including VMware's NSX, Cisco's ACI, and HPE's OneSphere. What's more, Juniper does not have as big a presence in the data center as some of its rivals, particularly Cisco.To read this article in full, please click here