Dan York

Just a guy in Vermont trying to connect all the dots...

Author's posts

Call for Participation – ICANN 64 DNSSEC Workshop in Kobe, Japan – March 2019

The DNSSEC Deployment Initiative and the Internet Society Deploy360 Programme, in cooperation with the ICANN Security and Stability Advisory Committee (SSAC), are planning a DNSSEC Workshop during the ICANN64 meeting held from 09-14 March 2019 in Kobe, Japan. The DNSSEC Workshop has been a part of ICANN meetings for several years and has provided a forum for both experienced and new people to meet, present and discuss current and future DNSSEC deployments.

For reference, the most recent session was held at the ICANN Annual General Meeting in Barcelona, Spain, on 24 October 2018. The presentations and transcripts are available at: https://63.schedule.icann.org/meetings/901549https://63.schedule.icann.org/meetings/901554, and https://63.schedule.icann.org/meetings/901555.

At ICANN64 we are particularly interested in live demonstrations of uses of DNSSEC, DS automation or DANE. Examples might include:

  • DNSSEC automation and deployment using CDS, CDNSKEY, and CSYNC
  • DNSSEC/DANE validation in browsers and in applications
  • Secure email / email encryption using DNSSEC, OPENPGPKEY, or S/MIME
  • DNSSEC signing solutions and innovation (monitoring, managing, validation)
  • Tools for automating the generation of DNSSEC/DANE records
  • Extending DNSSEC/DANE with authentication, SSH, XMPP, SMTP, S/MIME or PGP/GPG and other protocols

Our interest is to provide current examples of the state of development and to show real-world examples of how DNSSEC and DANE related innovation can be used to increase the overall security of the Internet.
We are open to presentations and demonstrations related to any topic associated with DNSSEC and DANE. Examples of the types of topics we are seeking include:

1. DNSSEC Panel (Regional and Global)

For this panel, we are seeking participation from those who have been involved in DNSSEC deployment in the region and also from those who have not deployed DNSSEC but who have a keen interest in the challenges and benefits of deployment. In particular, we will consider the following questions: Are you interested in reporting on DNSSEC validation of your ISPs? What can DNSSEC do for you? What doesn’t it do? What are the internal tradeoffs to implementing DNSSEC? What did you learn in your deployment of DNSSEC? We are interested in presentations from both people involved with the signing of domains and people involved with the deployment of DNSSEC-validating DNS resolvers.

2. DS Automation

We are looking at innovative ways to automate the parent child synchronization CDS / CDNSKEY and methods to bootstrap new or existing domains. We are also interested in development or plans related to CSYNC, which are aimed at keeping the glue up to date.
We would like to hear from DNS Operators what their current thoughts on CDS/CDNSKEY automation are.

3. DNSSEC/DANE Support in the browsers

We would be interested in hearing from browser developers what their plans are in terms of supporting DNSSEC/DANE validation.

4. DANE Automation

For DNSSEC to reach massive deployment levels it is clear that a higher level of automation is required than is currently available. There also is strong interest for DANE usage within web transactions as well as for securing email and Voice-over-IP (VoIP). We are seeking presentations on topics such as:

  • How can the industry use DANE and other DNSSEC applications as a mechanism for creating a more secure Internet?
  • What tools, systems and services are available to help automate DNSSEC key management?
  • Can you provide an analysis of current tools/services and identify gaps?
  • What are some of the new and innovative uses of DANE and other DNSSEC applications in new areas or industries?
  • What tools and services are now available that can support DANE usage?

We would be particularly interested in any live demonstrations of DNSSEC / DANE application automation and services. Demonstrations of new tools that make the setup of DNSSEC or DANE more automated would also be welcome.

If you are interested in participating, please send a brief (1-2 sentence) description of your proposed presentation to
dnssec-kobe@isoc.org  before ** 07 February 2019 **

We hope that you can join us.
Thank you,
Kathy Schnitt

On behalf of the DNSSEC Workshop Program Committee:
Jean Robert Hountomey, AfricaCERT
Jacques Latour, .CA
Russ Mundy, Parsons
Ondřej Filip, CZ.NIC
Yoshiro Yoneya, JPRS
Dan York, Internet Society
Mark Elkins, DNS/ZACR

Call for Participation – ICANN DNSSEC Workshop at ICANN64 in Kobe, Japan

ICANN 64 - image from ICANN

Will you be at the ICANN 64 meeting in March 2019 in Kobe, Japan? If so (or if you can get to Kobe), would you be interested in speaking about any work you have done (or are doing) with DNSSEC, DANE or other DNS security and privacy technologies?  If you are interested, please send a brief (1-2 sentence) description of your proposed presentation to dnssec-kobe@isoc.org before  07 February 2019.


Call for Participation

The DNSSEC Deployment Initiative and the Internet Society Deploy360 Programme, in cooperation with the ICANN Security and Stability Advisory Committee (SSAC), are planning a DNSSEC Workshop during the ICANN64 meeting held from 09-14 March 2019 in Kobe, Japan. The DNSSEC Workshop has been a part of ICANN meetings for several years and has provided a forum for both experienced and new people to meet, present and discuss current and future DNSSEC deployments.

For reference, the most recent session was held at the ICANN Annual General Meeting in Barcelona, Spain, on 24 October 2018. The presentations and transcripts are available at: https://63.schedule.icann.org/meetings/901549https://63.schedule.icann.org/meetings/901554, and https://63.schedule.icann.org/meetings/901555.

At ICANN64 we are particularly interested in live demonstrations of uses of DNSSEC, DS automation or DANE. Examples might include:

  • DNSSEC automation and deployment using CDS, CDNSKEY, and CSYNC
  • DNSSEC/DANE validation in browsers and in applications
  • Secure email / email encryption using DNSSEC, OPENPGPKEY, or S/MIME
  • DNSSEC signing solutions and innovation (monitoring, managing, validation)
  • Tools for automating the generation of DNSSEC/DANE records
  • Extending DNSSEC/DANE with authentication, SSH, XMPP, SMTP, S/MIME or PGP/GPG and other protocols

Our interest is to provide current examples of the state of development and to show real-world examples of how DNSSEC and DANE related innovation can be used to increase the overall security of the Internet.
We are open to presentations and demonstrations related to any topic associated with DNSSEC and DANE. Examples of the types of topics we are seeking include:

1. DNSSEC Panel (Regional and Global)

For this panel, we are seeking participation from those who have been involved in DNSSEC deployment in the region and also from those who have not deployed DNSSEC but who have a keen interest in the challenges and benefits of deployment. In particular, we will consider the following questions: Are you interested in reporting on DNSSEC validation of your ISPs? What can DNSSEC do for you? What doesn’t it do? What are the internal tradeoffs to implementing DNSSEC? What did you learn in your deployment of DNSSEC? We are interested in presentations from both people involved with the signing of domains and people involved with the deployment of DNSSEC-validating DNS resolvers.

2. DS Automation

We are looking at innovative ways to automate the parent child synchronization CDS / CDNSKEY and methods to bootstrap new or existing domains. We are also interested in development or plans related to CSYNC, which are aimed at keeping the glue up to date.
We would like to hear from DNS Operators what their current thoughts on CDS/CDNSKEY automation are.

3. DNSSEC/DANE Support in the browsers

We would be interested in hearing from browser developers what their plans are in terms of supporting DNSSEC/DANE validation.

4. DANE Automation

For DNSSEC to reach massive deployment levels it is clear that a higher level of automation is required than is currently available. There also is strong interest for DANE usage within web transactions as well as for securing email and Voice-over-IP (VoIP). We are seeking presentations on topics such as:

  • How can the industry use DANE and other DNSSEC applications as a mechanism for creating a more secure Internet?
  • What tools, systems and services are available to help automate DNSSEC key management?
  • Can you provide an analysis of current tools/services and identify gaps?
  • What are some of the new and innovative uses of DANE and other DNSSEC applications in new areas or industries?
  • What tools and services are now available that can support DANE usage?

We would be particularly interested in any live demonstrations of DNSSEC / DANE application automation and services. Demonstrations of new tools that make the setup of DNSSEC or DANE more automated would also be welcome.

If you are interested in participating, please send a brief (1-2 sentence) description of your proposed presentation to
dnssec-kobe@isoc.org  before ** 07 February 2019 **

We hope that you can join us.
Thank you,
Kathy Schnitt

On behalf of the DNSSEC Workshop Program Committee:
Jean Robert Hountomey, AfricaCERT
Jacques Latour, .CA
Russ Mundy, Parsons
Ondřej Filip, CZ.NIC
Yoshiro Yoneya, JPRS
Dan York, Internet Society
Mark Elkins, DNS/ZACR

The post Call for Participation – ICANN DNSSEC Workshop at ICANN64 in Kobe, Japan appeared first on Internet Society.

Introducing a new software platform that offers improved Chapter management functionality and much more

On 31 January, 2019, we will be launching our new association management software (AMS) that will offer many new capabilities to Internet Society members and Chapters.

During the roll-out of the new platform, the current AMS will be offline for several days (details below).

Internet Society members will be familiar with our current AMS if you have ever clicked on the “Member Login” link in the upper right corner of this web page. You also used the AMS if you logged into our Connect member forums or took an online course using our Inforum system. Chapter leaders have become very familiar with our AMS over the years, as it is the way they have interacted with their members and performed administrative functions for the Chapter.

Due to some functional limitations with the current AMS, we are replacing the system with a new AMS that will provide:

  • A more modern system with enhanced functionality and user interface
  • Core chapter management functionality to meet long-standing requirements/requests of our chapters
  • Improved global/regional performance, particularly in low-bandwidth environments, through the use of a content delivery network (CDN)
  • Events management capabilities
  • Complete server and software management by the vendor – consistent and timely updates/upgrades to both servers and product code base
  • Improved data security and overall system security with enterprise-class data centres

We are very excited by the capabilities and how this new AMS will enable both our staff and our Chapters to be better able to communicate effectively with our members. This will help us all speak globally with a stronger voice, as well as enable you to deliver the services locally you need to in order to achieve your objectives.

In order to make this migration happen successfully, we will take our current AMS offline for several days. The downtime will begin at 22:00 UTC on Friday, 25 January and may extend to 22:00 UTC on Friday, 1 February.

During this time, our member portals will not be accessible.

The sites affected are:

All of our other websites will continue their normal operations.

The downtime will have the following impacts:

  • People will not be able to join as new members.
  • Current members will not be able to update their information or join chapters or SIGs.
  • Members will not be able to login to Connect and access forums or the Connect event calendar.
  • Chapters using Connect for communication will not be able to send messages to their chapter members.
  • Members will not be able to participate in any of the self-paced online courses offered through Inforum.
  • We will not be able to accept any individual donations.

We want to minimize the downtime and hope that we will be able to bring the new system online before the 31 January launch date. As soon as we do, members will be able to resume these activities.

If you have further questions, please reach out to the transition team at amshelp@isoc.org

We look forward to providing you with a new and improved system serving our members and Chapters.

The post Introducing a new software platform that offers improved Chapter management functionality and much more appeared first on Internet Society.

Who Played a Major Role in Advancing the Internet? Nominations Open for 2019 Internet Hall of Fame (Featured Blog)

Do you know someone who has played a major role in the development and advancement of the Internet? Now is the time to recognize their contribution. Nominate them for the 2019 Internet Hall of Fame. With more than 100 inductees, the Internet Hall of Fame celebrates Internet pioneers and innovators who have pushed the boundaries to bring the Internet to life and make it an essential resource for billions of people today. More...

Who Played a Major Role in Advancing the Internet? Nominations Open for 2019 Internet Hall of Fame (Featured Blog)

Do you know someone who has played a major role in the development and advancement of the Internet? Now is the time to recognize their contribution. Nominate them for the 2019 Internet Hall of Fame. With more than 100 inductees, the Internet Hall of Fame celebrates Internet pioneers and innovators who have pushed the boundaries to bring the Internet to life and make it an essential resource for billions of people today. More...

Who played a major role in advancing the Internet? Nominations open for 2019 Internet Hall of Fame (Featured Blog)

More...

TDYR 359 – My 3 Words for 2019

As I have for the past 10 years, I started off the year talking about my "3 words" for 2019 - the areas in which I intend to focus. You can read more here: https://www.danyork.com/2019/01/my-3-words-for-2019.html

My 3 Words for 2019

3words2019

As I have now done every year since 2010 (see past years), here are three words that I aspire to be the "themes" of my activity this year.

You'll note that these are really quite similar to my 3 words for 2018 - and in truth I think 2019 is really a continuation of everything in 2018 that was left undone with the severe disruption and chaos of both: 1) uprooting our family to move to Vermont; and 2) the unwelcome guest of colon cancer.  I am SO ready to put a period at the end of the sentence of 2018 … and move on to what will be hopefully better chapters within 2019!

HEALTH

Last year I said that my health needed to be a focus - and the colonoscopy was part of that… but with all that insanity, there is much still left to do. I’m sadly now almost back up to the unhealthy weight I was in 2010. The dental issues that were there a year ago continue to be with me. And now we need to find all new doctors, dentists, vision centers, etc. It’s got to be a priority - as we do only have one body. And I’d like to be around for a while!

VOICE

2018 was a year when I continued to struggle with writing consistently. It’s so easy to NOT write or produce other kinds of content because…. work responsibilities, family logistics, the time suck of social media… and… and… and… there’s a million reasons. Toward the end of the year I started to write more, but it was in part to get myself back in the regular practice of creating content.

In 2019 I’d like to not only write more, but also find a bit more of the stronger “voice” I used to have in my writing and speaking. I want to be a stronger and more vocal voice for an open Internet - and for an Internet that works for us rather than for mega-corporations, platforms and governments. My challenge is to carve out the time to do the writing and the research and to speak and more.

FRIENDSHIPS

As I wrote last year, I'm finding that I'm communicating with a large number of people, but not necessarily connecting with people on a deeper level. This has certainly been highlighted with our move to Vermont. Beyond just “connections”, I’m looking at 2019 as a time to truly spend more time with friends - and for investing the time to develop new friendships in this beautiful part of the world to which we have moved. Nurturing friendships, both new and old, does definitely take time and energy - and I intend for it to be a priority this year.

That's what I am thinking about for this year... what about you?

P.S. Another life goal for this year - I want to be able to go into a Tim Hortons in Quebec and order a meal entirely en Francais! I’ve been dabbling in learning more French over the past years, but this year I want to be able to at least go in and order a double chocolate donut, a sandwich and a tea! ;-) Particularly since we are winding up in Quebec a good bit for curling and other travel.

P.P.S. And yeah, if I’m serious about “health”, I shouldn’t be ordering double chocolate donuts, right? But hey, every once in a while is okay, right? 


An audio version of this post (with more commentary) is available on SoundCloud:

"Hipster Ipsum" may be my new favorite Lorem Ipsum generator

Hipster ipsum

I may have just found my new favorite "Lorem ipsum" text generator - HIPSTER IPSUM!

https://hipsum.co/

For the longest time, my choice when I just needed some columns to fill in with filler text[1] was Bacon Ipsum, which is always fun. The companion to that is of course Veggie Ipsum

But now I think I may indeed use "hipster ipsum". I mean... I just smile when I read through the text. :-)

P.S. I noticed in searching today that there is a WordPress plugin (of course!) called "AnyIpsum" that lets you create your own lorem impsum generator.


[1] Why do I need filler text? When I'm working on a web design, it is often helpful to have some text in the columns and text blocks so that you can see what they look like with text in them. You can of course read more about the history of "Lorem ipsum" on Wikipedia.

Watch: the 2018 "State of the Word" from WordCamp US

Tonight in Nashville, Matt Mullenweg delivered his "State of the Word" presentation at WordCamp US. Not being there in person, I watched the live stream. The recorded stream has about 28 minutes of various quotes that were displayed. Matt starts at shortly after the 28-minute mark:

He shows some very cool ways that Gutenberg can work. Starting at around 54 minutes, Matt moves into showing what the next phases of Gutenberg will be. In a "Phase 2" during 2019, more of the admin interface will be moved into blocks. Phase 3 (2020 at the earliest) will be about collaboration, multiuser editing and workflows. Phase 4 (later) will be about having an official multilingual interface.

And then around the 1:12:00 mark, he mentions a fantastic statistic that over 57% of WordPress sites were using HTTPS (i.e. TLS):

Wordpress and https

Matt goes on with much more information about the WordPress community, more developements - and then finally concludes "The State of The Word" at around the 1:21:00 mark and moves into questions... of which there was about another 45 minutes of long discussions and questions.