June 2014 archive

FIR #762 – 6/30/14 – For Immediate Release

Book review still coming; Quick News: How to view your website as Google does, GE's new policy hub, setting up Twitter Cards for a WordPress blog, big changes with Google Authorship and Technorati; Ragan promo; News That Fits: Digging deeper into Facebook organic reach, Michael Netzley's Asia Report, is PR Hacker spamming on an industrial scale?, Media Monitoring Minute from CustomScoop, listener comments, can attention replace the pageview?, Dan York's Tech Report, Igloo Software promo, last week on the FIR Podcast Network, drawing the legal line on reselling ebooks; music from Assembly of Dust; and more.

ICANN 50 DNSSEC Workshop Streaming Live TODAY From London

ICANN 50 logoAs we mentioned last week,  the DNSSEC Workshop at ICANN50 will take place from 8:30 – 14:45 London time TODAY, June 25, 2013 and will be streamed live via audio or via Adobe Connect (combined audio, slides and video).  More info can be found at:

http://london50.icann.org/en/schedule/wed-dnssec

The links for remote listening can be found there, as can the presentation slides.  The session will be recorded for later viewing if you can’t see it live.  This is the week’s big session on DNSSEC and covers topics such as:

  • Introduction and DNSSEC Deployment Around the World
  • DNSSEC Activities in the European region
  • The Operational Realities of Running DNSSEC
  • DANE and DNSSEC Applications
  • DNSSEC Automation
  • Panel Discussion/Demonstrations on Hardware Security Modules (HSMs)

We’ll also have a presentation from CDN provider Cloudflare about their plans for DNSSEC, a session about key rollovers and some great demos of new tools and services.  It should be quite an interesting and educational day!

Getting to the room for the DNSSEC Workshop

If you are here in London it turns out that finding the room where the DNSSEC Workshop will be held is a bit of a challenge.  The location is “Hilton 1-6″ on the third floor of the Tower Wing (the wing in the middle). The directions are as follows:

  1. Go right after exiting the elevators on the third floor and take an immediate right again (there will be a sign on the wall for Hilton rooms 1-17)
  2. Take a left at the next corridor.
  3. Take a right at a wide corridor where there are some tables on the right (there will be a sign on the wall for Hilton rooms 1-17)
  4. Go down the stairs under the sign “Hilton Meeting Room Business Center”

From this point there are two ways to enter at the back of the room (there is a third way but it is harder to describe):

  1. Go straight ahead through the ICANN staff breakfast/lunch area to the door marked Hilton 1.
  2. Go down the left-hand corridor to the door on the right marked Hilton 3

When in doubt, ask any Hilton staff person or ICANN staff person.  We hope to see you there!

More information

All the slides for today’s session can be found on the ICANN web page for the session.

To learn more about DNSSEC, please visit our “Start Here” page to find resources tailored to your type of organization.

Reminder – “DNSSEC For Everybody” Streamed Live From ICANN 50 Today

ICANN 50 logoJust a quick reminder that, as we mentioned last week, the DNSSEC For Everybody: A Beginner’s Guide session today at ICANN 50 in London will be streamed live via audio or via Adobe Connect (combined audio, slides and video).  This is a fun session where we step back to caveman days to try to explain DNSSEC in the simplest of terms… and also add some skits into the mix as well (yes, DNSSEC engineers doing a skit!).  It is happening from 17:00 to 18:30 British Summer Time (local time in London). More info can be found at:

http://london50.icann.org/en/schedule/mon-dnssec-everybody

The links for remote listening can be found there, as can the slides and handout for download.  The session will be recorded for later viewing if you can’t see it live.

If you want an even deeper dive into DNSSEC, plan to attend (remotely or here at ICANN 50) the DNSSEC Workshop happening most of the day on this coming Wednesday, June 25, where we’ll be starting at 8:30am and covering a wide range of topics related to DNSSEC.

To learn more about DNSSEC, please visit our “Start Here” page to find resources tailored to your type of organization.

Great To See Full (And Faster) IPv6 At ICANN 50 In London

Here at ICANN 50 in London (where I am focused on DNSSEC sessions) it was great to connect to the WiFi network and find that that I had full IPv6 connectivity.  Here’s a shot of the IPvFoo plugin for Chrome when I went to the main ICANN 50 website:

ICANN 50 IPv6

Even more fascinating was how much faster the IPv6 connectivity is here versus IPv4, undoubtedly because most of the 2,200+ 3,300+ attendees are using primarily IPv4.  Using Comcast’s Speedtest we wrote about back in February, I was amazed to see the dramatically different speeds:

ICANN 50 IPv6 Speed Test

I was so surprised that I had to run Comcast’s speed test several more times and test against multiple different servers. (Yes, I’m a network geek who is fascinated by this kind of thing!)  All of them gave similar results… one even offering an even higher IPv6 upload speed:

icann50-ipv6-comcast-speedtest2

Sadly, I don’t have any large videos I need to upload to YouTube or anything like that, because clearly this ICANN 50 network would be the place to do so! (Assuming the sites were all over IPv6, as YouTube is.)

To double-check, I also went to ipv6-test.com’s speed test, where IPv4/IPv6 is also differentiated, and again saw a difference (it seems to only test download speed):

IPv6 test from ipv6-test.com

All in all it is great to see that not only is ICANN offering IPv6 connectivity to all attendees… but it is faster than that over IPv4.

Way to go, ICANN!


UPDATE: Article updated with the information that there are now over 3,300 registrants at this ICANN meeting!

FIR #761 – 6/23/14 – For Immediate Release

Book review still coming; Quick News: FDA's proposed healthcare social media rules, annoying LinkedIn notifications, new paid-editing Wikipedia rules, debate on ethics of wearables; Ragan promo; News That Fits: How Edelman enforces Wikipedia best practices, podcasters reading paid sponsor spots, Media Monitoring Minute from CustomScoop, Dan York's Tech Report, listener comments, caveats on paid Facebook promotions, Igloo Software promo, the past week on the FIR Podcast Network, the rise of proximity-aware communication; how to comment; music from Eli Uno; and more.

3 DNSSEC Sessions Happening At ICANN 50 Next Week in London (Featured Blog)

As I mentioned in a post to the Deploy360 blog today, there are three excellent sessions relating to DNSSEC happening at ICANN 50 in London next week: DNSSEC For Everybody: A Beginner's Guide; DNSSEC Implementers Gathering; DNSSEC Workshop. Find out more. More...

3 DNSSEC Sessions Happening At ICANN 50 Next Week In London (Featured Blog)

More...

3 DNSSEC Sessions At ICANN 50 In London Next Week

ICANN 50 logoNext week (June 23-26, 2014), we’ll be at ICANN 50 in London for the usual excellent DNSSEC sessions, two of which will be streamed live for remote participants.

The three activities are…

DNSSEC For Everybody: A Beginner’s Guide

First up on Monday, June 23, 2014, in the late afternoon from 17:00 – 18:30 BST (London time) will be the DNSSEC For Everybody: A Beginner’s Guide session where we start at the very basic level of why should anyone care about DNSSEC and get into what kind of problem we are trying to solve.  This session includes a skit (seriously!) where we act out DNS and DNSSEC transactions and talk about blue smoke (seriously!).  It’s a good bit of fun and people tell us that it definitely helps them understand DNS and DNSSEC – or maybe they just like watching a bunch of DNS geeks act out in a skit. :-)

You can listen remotely via an audio stream or listen and view the slides via a a virtual meeting room.  Details are on the program page.

DNSSEC Implementers Gathering

Next, on Monday evening from 19:30-21:30 (or later) some of us will join in an “informal gathering of DNSSEC implementers” at a nearby restaurant/bar. This is a time to share experiences, exchange information and just generally interact with other people involved with deploying DNSSEC.  As ICANN’s Julie Hedlund wrote in a note to various email lists:

DNSSEC Implementers are invited to attend an informal gathering to discuss and exchange information on their DNSSEC implementation experiences during the ICANN meeting in London, sponsored by Nominet UK. This is a unique opportunity to meet with and talk to key implementers, such as Nominet UK, CNNIC, JPRS, NZNIC, CIRA, CZNIC, SIDN, and others. We do ask that in order to participate you should come prepared to say a few words about your experiences. This is a peer-to-peer event for implementers.

It’s been a fun time at past events and generated both good conversations and connections for future work activities after the meetings are over.

It should perhaps be obvious but this event will NOT be available for remote participation.  If you will be in London, though, and are interested in interacting with others who are deploying DNSSEC, you are welcome to join us.  As Julie requests, RSVP by close of business on this Thursday, June 19, 2014.

DNSSEC Workshop

The BIG event of the week is the DNSSEC Workshop on Wednesday, June 25, where we meet from 8:30 – 14:45 London time for this detailed session diving into many different aspects of DNSSEC.  I’m on the Program Committee for the workshop and I can tell you that there will be some excellent presentations at this session.  The slides and full agenda will be available soon, but the major areas of discussion will include:

  • Introduction and DNSSEC Deployment Around the World
  • DNSSEC Activities in the European region
  • The Operational Realities of Running DNSSEC
  • DANE and DNSSEC Applications
  • DNSSEC Automation
  • Panel Discussion/Demonstrations on Hardware Security Modules (HSMs)

The workshop continues to attract some of the best technical people involved with DNSSEC and the conversations and discussions that happen there provide outstanding value to those interested in these topics.  If you’re interested in DNSSEC and how it can make the Internet more secure, I highly recommend you tuning in!

You can listen remotely via an audio stream or listen and view the slides via a a virtual meeting room.  Details are on the program page.

Rough Guide To ICANN 50

These DNSSEC events are just a part of all the many activities happening at ICANN 50 that we at the Internet Society are interested in.  To understand all of what is happening at ICANN 50 that lines up with our organization’s priorities, please see the Internet Society Rough Guide to ICANN 50.

Say Hello!

I (Dan York) will be there in London.  Please do say hello – you can find me at any of these events and also around other areas of ICANN. You can also email me at deploy360@isoc.org if you’d like to meet with me.  You can also contact us via Twitter, Facebook or Google+.

TDYR #159 – Can You Come Up With A Better Topic Name Than Anti-Spoofing?

TDYR #159 - Can You Come Up With A Better Topic Name Than Anti-Spoofing? by Dan York

Cloud Provider Digital Ocean Announces IPv6 Support In Singapore

digital-ocean-ipv6We were very pleased to see the news that cloud platform provider Digital Ocean announced IPv6 support in their Singapore data center.  The announcement says in part:

Since our launch, IPv6 has been one of the most requested features in our community. Today we are excited to announce that public IPv6 addresses are now available for all Droplets in our Singapore region. IPv6 can be enabled during Droplet creation, or added to existing Droplets without the need for a reboot. This will be the standard for all new datacenter locations going forward – several of which will be launching within the next few months.

The article goes on to point to a number of articles that help users get started on IPv6.  There’s an ongoing discussion thread on the article where it seems that in this initial deployment Digital Ocean is not allocating a full /64 to each virtual private server (VPS) but rather allocating a smaller /124 instead. To their credit, the folks from Digital Ocean are engaged in the conversation and seeking feedback and information from people there.  (My only comment would be to point to the links off of our IPv6 address planning page and to RFC 6177/BCP 157, all of which generally recommend at least /64 for end networks. Still, there is no “one-size-fits-all” approach and it will be interesting to see what evolves in the cloud marketplace.)

More importantly, Digital Ocean moderators reconfirm in the comments that they will be implementing IPv6 across all their data centers and that all new data centers will support IPv6 from the start.

As we’ve written here over the past week, cloud providers need to get with the IPv6 program … and Microsoft ran out of “U.S.” IPv4 addresses for their Azure cloud … so it’s great to see a cloud provider starting down the path to having IPv6 everywhere!

If you want to join with Digital Ocean in making the transition to IPv6, please visit our “Start Here” page to find IPv6-related resources focused on your type of organization – and please do let us know if you can’t find what you are looking for!

P.S. There are of course discussion threads on this topic on both Hacker News and Reddit.

UPDATE: Moments after I hit “Publish” on this post, Digital Ocean tweeted out a chart showing the nice big spike in their IPv6 usage as people went in and enabled IPv6 on their VPS’. Very nice to see spikes like this!

TweetDeck