Just a guy in Vermont trying to connect all the dots...
Dan York
Author's posts
Mar 03
Heading to Marrakech for ICANN 55 and Africa DNS Forum 2016
At about noon today I'll head out of Keene, NH, towards Boston's Logan airport to start what will be about 23 hours of travel bringing me to Marrakech, Morocco. I land tomorrow (Friday, 4 March) around 4:00pm local time and then after getting settled in that evening will dive directly into the Africa DNS Forum at 8:30am Saturday morning.
It's going to be a crazy week!
I wrote about all the activities I'll be part of in this post:
I will be giving five different presentations during the week, all of which will be live streamed and recorded. Naturally I'll be participating in a good number of other sessions.
These are all part of a larger set of meetings that we at the Internet Society will be engaged in during the week at both ICANN 55 and the Africa DNS Forum. There are some very large "Internet governance" issues that will be at play this week, as my colleague Konstantinos Komaitis wrote about:
Tuesday, March 8th, is also International Women’s Day, and we’ll be publishing content around the excellent work of women in the world of technology.
We have a significant amount of communication being planned around all of these different events, sessions and announcements.
Being part of the Internet Society Communications team, I will be heavily involved in creating a good bit of our content and distributing it out over our social channels. All of that will be visible publicly here:
- Internet Society blog posts related to ICANN 55 on the main ISOC blog and on the Deploy360 blog.
- Twitter: @InternetSociety, @ISOCPolicy and @Deploy360
- Facebook: Internet Society Page
- Google+: Internet Society Page
and of course on my own personal social network channels.
It’s going to be a busy time. One question people have asked me is:
Will you get to see anything of Marrakech?
The answer, sadly, is... probably NOT.
As typically happens at events like this, I'm going to land at the airport in Marrakech and be transported by a driver to a "hotel compound" outside of Marrakech. The Palmeraie Conference Center is a big place with multiple hotels and all sorts of restaurants... a golf course, pools, etc.
The sad reality is that I will probably spend my entire week there within the compound in the conference rooms until I leave for my flight home on the afternoon of Thursday, March 10. I understand there is some kind of "gala" social event.. but again it may be in the same compound.
We'll see... some of the photos online seem amazing... hopefully I'll get a chance somewhere in there.
I'm excited about the events that will be happening at the meetings at Marrakech and looking forward to meeting many of the people there.
If you are going to be there in Marrakech for either ICANN 55 or the Africa DNS Forum, please do say hello!
And if you are not, but are interested in what is going on at the events, please see our event pages to find the live streams to participate remotely:
So here I go... on the road to Marrakech....
Image credit: Sofiane BELGHALI on Flickr CC BY NC
Mar 02
Next Monthly DNSSEC Coordination Call On March 24, 2016
For those who participate in the monthly “DNSSEC Coordination” calls where we discuss activities around accelerating the deployment of DNSSEC, there will NOT be a call tomorrow, March 3, as there would normally be (the first Thursday of the month).
On our last call in February we noted that:
- on March 3rd, many of us will be in transit to Marrakech for ICANN 55; and
- on April 7th, many of us will be in Buenos Aires for IETF 95.
We therefore decided to:
- Cancel the monthly call on March 3.
- Cancel the monthly call on April 7.
- Hold instead a call on Thursday, March 24, at the usual time of 11:00 US Eastern which will be 15:00 UTC.
Details for the conference call will be sent out as we get closer to March 24.
Note: if you would like to participate in these monthly calls, please join the dnssec-coord mailing list. All who want to accelerate the deployment of DNSSEC and DANE are welcome to join.
Mar 02
Decoding the Cellular IoT Acronym Alphabet Soup (Featured Blog)
Do you know what all these acronyms and abbreviations mean related to cellular networks and the Internet of Things (IoT)? MTC, Cat-0, Cat-1, Cat-M1, LTE-M, NB-IoT, EC-GSM, LPWA, eDRX, PSM... I certainly didn't, but Tuomas Tirronen at Ericsson Research wrote a blog post titled "Cellular IoT alphabet soup" where he explained all of this for those of us who might be interested. More...
Mar 02
DNSSEC and DANE Activities at ICANN 55 and Africa DNS Forum in Marrakech March 5-10
Starting this Friday, March 4, I’ll be in Marrakech, Morocco, for a great bit of DNS security discussions at two events:
- the Africa DNS Forum 2016 and
- the 55th meeting of the Internet Corporation for Assigned Names and Numbers (ICANN).
There will be some great introductions to DNSSEC and DANE – and some outstanding technical presentations on Wednesday. Two important changes from previous ICANN meetings:
- The “DNSSEC For Everybody” tutorial is now on Sunday instead of the usual Monday.
- The “DNSSEC Workshop” will be live streamed over YouTube in addition to the usual Adobe Connect (links are included below).
You can also follow along live on most social networks using these hashtags: #AfricaDNSForum, #ICANN55, #DNSSEC.
I also note at the end of the schedule below that I’ll be briefing ICANN staff and interested board members about the MANRS initiative to secure BGP and reduce IP spoofing as part of the Technical Experts Group (TEG) meeting at ICANN 55.
In addition to all of this technical and security work happening at ICANN 55, we at the Internet Society will also be extremely focused on the IANA Stewardship Transition process. Please read this post from my colleague Konstantinos Komaitis where he explains why this upcoming meeting will be such a critical milestone.
Here are the main activities – remote participation is available for all of them except one. Do note that all times are Western European Time (WET) which is the same as UTC.
Africa DNS Forum: Panel on DNS Tools
On Saturday, March 5, from 14:00 – 15:30 I will be talking about DNSSEC and DANE in a panel about “DNS and Internet Security Tools: DNSSEC, IPv6 and DANE“. The live stream will be available at:
http://livestream.com/internetsociety/africadnsforum2016
Africa DNS Forum: Panel on emerging trends in DNS security
On Sunday, March 6, from 11:00 – 12:45 my colleague Michuki Mwangi will be moderating a panel on “Emerging Trends in DNS Security“. The live stream will be available at:
http://livestream.com/internetsociety/africadnsforum2016
I will be in the audience listening to what looks to be a great set of panelists.
DNSSEC For Everybody: A Beginner’s Guide
On Sunday, March 6, we’ll have the regular “DNSSEC For Everybody: A Beginner’s Guide” session from 16:45 – 18:15 where we’ll do our “skit” dramatizing DNS and DNSSEC. If you have been seeking to understand WHY this all matters, do join in to see! You can watch it remotely (or watch the archive later) at:
https://meetings.icann.org/en/marrakech55/schedule/sun-dnssec-everybody
And yes, I’ll be talking about blue smoke as I usually do – and this time I get to have a role in the skit!
NOTE: This session has historically taken place on the Monday afternoon of each ICANN meeting, but it was changed to Sunday as of this meeting as ICANN is in the process of consolidating tutorials on the Sunday of the event.
DNSSEC Implementers Gathering
On Monday, many of us who have been involved with deploying DNSSEC or DANE will travel to a nearby restaurant for the “DNSSEC Implementers Gathering” for food, drink and conversation from 19:00-20:00 IST.
Many thanks to Afilias for sponsoring the event. This is the one event where there is no remote participation possible.
DNSSEC Workshop
As usual, the main event will be the DNSSEC Workshop on Wednesday, March 9, from 9:00 to 15:15 WET.
Remote participation information, slides, the agenda and more info can be found at:
https://meetings.icann.org/en/marrakech55/schedule/wed-dnssec
At the event the workshop will also be streamed live via YouTube at:
- Morning session: http://bit.ly/dnssec55am
- Afternoon session: http://bit.ly/dnssec55pm
The sessions will be recorded on both YouTube and Adobe Connect if you would like to listen to them later. Slides will be posted to the workshop page before the event begins.
Thank you to Afilias, CIRA, Dyn and SIDN for sponsoring the DNSSEC Workshop series in 2016.
The current agenda includes:
0900-0915 – DNSSEC Workshop Introduction, Program, Deployment Around the World – Counts, Counts, Counts
|
0915-0930 – Presentation: Update on the ‘Sunset’ of the DNSSEC Look-aside Validation Registry (DLV)
|
0930-1045 – Panel Discussion: DNSSEC Activities in the African Region
|
| 1045-1100 – Break |
1100-1130 –Presentation: DNSSEC SIGNER Switchover
|
1130-1200 – Presentation: DNSSEC At Scale
|
1200-1230 – Great DNS/DNSSEC Quiz
|
| 1230-1315 – Lunch Break |
1315-1415 – Panel Discussion: DNSSEC and Elliptic Curve Cryptography
|
1415-1500 – Panel Discussion: DNSSEC Root Key Signing Key (KSK) Rollover
|
1500-1515 – Presentation: DNSSEC – How Can I Help?
|
ICANN Board with Technical Experts Group
After the 6+ hours of the DNSSEC Workshop are over, I’ll then head over to the meeting of the Technical Experts Group (TEG) from 15:30 – 17:00 where will I will be participating in the discussions meant to advise the ICANN staff and interested ICANN Board members about emerging trends in technology. Toward the end of the session I will be presenting for about 15 minutes on the MANRS initiative to secure BGP and reduce IP spoofing in order to make the Internet’s routing infrastructure more resilient and secure.
Remote participation is available through the links found on the session page:
https://meetings.icann.org/en/marrakech55/schedule/wed-board-technical
If you will be there at either the Africa DNS Forum 2016 or ICANN 55 please do say hello – you can find me in these sessions… or drop me a note at york@isoc.org and we can arrange a time to connect.
And … if you want to get started with DNSSEC and DANE, please visit our Start Here page to find resources that can help!
The post DNSSEC and DANE Activities at ICANN 55 and Africa DNS Forum in Marrakech March 5-10 appeared first on Internet Society.
Mar 02
DNSSEC and DANE Activities at ICANN 55 and Africa DNS Forum in Marrakech March 5-10
Starting this Friday, March 5, I’ll be in Marrakech, Morocco, for a great bit of DNS security discussions at two events: the Africa DNS Forum 2016 and the 55th meeting of the Internet Corporation for Assigned Names and Numbers (ICANN).
Some great introductions to DNSSEC and DANE – and some outstanding technical presentations on Wednesday. Two important changes from previous ICANN meetings:
- The “DNSSEC For Everybody” tutorial is now on Sunday instead of the usual Monday.
- The “DNSSEC Workshop” will be live streamed over YouTube in addition to the usual Adobe Connect (links are included below).
You can also follow along live on most social networks using these hashtags: #AfricaDNSForum, #ICANN55, #DNSSEC.
I also note at the end of the schedule below that I’ll be briefing ICANN staff and interested board members about the MANRS initiative to secure BGP and reduce IP spoofing as part of the Technical Experts Group (TEG) meeting at ICANN 55.
In addition to all of this technical and security work happening at ICANN 55, we at the Internet Society will also be extremely focused on the IANA Stewardship Transition process. Please read this post from my colleague Konstantinos Komaitis where he explains why this upcoming meeting will be such a critical milestone.
Here are the main activities – remote participation is available for all of them except one. Do note that all times are Western European Time (WET) which is the same as UTC.
Africa DNS Forum: Panel on DNS Tools
On Saturday, March 5, from 14:00 – 15:30 I will be talking about DNSSEC and DANE in a panel about “DNS and Internet Security Tools: DNSSEC, IPv6 and DANE“. The live stream will be available at:
http://livestream.com/internetsociety/africadnsforum2016
Africa DNS Forum: Panel on emerging trends in DNS security
On Sunday, March 6, from 11:00 – 12:45 my colleague Michuki Mwangi will be moderating a panel on “Emerging Trends in DNS Security“. The live stream will be available at:
http://livestream.com/internetsociety/africadnsforum2016
I will be in the audience listening to what looks to be a great set of panelists.
DNSSEC For Everybody: A Beginner’s Guide
On Sunday, March 6, we’ll have the regular “DNSSEC For Everybody: A Beginner’s Guide” session from 16:45 – 18:15 where we’ll do our “skit” dramatizing DNS and DNSSEC. If you have been seeking to understand WHY this all matters, do join in to see! You can watch it remotely (or watch the archive later) at:
https://meetings.icann.org/en/marrakech55/schedule/sun-dnssec-everybody
And yes, I’ll be talking about blue smoke as I usually do – and this time I get to have a role in the skit!
NOTE: This session has historically taken place on the Monday afternoon of each ICANN meeting, but it was changed to Sunday as of this meeting as ICANN is in the process of consolidating tutorials on the Sunday of the event.
DNSSEC Implementers Gathering
On Monday, many of us who have been involved with deploying DNSSEC or DANE will travel to a nearby restaurant for the “DNSSEC Implementers Gathering” for food, drink and conversation from 19:00-20:00 IST.
Many thanks to Afilias for sponsoring the event. This is the one event where there is no remote participation possible.
DNSSEC Workshop
As usual, the main event will be the DNSSEC Workshop on Wednesday, March 9, from 9:00 to 15:15 WET.
Remote participation information, slides, the agenda and more info can be found at:
https://meetings.icann.org/en/marrakech55/schedule/wed-dnssec
At the event the workshop will also be streamed live via YouTube at:
- Morning session: http://bit.ly/dnssec55am
- Afternoon session: http://bit.ly/dnssec55pm
The sessions will be recorded on both YouTube and Adobe Connect if you would like to listen to them later. Slides will be posted to the workshop page before the event begins.
The current agenda includes:
0900-0915 – DNSSEC Workshop Introduction, Program, Deployment Around the World – Counts, Counts, Counts
|
0915-0930 – Presentation: Update on the ‘Sunset’ of the DNSSEC Look-aside Validation Registry (DLV)
|
0930-1045 – Panel Discussion: DNSSEC Activities in the African Region
|
| 1045-1100 – Break |
1100-1130 –Presentation: DNSSEC SIGNER Switchover
|
1130-1200 – Presentation: DNSSEC At Scale
|
1200-1230 – Great DNS/DNSSEC Quiz
|
| 1230-1315 – Lunch Break |
1315-1415 – Panel Discussion: DNSSEC and Elliptic Curve Cryptography
|
1415-1500 – Panel Discussion: DNSSEC Root Key Signing Key (KSK) Rollover
|
1500-1515 – Presentation: DNSSEC – How Can I Help?
|
ICANN Board with Technical Experts Group
After the 6+ hours of the DNSSEC Workshop are over, I’ll then head over to the meeting of the Technical Experts Group (TEG) from 15:30 – 17:00 where will I will be participating in the discussions meant to advise the ICANN staff and interested ICANN Board members about emerging trends in technology. Toward the end of the session I will be presenting for about 15 minutes on the MANRS initiative to secure BGP and reduce IP spoofing in order to make the Internet’s routing infrastructure more resilient and secure.
Remote participation is available through the links found on the session page:
https://meetings.icann.org/en/marrakech55/schedule/wed-board-technical
If you will be there at either the Africa DNS Forum 2016 or ICANN 55 please do say hello – you can find me in these sessions… or drop me a note at york@isoc.org and we can arrange a time to connect.
And … if you want to get started with DNSSEC and DANE, please visit our Start Here page to find resources that can help!
Mar 01
TDYR 294 – Cybersecurity session at EuroDIG 2015
Back on June 5, 2015, I participated in a session about cybersecurity at the European Dialogue on Internet Governance (EuroDIG) 2015 in Sofia, Bulgaria. I recently found the recording and decided to release it as it is still very relevant. The video of the session can be found at:
https://www.youtube.com/watch?v=xioLM6g737k&t=1h13m33s
Links referenced in the recording include:
http://www.eurodig.org/archives/eurodig15/
http://eurodigwiki.org/wiki/Cybersecurity:_bringing_the_puzzle_together
http://www.internetsociety.org/collaborativesecurity
http://www.manrs.org/
Feb 29
TDYR 293 – Will Facebook Instant Articles Help The Open Web… or Facebook’s Walled Garden?
Will Facebook's impending opening up of its "Instant Articles" on April 12 to ALL publishers of content help the "open web"? Or will it just keep more people inside of Facebook's shiny walled garden? In this episode I talk about all the questions I'm pondering on this important issue that I wrote about on my Disruptive Conversations site: http://www.disruptiveconversations.com/2016/02/do-facebook-instant-articles-support-the-open-web-or-facebooks-walled-garden.html
Feb 29
Do Facebook Instant Articles Support The Open Web… or Facebook’s Walled Garden?
Will Facebook's impending opening up of its "Instant Articles" on April 12 to ALL publishers of content help the "open web"? Or will it just keep more people inside of Facebook's shiny walled garden?
As Facebook's launch announcement says in part:
We built Instant Articles to solve a specific problem—slow loading times on the mobile web created a problematic experience for people reading news on their phones. This is a problem that impacts publishers of all sizes, especially those with audiences where low connectivity is an issue....
Facebook’s goal is to connect people to the stories, posts, videos or photos that matter most to them. Opening up Instant Articles will allow any publisher to tell great stories, that load quickly, to people all over the world. With Instant Articles, they can do this while retaining control over the experience, their ads and their data.
It sounds great on many levels and blogging pioneer Dave Winer has written passionately about "How Instant Articles helps the open web" (also published on Medium). He went on to document his Instant Articles (IA) feed and to talk about how his blog posts now automagically stream out to Facebook Instant Articles along with other services: Oh the places this post will go!
The beautiful part about Instant Articles is that it is based on good old RSS feeds ... and so with a few additions to the markup of your RSS feed you could be ready to go technically to start publishing Instant Articles. (There are a number of other steps you need to do, though.) Even better, and a point Dave definitely makes, Facebook Instant Articles will update when you make changes to your original text - something that doesn't happen with services (such as Medium) where you can syndicate your articles after you write them... but they don't update.
As Dave notes in "How IA happened from my point of view" by quoting me (in my comment left on Medium), I think this a great step in allowing publishers to easily get their content into Facebook's Instant Articles. My quote said:
"I have expected that Facebook would be focused on keeping everyone inside their shiny walled garden and thought I understood that Instant Articles involved putting your content on FB’s servers… which I now understand it *does*, but via caching of an RSS feed. Which is VERY cool!"
In my previous quick reading about Instant Articles, I had understood that it involved publishers loading their content onto Facebook's servers - and so I thought that we who publish would be forced to load our content onto FB's servers separate from our own websites.
In other words, I thought we would need to publish twice.
This, to me, would NOT support the "open web" that exists outside the big walled gardens of content that we are seeing now evolving.
I thank Dave for helping me understand that Facebook very nicely chose to base IA on the consumption of RSS feeds. This allows us as publishers to create our content once and syndicate it out to Facebook Instant Articles.
This is good and very much in line with the IndieWeb thinking around "POSSE - Publish (on your) Own Site, Syndicate Elsewhere" that I very much believe in. I applaud Facebook for making it so easy for content publishers to make our content available as Instant Articles.
BUT...
Is the existence of Instant Articles good for the open web?
Right now, when I post a link in Facebook to an article on one of my sites:
when people follow that link they view the article on MY site.
On MY web server, running somewhere out on the distributed, de-centralized and "open" web.
(Which, yes, is increasingly getting centralized in terms of content hosting providers, but let's leave that for a separate article. The point is that I currently do have multiple choices for where I host that content.)
People can interact with my site, see my content there, potentially leave comments there on the site, etc.
My site, and the content on that site, is not dependent on Facebook.
The key point about viewing Instant Articles is:
Reading "Instant Articles" keeps you ENTIRELY within Facebook's walled garden.
You read the Instant Articles inside of your Facbook mobile app. You comment and interact with the article inside of Facebook's app.
All the interaction happens within Facebook's mobile app.
Yes, as a publisher I can get analytics about my content, including via other services such as Google Analytics.
And yes, all the Instant Articles content is pulled in from my website out on the "open web". But while that content is pulled in using "open protocols",
the content is cached (stored) on Facebook's servers and made available through Facebook's own networks.
Over time publishers might start to ask:
Why not simply publish everything DIRECTLY inside of Facebook?
With Instant Articles, Facebook is already serving out my content from their servers... why don't I simplify my workflow even more by just publishing all my content natively inside of Facebook?
And if I were Facebook that would be what I would ultimately want. Even more content exclusively inside MY walled garden that would keep people staying inside those shiny walls.
Yes, User Experience Matters
Having said all of this, I do understand WHY Facebook is doing this beyond the obvious desire to keep people in their walled garden:
The mobile user experience of reading/viewing content has a HUGE need for improvement!
Even with the push by Google and many others to make the web "mobile-friendly" there is still a huge amount of room for improvement.
We need to speed up the "mobile web" and to improve the user experience.
Facebook is trying to do this with Instant Articles. Google is trying to do this with "Accelerated Mobile Pages (AMP)", which I'll be soon writing an article about. Apple would like to do this with Apple News.
All of those efforts, though, do speed up the mobile web ... but only for users of specific apps / browsers / etc.. Each of the efforts creates a better mobile user experience, but within their own walled gardens.
And I do understand that from Facebook's point of view the mobile user experience isn't as seamless as it could be when people are in the Facebook app and then follow a link out to a completely different look-and-feel and a completely different user experience.
It can be jarring. And it may not work all that well.
Instant Articles will bring a significantly better user experience to users of the Facebook mobile apps.
As a user of those Facebook apps, I can see that being a good thing. Admittedly I sometimes do not follow links I see in my NewsFeed because I know from experience that the site linked to loads slowly and I don't have time at that moment to wait to view that article. I want to see it NOW.
But is the price of a better user experience worth the continued centralization of content within large walled gardens?
And will anyone really care... as long as they can read their article as fast as possible?
Will I Publish Through Facebook Instant Articles?
Of course!
I'm not stupid! The reality is that right now a huge amount of the audience I want to reach is within Facebook's shiny walled garden - and uses Facebook's NewsFeed as a primary way of getting much of their content. I am there myself and do get a large number of links that I visit on a daily basis through what I see in my Facebook NewsFeed.
Like Dave Winer already does, I'm working to see what I can do to make at least a few of my sites accessible via Instant Articles by the April 12 launch. (For instance, I see WordPress plugins for IA already emerging and FB themselves provides some guidance for content management systems.)
I'll do it because my end goal is to get my content seen by the people who I want to reach.
And right now, Facebook is the way that so many people consume content.
I have to go where the conversation is happening.
Do I worry, though, about the long-term effects this may have on the "open web"?
Absolutely.
And I think you should, too.
We Need An Open Internet
We need an "open web" ... and a far larger "open Internet" ... where we don't have to ask permission to communicate, connect, collaborate and create (what many of us call "permissionless innovation").
The centralization of content, both in terms of publishing of content and consumption of content, is a very worrisome trend.
Huge, centralized walled gardens such as Facebook today can make Instant Articles "open to everyone" ... but tomorrow they could start to play much more of the "gatekeeper" role, determining:
- precisely "who" gets to publish content to the Facebook audience (which they are already doing in a way through the process of applying for Instant Article access);
- whether that content gets to be seen by all Facebook users (which they are already doing with the NewsFeed algorithm and could do even more now that Facebook Reactions are out);
- whether that content gets to be seen for free - or for a price (which they are already doing with the NewsFeed algorithm for displaying Pages content and letting you "boost" content).
Yes, I'll publish through Facebook Instant Articles (assuming my feeds get approved) because it will help Facebook users more easily view my content.
And I'm glad that Facebook chose to use RSS as the base to allow us to easily publish our content as Instant Articles without having to create a separate mechanism for publishing to Facebook.
I just worry that in then end this will only help keep more people inside of Facebook's shiny and pretty walled garden ... versus interacting with the many other sites and services that make up the larger open Internet.
What do you think?
Will you start publishing your content as Facebook Instant Articles? Do you think that we as content providers have much of a choice if we want to reach people on Facebook? What do you think this will do long-term?
An audio podcast about Facebook Instant Articles is also available:
UPDATE #1 - In a bit of synchronicity, Dave Winer published a new post - Who should support IA and how - at about the same time as I posted mine. He suggests that IA should be used as essentially the improved plumbing to make the mobile user experience better across different platforms and walled gardens. I don't disagree.. but I wonder how many of the other walled gardens (ex. Twitter, Medium) would actually support Facebook's protocol. (Sounds like a topic for another blog post...)
Feb 26
TDYR 292 – Questions About Facebook Reactions
After using Facebook Reactions for the past two days, I got think about some questions...
Read more: http://www.disruptiveconversations.com/2016/02/questions-i-have-about-facebook-reactions.html
