July 2014 archive

Jul 17

A Huge Amount Of DNSSEC Activity Next Week At IETF 90 In Toronto

DNSSEC badgeIf you are interested in DNSSEC and/or “DNS security” in general, there is going to be a great amount of activity happening in a number of different working group sessions at IETF 90 next week in Toronto.

I wrote about all of this in a post on the ITM blog, “Rough Guide to IETF 90: DNSSEC, DANE and DNS Security“, a part of the Rough Guide to IETF 90 series of posts.

You can read the full details (and find links to all the drafts), but here’s a quick summary:

  • The DNSOP (DNS Operations) Working Group will be talking about DNSSEC key and signing policies and requirements for DNSSEC validation in DNS resolvers.  The group will also talk about the “DNSSEC roadblock avoidance” draft before getting into what should be a lively discussion about how we better optimize the distribution of data in the root zone of DNS.
  • The DANE Working Group will discuss a number of ways the DANE protocol can be used with applications such as OpenPGP, SMIME, SMTP and more.  There will also be a discussion of turning the “DANE Operational Guidance” draft into an actual update/replacement for RFC 6698 that defines DANE. It should be very interesting session!
  • The SIPCORE Working Group will discuss a draft about using DANE and DNSSEC for SIP-based Voice-over-IP (VoIP).
  • The TRANS Working Group will explore whether or not there is a role for Certificate Transparency (CT) to play with DNSSEC and/or DANE.
  • The HOMENET Working Group will discuss two different drafts relating to DNSSEC and customer-premise equipment (CPE) such as home wifi routers.

And a couple of other working groups may have DNSSEC-related discussions as well.  All in all it will be a very busy week at IETF 90!

Again, more details and links to all of the associated drafts can be found in the Rough Guide to IETF 90 article about DNSSEC.

If you aren’t able to actually be in Toronto, you still can participate remotely – see the IETF 90 Remote Participation page for more information about how you can join in to the discussions.

If you are in Toronto, please do feel free to say hello and introduce yourself.  You can pretty much expect to find me in all of these various DNSSEC-related sessions (and many of the IPv6-related sessions, too).

Jul 17

Administrative Update: Web site migrating to a new server

FYI, over the next few days we plan to be migrating this DNSSEC Deployment Initiative website to a new server on infrastructure supported by the Internet Society. During that time we don’t expect there to be any service disruptions, but for a brief period of time during the actual migration you may experience an issue with the validity of the TLS/SSL certificate as we switch to using a new certificate.

Please note that the “dnssec-deployment@dnssec-deployment.org” email discussion list will also be migrated to a new mailing list server.  While the address of the list will stay the same, the underlying SMTP headers will change by virtue of the move to a new server.  If you are a subscriber and are filtering or white-listing messages based on various SMTP headers, you may want to plan to update those filtering/white-listing rules once the list is migrated.

We will post an update when the migration has been completed.

Jul 16

Vint Cerf Pitches IPv6 On The Colbert Report

You wouldn’t necessarily expect to hear IPv6 mentioned on something as mainstream as Comedy Central’s “The Colbert Report“, but yes indeed, there was Stephen Colbert last night interviewing Vint Cerf, one of the co-fathers of the Internet and Google’s Chief Internet Evangelist. (And who also bears a striking resemblance to the “Architect” of the Matrix movies!) True to form, Vint skillfully worked in a reference to IPv6 and how we need to move to the new addresses.

UPDATE: We have been made aware that unfortunately these videos seem to only be available to viewers in the USA. There do not seem to be any other options for viewing the videos.

You can watch the full episode, or just the sections with Vint.  The IPv6 reference comes about in Part 2.

Part 1:

Part 2:

Great to see IPv6 get this mention… maybe a few more people will at least know what IPv6 is and why we need it. :-)

If you want to get started with IPv6, please visit our START HERE page to find resources aimed at your type of organization – and please let us know if you need more information!

Jul 16

Rough Guide to IETF 90: DNSSEC, DANE and DNS Security

Tuesday at IETF 90 seems to be "DNS Day" with two of the major DNS-related working groups, DNSOP and DANE, both meeting that day and addressing some major topics. There are, of course, other items related to DNSSEC and "DNS security" in general scattered throughout the week - let me walk through what the week looks like...

Dan York

Jul 15

Planning An Organizational Meeting In Early August 2014 (Curling in Keene)

Are you interested in bringing the sport of curling to Keene, NH, and the greater Monadnock region?  We are planning to have an organizational meeting in early August 2014 to bring together as many of the people who have already expressed interest – and hopefully more – to talk about the next steps we need to take to move forward with our vision and our plans.

We are finalizing a date and location – if you would like to be included please contact us so that we can be sure to let you know!

Jul 15

Planning An Organizational Meeting In Early August 2014 (Curling in Keene)

Are you interested in bringing the sport of curling to Keene, NH, and the greater Monadnock region?  We are planning to have an organizational meeting in early August 2014 to bring together as many of the people who have already expressed interest – and hopefully more – to talk about the next steps we need to take to move forward with our vision and our plans.

We are finalizing a date and location – if you would like to be included please contact us so that we can be sure to let you know!

Jul 15

TDYR #165 – Curling In July, And The Fun And Challenges of Arena Ice

Curling in July? I had that opportunity at the Union Ice Arena in Woodstock, VT, this past Sunday and in this episode I talk about that experience and discuss the challenges of curling on "arena ice"... I also mention our efforts to try to get curling happening in the Monadnock region of New Hampshire where Keene, NH, is located: http://monadnockcurling.org/

Jul 14

Live Video Stream of IGF-USA On Wednesday, July 16, 2014 (Featured Blog)

Coming up on this Wednesday, July 16, 2014, the 2014 Internet Governance Forum - USA (IGF-USA) will take place at George Washington University in Washington, DC. I'm told by one of the people involved that there are around 500 people currently registered to attend. The agenda looks quite amazing... If you are, like me, unable to attend in person, the good news is that we can follow along through a live video stream... More...

Jul 14

Live Video Stream of IGF-USA On Wednesday, July 16, 2014 (Featured Blog)

More...

Jul 14

China Telecom Completes IPv6 Test On 4G LTE Network

IPv6 BadgeBy way of a news release from ZTE Corporation we were pleased to read about China Telecom’s recent successful testing of IPv6 capabilities on its 4G/LTE network in the Hunan province of China.  Given that LTE has been a huge area of growth for IPv6 globally, such as the recent measurement of Verizon Wireless’ network as having over 50% IPv6 deployment, we certainly see LTE as one of the first ways that many people will receive IPv6 in a mobile environment.

Given that ZTE Corporation is a equipment vendor their news release naturally explains how they helped China Telecom, but overlooking the marketing for a moment there are some useful data points in the news release:

The comprehensive weeklong test involved trial users and covered IPv4/IPv6 single- and dual-stack services, billing systems and backend IT infrastructure systems, demonstrating China Telecom’s 4G LTE network to be IPv6-ready.

<snip>

As China Telecom rolls out 4G LTE services nationwide, IPv6 will help the operator manage the anticipated explosion in demand for new IP addresses. Becoming IPv6-ready is a key part of China Telecom’s plans for wider 4G LTE network deployments.

<snip>

This successful IPv6 test fully verified the IPv6/IPv4 dual-stack capabilities of China Telecom’s 4G LTE network in Hunan, laying a solid foundation for the operator’s plans for wider deployment of 4G and other next-generation services in the future.

All great to see.  Beyond a “test”, of course, we look forward to seeing the full deployment of IPv6 across China Telecom’s 4G LTE network!

Are you looking to get started with deploying IPv6?  Or just simply understanding more about IPv6?  Please see our “Start Here” page to find resources focused on your type of organization – and please let us know if you need even more information.