October 2014 archive

Deadline of Oct 31 to Register for IAB Workshop on Stack Evolution in a Middlebox Internet (Featured Blog)

Can we develop better transport protocols for communication across the Internet? In a world where the "end-to-end" principle is no longer certain and middleboxes are common, which paths through the Internet are actually available to applications? Which transports can be used over these paths? How can applications cooperate with network elements to improve path establishment and discovery? ... These are all questions posed for the Internet Architecture Board's (IAB) Workshop on Stack Evolution in a Middlebox Internet (SEMI). Taking place in Zürich, Switzerland from 26-27 January, 2015. More...

Deadline of Oct 31 To Register For IAB Workshop On Stack Evolution In A Middlebox Internet (Featured Blog)


FIR On Technology Episode 2 Is All About Known And The IndieWeb

FIR On Technology Episode 2 Is All About Known And The IndieWeb

1 min read

Yesterday I published episode 2 of "FIR On Technology with Dan York" where I spoke with overall FIR co-host Shel Holtz about Known and the IndieWeb.  In the 44 minutes we covered a wide range of topics.  The web page for the episode contains a long list of links to articles and sites we discussed.

Comments are very definitely welcome!

TDYR 178 – The Challenge Of Accepting Compliments

Do you struggle with accepting compliments? I find it hard and tend to dismiss or diminish what it is I am being praised for... but in so doing I have come to realize I am also dismissing and diminishing the person giving the compliment. This is something I've been working on...

It Is So Easy To Choose To NOT Go For A Run

Toronto runA true story - I wrote this email at about 5:00am at a recent conference where I had told someone that I would meet for a run at 6:00am:


Unfortunately I completely forgot about the <meeting> from 8-9am ... and since I also have to pack up to check out of the hotel as I'm flying home tonight, as well as get out some messages/posts *before* the meeting... there's just no way I can also fit in a run. :-(

If you get this before going out and could just fire back a quick acknowledgement that would be great. If I don't hear from you I'll be standing down in the lobby at 6am NOT in my running clothes.


I was about to hit the Send button.

My cursor was poised over the send icon button at the top of the message window on my MacBook Pro. All I had to do was tap my finger and the message would be off.

But I paused...

... and as I read that message and re-read it again and again... it just seemed like a really weak excuse.

There will always be reasons to NOT go for a run.

As I thought about it, I realized that if I were truly honest with myself some of those posts and messages that seemed so urgent to send off before the 8:00am meeting... really could wait a bit. Sure, it would be great to get them off first thing... but it wouldn't be the end of the world if they were published/sent a few hours later.

And I realized again that it is easy to NOT prioritize exercise and running.

And that it is all about the choices we make in every moment of our lives.

And that I had a choice right then that would define what were my priorities.

I paused.

And then I chose to NOT send that message!

I did get into my running clothes... and I was down in the hotel lobby at 6:00am... and it turned out that there was a group of about 8 runners who gathered there... and we all went out for a great 3.8 mile run!

And I felt great after doing that!

We all have choices. We choose whether to exercise - or not.

P.S. The photo with this post is one I took on a morning run in Toronto during an IETF meeting. My hard-core, ultra-marathon-runner friend Hannes took it easy and joined us slow runners for a nice run along the harbor front... that's him in the orange. :-)


The FIR Podcast Network

FIR On Technology Episode 2 - Known and the IndieWeb

The awesome beauty of autumn…

The awesome beauty of autumn...

A Japanese maple leaf seen while walking my daughter to school...

TDYR #177 – Watching Spacecraft Dock – The Amazing Power of The Internet

This morning I was reminded of the awesome power of the Internet to enable us to see and experience events from far away. For a few moments I watched the Russian Progress 57 spacecraft dock with the International Space Station... all live and in HD video... and all from the comfort of my home... https://blogs.nasa.gov/spacestation/2014/10/29/new-progress-resupply-craft-arrives-at-station/ It was a time when I was just reminded of the amazing power of the Internet to connect us all!

Please Take This DNSSEC Survey To Help Understanding of Value, Obstacles, Priorities

DNSSEC badgeDo you have a few minutes to answer a 12 question survey about your views on DNSSEC?  Tim Rooney over at BT Diamond IP has launched a survey to try to gather data around viewpoints on DNSSEC deployment. As Tim says in his blog post announcing the survey:

BT Diamond IP is sponsoring a DNSSEC survey to gather input from DNS and network administrators regarding their opinions about the value of DNSSEC, potential obstacles to implementation, and relative priority of deployment. And you are hereby invited to participate! The survey consists of twelve questions plus a thirteenth if you’d like to enter your contact information to be entered for a drawing for a $100 VISA gift card. The survey will remain open through November 3, 2014, after which we will compile the results and publish a free survey report.

I’ve taken the survey myself and agree that it would be useful to have data around the different questions asked.  Obviously this is a “self-selected” survey in the sense that only people who learn about it will fill out the survey… and odds are that they will probably learn about it through channels like this one (our blog) where they might already be interested in DNSSEC.

Still, I think the results will be helpful in gaining some understanding of what people are thinking about with regard to DNSSEC deployment.

If you have a few minutes, please take the survey.

And yes, obviously BT Diamond IP is not doing this entirely altruistically… they do hope to gain some leads for their own business… but if you don’t want to give them your contact information simply do not fill out the 13th optional question (and I didn’t).  The overall statistics could be quite helpful!

And if you want to get started deploying DNSSEC today, please visit our Start Here page to find resources targeted at your type of organization or role.

Watch LIVE Today: ION Santiago – IPv6, DNSSEC, BGP, TLS, BCOP and more…

ION SANTIAGOStarting in just about five hours at 2:00pm CLST (15:00 UTC) our ION Santiago event will be streaming live out of Chile.  We’ll be sharing the very latest news about IPv6, DANE, BGP security, Anti-spoofing, TLS, Best Current Operational Practice (BCOP) efforts, and standards within the IETF.

You can watch the event using the LACNIC 22 webcasting page. Here is the full ION Santiago agenda:

2:00 PM

Opening Remarks

Chris Grundemann (Internet Society)

2:10 PM

What’s Happening at the IETF? Internet Standards and How to Get Involved

Alvaro Retano (Cisco)

What’s happening at the Internet Engineering Task Force (IETF)? What RFCs and Internet-Drafts are in progress related to IPv6, DNSSEC, Routing Security/Resiliency, and other key topics? We’ll give an overview of the ongoing discussions in several working groups and discuss the outcomes of recent Birds-of-a-Feather (BoF) sessions, and provide a preview of what to expect in future discussions, including bringing the IETF to Latin America in 2016.

2:40 PM

Operators & the IETF

Chris Grundemann (Internet Society)

The Internet Society is seeking to foster a larger and more engaged network operator community around the IETF and protocol development work. We conducted a widespread survey of network operators from January to July 2014 and are now analyzing and synthesizing the results. In this session, we’ll discuss the initial survey results and our next steps to create a report and IETF Internet-Draft that outlines the challenges to greater operator engagement in the IETF and a summary of potential solutions.

2:55 PM

Beyond the Tipping Point: Global Connectivity Two Years After World IPv6 Launch

Arturo L. Servin Niembro (Google) and Carlos Martinez Cagnazzo (LACNIC)

6 June 2014 marked the 2nd anniversary of World IPv6 Launch, when thousands of Internet Service Providers, home networking equipment manufacturers, and web companies around the world came together to permanently enable IPv6 on their products and services. Where are we now on the path to full global IPv6 adoption? We’ll provide a global update and then focus on the current state of IPv6 adoption in South America, including a brief tour of the resources available from the Internet Society to help networks of all sizes get IPv6 up and running for good. We will also explore how those who have already deployed IPv6 can help the larger community by adding even more content to the repository.

3:25 PM

Best Current Operational Practices Update

Jan Zorz (Internet Society)

The Internet Engineering Task Force (IETF) standardizes the protocols and services that vendors implement and network operators are supposed to deploy and use. We believe there is an opportunity to better identify, capture, and promote best current operational practices emerging from various regional network operators’ groups. We believe sharing these documents across the globe would benefit the wider Internet community and help more operators deploy new technologies like IPv6 and DNSSEC faster and easier. Deploy360’s Jan Zorz will give an update on this progress, discuss the status of BCOP efforts across the world, and give an overview of some of the documents in the process so far.

3:35 PM


4:00 PM

Panel: Routing Around Catastrophe – Securing BGP, Anti-spoofing, and More

Moderator: Christian O’Flaherty. Panelists: Rodrigo Arenas (NIC CL); Wes Hardaker (PARSONS); Max Larson Henry (Transversal); Gerardo Rada (LACNIC).

How do we improve the resilience and security of the Internet’s underlying routing infrastructure? While Internet routing has worked well over the years, there have been instances where errors and misconfigurations have caused stability issues. Malicious attackers have also created denial of service attacks and other issues by spoofing IP addresses and manipulating routing tables. What are the best practices we can use to help mitigate these kind of attacks?

In this session, our panel of experts will address technologies such as BCP 38, anti-spoofing, and BGP security efforts that can help secure the routing infrastructure. They will also consider the Internet Society’s new Routing Manifesto, which aims to introduce a minimum set of security measures which, if deployed on a wide scale, could result in visible improvements to the security and resilience of the global routing system.

5:00 PM

Lock it Up: TLS for Network Operators

Chris Grundemann (Internet Society)

Transport Layer Security (TLS), the successor to Secure Sockets Layer (SSL), can be used in many applications other than Web browsers. In order to make the Internet more secure, TLS needs to be widely deployed by all kinds of applications across the Internet. In this session, we will help network operators understand how best to support the use of TLS-encrypted applications across their networks and address how operators can best support their networks and users once everything is encrypted.

5:30 PM

DANE: The Future of Transport Layer Security (TLS)

Wes Hardaker (PARSONS)

If you connect to a “secure” server using TLS/SSL (such as a web server, email server or xmpp server), how do you know you are using the correct certificate? With DNSSEC now being deployed, a new protocol has emerged called “DANE” (“DNS-Based Authentication of Named Entities“), which allows you to securely specify exactly which TLS/SSL certificate an application should use to connect to your site. DANE has great potential to make the Internet much more secure by marrying the strong integrity protection of DNSSEC with the confidentiality of SSL/TLS certificates. In this session, Wes will explain how DANE works and how you can use it to secure your websites, email, XMPP, VoIP, and other web services.

6:00 PM

Closing Remarks

Chris Grundemann (Internet Society)

Join us TODAY for what should be an excellent set of sessions!

And if you want to get started now with deploying these technologies, please visit our “Start Here” page to find resources targeted at your type of organization or role.

The post Watch LIVE Today: ION Santiago – IPv6, DNSSEC, BGP, TLS, BCOP and more… appeared first on Internet Society.