The P4 Language Grows Up, Joins the ONF and Linux Foundation
P4 takes SDN to the next level, bringing programmability to the forwarding plane.
We’ve Added a New CCIE Security Course to Our Video Library!
This course is part of INE’s CCIE Security v5 Technology Series. This series consists of several modules focused on many different aspects of the Group Encrypted Transport VPN (GETVPN) technology, such as operations, configuration, and redundancy. The course covers all important and exam-relevant topics and technologies, including GETVPN Data & Control Plane Components, Registration, IPv6 support, COOP KS, G-IKEv2, implementation, verification, and more, such as design considerations.
This course is taught by Poitr Kaluzny and is 2 hours and 38 minutes long. For those who are INE All Access Pass members, you can watch this course on the streaming site. This course is also available for purchase at ine.com.
About The Instructor
Piotr Kaluzny started his networking career during his studies. He was able to get his first job in production right after graduating in 2007 (Piotr holds MSc in Computer Science). He progressed his career by working in different routing & switching and security roles, with responsibilities ranging from operations and engineering to consulting and management. Since the beginning, Piotr has focused heavily on the security track. He passed the CCIE Security certification exam (#25565) in 2009 on his first attempt.
Piotr already has an extensive Continue reading
Link Propagation 110
Welcome to Link Propagation, a Packet Pushers newsletter. Link Propagation is included in your free membership. Each week we scour the InterWebs to find the most relevant practitioner blog posts, tech news, and product announcements. We drink from the fire hose so you can sip from a coffee cup. A note from Greg Why Link […]How Spectre And Meltdown Mitigation Hits Xeon Performance
It has been more than two months since Google revealed its research on the Spectre and Meltdown speculative execution security vulnerabilities in modern processors, and caused the whole IT industry to slam on the brakes and brace for the impact. The initial microbenchmark results on the mitigations for these security holes, put out by Red Hat, showed the impact could be quite dramatic. But according to recent tests done by Intel, the impact is not as bad as one might think in many cases. In other cases, the impact is quite severe.
The Next Platform has gotten its hands on …
How Spectre And Meltdown Mitigation Hits Xeon Performance was written by Timothy Prickett Morgan at The Next Platform.
Verizon: Being First With 5G Will Give Us a Big Advantage
Getting the company’s engineers adept at working with millimeter wave spectrum and knowing how to work with municipalities on cell sites is Verizon’s “secret sauce.”
IBM Builds Latest Cloud Analytics Platform on Kubernetes
The use of containers provides an abstraction layer to support AI behind the firewall. This latest announcement builds on IBM's continued support for Kubernetes.
Rough Guide to IETF 101: DNSSEC, DANE, DNS Security and Privacy
It’s going to be a crazy busy week in London next week in the world of DNS security and privacy! As part of our Rough Guide to IETF 101, here’s a quick view on what’s happening in the world of DNS. (See the full agenda online for everything else.)
IETF 101 Hackathon
As usual, there will be a good-sized “DNS team” at the IETF 101 Hackathon starting tomorrow. The IETF 101 Hackathon wiki outlines the work (scroll down to see it). Major security/privacy projects include:
- Implementing some of the initial ideas for DNS privacy communication between DNS resolvers and authoritative servers.
- Implementation and testing of the drafts related to DNS-over-HTTPS (from the new DOH working group).
- Work on DANE authentication within systems using the DNS Privacy (DPRIVE) mechanisms.
Anyone is welcome to join us for part or all of that event.
Thursday Sponsor Lunch about DNSSEC Root Key Rollover
On Thursday, March 22, at 12:30 UTC, ICANN CTO David Conrad will speak on “Rolling the DNS Root Key Based on Input from Many ICANN Communities“. As the abstract notes, he’ll be talking about how ICANN got to where it is today with the Continue reading
Is NRE The Evolution Of A Network Architect?
While the various concepts behind automation and programmability have trickled into the network space at an exponential rate, enterprises have been left scratching their heads regarding the most effective way to incorporate these ideas into their teams. Do you send your entire team on a week long Python retreat and assume everyone can immediately start […]Short-term Internet Shutdown in Bali Tied to Holiday
The Indonesian province of Bali has asked mobile providers to shut down customers’ access to the Internet during Nyepi, a Hindu holiday known as the Day of Silence.
Mobile Internet access will be cut off at 6 a.m. local time Saturday, March 17, and the island’s airport will also close for 24 hours during the New Year celebration. Other Internet access will be available during the holiday, the Bali government said.
Internet advocates oppose shutdowns, saying they can hurt local economies and endanger users who depend on connections to contact emergency and health services. Internet shutdowns cost countries $2.4 billion in 2015, according to a Brookings Institute study.
“In a globally connected world, social and economic freedoms depend on reliable access to the Internet,” Sally Shipman Wentworth, the Internet Society’s vice president of global policy development, wrote in Quartz recently. “The internet is the lifeline to the global economy and each shutdown contributes to a more divided world.”
Without Internet access, many business activities are also disrupted, she said. Digital payments can’t be made, contracts can’t be signed, and data in the cloud can’t be accessed.
Although the Internet outage in Bali is limited, it can Continue reading
Show 381: Inside The Pros & Cons Of 802.11ax
802.11ax promises a host of improvements for wireless networks, including greater efficiency, but don't start your upgrade just yet. Here's what you need to know about the forthcoming WLAN standard. The post Show 381: Inside The Pros & Cons Of 802.11ax appeared first on Packet Pushers.
SDxCentral’s Weekly Roundup — March 15, 2018
Riverbed rebrands itself and launches new platform; GTT expands into Canada; resin.io adds multicontainer support.
Stuff The Internet Says On Scalability For March 16th, 2018
Hey, it's HighScalability time:
Hermetic symbolism was an early kind of programming. Symbols explode into layers of other symbols, like a programming language, only the instruction set is the mind.
If you like this sort of Stuff then please support me on Patreon. And I'd appreciate if you would recommend my new book—Explain the Cloud Like I'm 10—to anyone who needs to understand the cloud (who doesn't?). I think they'll learn a lot, even if they're already familiar with the basics.
- ~30: AWS services used by iRobot; 450,000: Shopify S3 operations per second; $240: yearly value of your data; ~day: time to load a terabyte from Postgres into BigQuery; 5 million: viewers for top Amazon Prime shows; 130,000: Airbusians move from Microsoft Office to Google Suite; trillion: rows per second processed by MemSQL; 38 million: Apple Music paid members; 4 million: Microsoft git commits for a Windows release;
- Quotable Quotes:
- Stephen Hawking: Although I cannot move and I have to speak through a computer, in my mind I am free.
- Roger Penrose: Despite [Stephen Hawking] terrible physical circumstance, he almost always remained positive about life. He Continue reading
Sedona Systems Unveils Hierarchical SDN Controller
It sits above domain controllers from packet and transport vendors.
Rough Guide to IETF 101: Privacy, Identity, and Encryption
It’s that time again! In this post of the Rough Guide to IETF 101, I’ll take a quick look at some of the identity, privacy, and encryption related activities at IETF this coming week. Below a few of the many relevant activities are highlighted, but there is much more going on so be sure to check out the full agenda online.
Encryption
Encryption continues to be a priority of the IETF as well as the security community at large. Related to encryption, there is the TLS working group developing the core specifications, several working groups addressing how to apply the work of the TLS working group to various applications, and the Crypto-Forum Research Group focusing on the details of the underlying cryptographic algorithms.
The Transport Layer Security (TLS) Working Group is a key IETF effort developing core security protocols for the Internet. The big news out of this working group is the IESG approval of the TLS 1.3 specification. There is still some way to go before final publication, but the end is in sight.
There will be two TLS sessions this week. The Monday session will focus primarily on the ongoing discussion of data center operator concerns Continue reading
Weekend reads 031618: Notes on memcache, GDPR and whois, and the end of Symantec certificates
I’ve been prompted to write this brief opinion piece in response to a recent article posted on CircleID by Tony Rutkowski, where he characterises the IETF as a collection of “crypto zealots”. He offers the view that the IETF is behaving irresponsibly in attempting to place as much of the Internet’s protocols behind session level encryption as it possibly can. He argues that ETSI’s work on middlebox security protocols is a more responsible approach, and the enthusiastic application of TLS in IETF protocol Continue reading