Category: About Deploy360

Dec 21

Introducing a New Deploy360 Topic: Routing Resiliency / Routing Security

© istock photo / Andrey Prokhorov

How reliable and secure is the Internet’s underlying routing infrastructure? How well does it hold up in the face of a major event such as the recent Hurricane Sandy that hit the US? How well can it withstand attacks and misconfiguration errors?  As we continue to move more and more of our communication into the “cloud” of the Internet, how secure and reliable is the underlying routing fabric that holds it all together?

Over the past year here at Deploy360, we have been talking a great deal about how we need to get IPv6 deployed to enable more connections to the Internet… more networks, more devices, more “Internet of Things” and more people as there are still 5 billion people yet to get online.  We’ve also been talking about how we need to get DNSSEC more widely deployed to create a more secure Internet and to enable a whole new realm of innovations such as the DANE protocol that can create a stronger security layer.

But it’s become increasingly clear to us that as we get more people connected to the Internet and even as we add security layers like DNSSEC, there is another area where we need to greatly increase the conversation.

The truth is… the Internet today IS highly reliable, even in the cases of events like Hurricane Sandy. The Internet, as we like to say, “routes around damage.”  Even in the face of malicious attacks to sections of the Internet, the overall network has continued to function.

But…

… as the Internet continues to evolve and the number of network operators expands… as we bring the next billion people online… as we interconnect even more devices and things… we need to ensure that the Internet’s underlying routing infrastructure is both reliable and secure.  There is room today for improvement.

A New Topic: Routing

And so we are launching a new area on our site that we are calling simply “Routing“, where we will focus on providing real-world deployment information to the global operator community related to “routing security” and “routing resiliency.”

The term “resiliency” is an important one, and a common definition for a network is:

the ability of the network to provide and maintain an acceptable level of service in the face of various faults and challenges to normal operation.

Ultimately that is our goal – doing what we can to work with the operator community to ensure the resilience of the Internet’s routing infrastructure.  A part of that is “routing security,” but the topic is really much larger and dives into operational practices, policies and other areas.

As we have with IPv6 and DNSSEC (and will be continuing to do as we build out our roadmaps for those topics), we’ll start with a foundation of information including:

  • Reports and studies on best current operational practices (BCOPs) for routing resiliency and security
  • Case studies of how BCOPs are deployed and effectively used – as well as case studies of recent routing incidents
  • Tools that can be used to help better understand how resilient and secure your routing infrastructure is
  • Sites with statistics and data to help you understand the overall situation

We’ll focus on finding or creating the best tutorials, whitepapers, reports, videos, statistics, sites and tools, just as we’ve done with IPv6 and DNSSEC. As in the other topics, we’ll be looking to promote resources created by many of you who are reading this message.  And where we can’t find resources others have created, we’ll go ahead and create them either ourselves or through partners. We’ll also naturally be adding in routing-related posts to our constant stream of more news-related blog posts.

Note that this “routing resiliency/security” topic will be a bit different than our other areas in that we are not focusing on a specific protocol but rather on a broader topic.

Certainly over the next few months after we’ve built the foundation we will explore some of the protocols that are being discussed now within the IETF such as Secure BGP (BGPSEC) and the Resource Public Key Infrastructure (RPKI) – but they will again be discussed within this broader context of how they are part of the puzzle – “building blocks,” really – of making the Internet more resilient and secure.  We’ll also be integrating and promoting some of the routing security work we’ve been doing for some time now, such as the routing security “operator roundtables” we’ve held.

It’s an ambitious topic … and more than one person has said to us something like “Wow! Making DNSSEC and IPv6 interesting was hard enough… now you are going to dive down into BGP and the guts of routing? Are you crazy?” And yes, we’re aware that the community of people who even know about all this stuff is tiny, let alone those who reallyunderstand it.

But that’s what we want to change!  We want more people to understand how the Internet really works down underneath, so that they, too, can understand what we need to do to ensure it continues to be the vibrant Internet we’ve come to expect.

It’s important, too, for the future of the open Internet… and for the billions of people and devices yet to connect.  As a report from ENISA so nicely puts it:

There may well not be an immediate cause for concern about the resilience of the Internet interconnection ecosystem, but there is cause for concern about the lack of good information about how it works and how well it might work if something went very badly wrong.

We aim to help change that!

How You Can Help

Want to join us in this quest to improve routing resiliency and security?  While we’re starting to add resources and pages to the site, there are a couple of ways you can help us out:

1. Read the reports we’ve listed. You may want to start with the excellent report, “Inter-X: Resilience of the Internet Interconnection Ecosystem,” that summarizes the situation and offers suggestions for how to move forward.  The 31-page summary document is enough to get started … although the truly hard-core may enjoy the 239-page “full” report. From there you can move on to the other documents for a deeper understanding.

2. Send us suggestions – if you know of a report, whitepaper, tutorial, video, case study, site or other resource we should consider adding to the site, please let us know. We have a list of many resources that we are considering, but we are always looking for more.

3. Volunteer – if you are very interested in this topic and would like to actively help us on an ongoing basis, please fill out our volunteer form and we’ll get you plugged in when we get the volunteer effort going in the next few months.

4. Help us spread the word – As we publish resources and blog posts relating to routing resiliency / security, please help us spread those links through social networks so that more people can learn about the topic.

With your help, we can build out this Routing area of Deploy360 to be an outstanding resource for the Internet community and to help make the Internet more resilient and secure!

 

Dec 20

Routing

Dec 20

Call For Presenters – ICANN DNSSEC Deployment Workshop, April 10 in Beijing

Do you have some DNSSEC deployment experience you would like to share with the broader community? Could you present a case study of how you deployed DNSSEC resolvers within your network?  Have you created a new tool that automates or simplifies the usage of DNSSEC?

On April 10, 2013, there will be another “DNSSEC Deployment Workshop” at ICANN 46 in Beijing, China.  The recent DNSSEC workshop at ICANN 45 in Toronto was outstanding and had an excellent collection of case studies, statistics, new tools and more.

The program committee for the ICANN 46 workshop in Beijing has now issued a call for presentations and is seeking speakers on a variety of DNSSEC-related topics.  The full call for presenters is included below.

The deadline for submitting a proposal is JANUARY 15, 2013!

As noted below, you only need to send in a brief couple of sentences about what you would like to speak about.  If accepted you will then need to send in more information, slides, etc.  You need to send your proposal to dnssec-beijing@shinkuro.com by January 15th.

In full disclosure, I’ll note that I will be joining the program committee and so I will be one of the group of people reviewing proposals.  These events have turned out to be an excellent place for a gathering of the DNSSEC community and I would strongly encourage you to consider submitting a proposal!

As far as logistics go, attendance at ICANN 46 is free… you just need to get yourself to Beijing and pay for lodging, etc.  If you have never been to an ICANN meeting, the entire week is quite a fascinating view into the governance of domain names.

And here is the full call for presenters…

The DNSSEC Deployment Initiative, in cooperation with the ICANN Security and Stability Advisory Committee (SSAC), is planning a DNSSEC Workshop at the ICANN meeting in Beijing, China on 10 April 2013.  The DNSSEC Workshop has been a part of ICANN meetings for several years and has provided a forum for both experienced and new people to meet, present and discuss current and future DNSSEC deployments.  For reference, the most recent session was held at the ICANN Toronto meeting on 17 October 2012. The presentations and transcripts are available at http://toronto45.icann.org/node/34375.

We are seeking presentations on the following topics:

1.  DNSSEC Activities in Asia Pacific

For this panel we are seeking participation from those who have been involved in DNSSEC deployment in the Asia Pacific region as well as those who have a keen interest in the challenges and benefits of deployment.  Key questions are to consider include: What would help to promote DNSSEC deployment?  What are the challenges you have faced when you deployed DNSSEC?

2. The Operational Realities of Running DNSSEC

Now that DNSSEC has become an operational norm for many registries, registrars, and ISPs, what have we learned about how we manage DNSSEC? What’s best practice around key rollovers? How often do you review your disaster recovery procedures? Is there operational familiarity within your customer support teams? Has DNSSEC made DNS more ‘brittle’ or is it just a run-of-the-mill operational practice? What operational statistics have we gathered about DNSSEC? Is it changing DNS patterns? How are our nameservers handling DNSSEC traffic? Is the volume as expected? Have we seen anything unusual?  Are there experiences being documented in the form of best practices, or something similar, for transfer of signed zones?

3.  DNSSEC and Enterprise Activities

DNSSEC has always been seen as a huge benefit to organizations looking to protect their identity and security on the Web. Large enterprises are an obvious target for DNS hackers and DNSSEC provides an ideal solution to this challenge. This session aims to look at the benefits and challenges of deploying DNSSEC for major enterprises. Topics for discussion:

  • What is the current status of DNSSEC deployment among enterprises?
  • What plans do the major enterprises have for their DNSSEC roadmaps?
  • What are the challenges to deployment for these organizations?  Do they foresee raising awareness of DNSSEC with their customers?

4. When Unexpected DNSSEC Events Occur

What have we learned from some of the operational outages that we have seen over the past 18 months? Are there lessons that we can pass on to those just about to implement DNSSEC? How do you manage dissemination of information about the outage? What have you learned about communications planning? Do you have a route to ISPs and registrars? How do you liaise with your CERT community?

5.  Preparing for Root Key Rollover
For this topic we are seeking input on issues relating to root key rollover.  In particular, we are seeking comments from vendors, ISPs, and the community that will be affected by distribution of new root keys

6.  DNSSEC: Regulative, Legislative and Persuasive Approaches to Encouraging Deployment

There are many models in discussion for encouraging the take-up of DNSSEC amongst TLDs. In some jurisdictions we have seen governmental edicts insisting that DNSSEC is deployed across a Top Level Domain. In others, we have seen reports produced for governments highlighting the lack of take up and the need for tighter control amongst operators. Recently, we have witnessed the consideration  of mandated DNSSEC signing of zones by some TLDs in order to gain access to newer premium domains.  Have any of these approaches worked in encouraging take up of DNSSEC? What role does a national government have in assisting deployment of DNSSEC? How are some of these measures perceived by registrars, DNS operators, ISPs and registrants?

7. DANE and Other DNSSEC Applications

Using DNSSEC as a means of authentication for http transactions is an exciting development of DNSSEC. What is the progress of the DNS-Based Authentication of Named Entities (DANE) initiative?  How soon could DANE become a deployable reality and what will be the impact of such a deployment, e.g. impact on traditional certification authorities (CAs)?

8.  Use of DNSSEC in the Reverse Space

This topic includes signed reverse zones, security products using reverse DNS lookup for DNSSEC validation?

9.  The Great DNSSEC Panel Quiz

Ever fancied pitting your wits against your colleagues?  Demonstrate your knowledge and expertise in DNSSEC in our Great DNSSEC Panel Quiz.

In addition, we welcome suggestions for additional topics.

If you are interested in participating, please send a brief (1-2 sentence) description of your proposed presentation to dnssec-beijing@shinkuro.com by 15 January 2013.

Nov 22

Thank you for all of your support and assistance with IPv6, DNSSEC

Today is the Thanksgiving holiday here in the U.S.A. where the current members of our team all live. It is a day off for us and we will be spending it with our family and friends, giving thanks for them and for so many other aspects of our lives.

We also want to thank you, the many readers of this site, for all your support since we began this experiment in publishing deployment-related information about a year ago.  Thank you for all the suggestions you have given us. Thank you for all the feedback where you have offered ideas about how we could better help.  Thank you for all the retweets… the shares and “likes” on Facebook and Google+… the articles mentioning our site…. and the so many other ways that you all have helped spread the word about the resources we have here on Deploy360.

Thank you, most of all, for being out there deploying IPv6 and DNSSEC… for making it happen in big ways and little ways… for overcoming the obstacles… for being persistent and focused… for getting it done.

Together we are changing the world in our own way… bringing about an Internet that is more open to endless possibilities and innovation… and that is more secure for all of us.

Thank you for all you do.

Nov 05

Meet The Deploy360 Team At IETF85!

If you are at IETF 85 this week in Atlanta, the Deploy360 team will be represented by Megan Kruse. She’s very much interested in speaking to people about their challenges with deploying IPv6 and DNSSEC – and how we can help with accelerating that deployment.

You can expect to find Megan in many of the IPv6-related sessions and other associated events.  If you’d like to reach her directly to coordinate a time to connect, your best route will be either:

Email:  deploy360@isoc.org

Twitter:  @deploy360

She’ll be monitoring both channels and can get back to you to arrange a time to meet.

As to the other Deploy360 team members, Richard Jimmerson is speaking today in Toronto as part of the Canadian ISP Summit and I’ve unfortunately had to stay home due to some family medical issues.  I will be participating remotely via Jabber, though, so if you are in the chat rooms for various sessions you’ll probably see me there.  I will look forward to meeting up with many of you at IETF 86 in March in Orlando.

It’s looking like a great week in Atlanta with all sorts of activities going on.  If you are there and can meet up with Megan, she’d be glad to get your feedback and understand how we can help you with your deployment of IPv6 and DNSSEC!

 

Jun 11

Deploy360 Team Gathering This Week To Plan Site’s Future – How Can We Help You?

Keene, NHToday the Deploy360 team will be gathering for a week-long planning session to plot out in greater detail our activities for the remainder of 2012 and into 2013.  Over the past 6 months, we’ve received a LOT of great feedback, both from this site and our social network accounts, as well as our ION conferences. We’ve got some exciting plans already and we’re looking forward to making it all happen!

To that end, we really want to hear from you! How can we help you deploy IPv6 and DNSSEC more easily?  In particular, we’d love to hear your feedback on our content roadmaps:

as those are the documents we’re using to plan out future content curation and creation.  We’re also going to be considering better ways to organize the site, additional content we can create and just in general better ways we can communicate with you all.

In a nice change for me personally, Richard and Megan are journeying up “he-ah” to Keene, New Hampshire, where I am based. Away from all offices (including my home office), we’re looking forward to some very focused time diving into what comes next!

Again… please do let us know how we can help you with IPv6 and DNSSEC!

 

Jun 08

Site Changes – And Returning To The Regular Mix of DNSSEC / IPv6 Postings

As you may have noticed, for the past three weeks our blog and our accounts on Twitter, Facebook and Google+ have all been pretty much “All IPv6, All The Time!” We joined with our colleagues to focus on what turned out to be the massively successful World IPv6 Launch and so we’ve been extremely focused on that event.

With IPv6 now launched, we’ll be turning our attention back to how we can enable more people to successfully deploy IPv6… and we’ll be bringing DNSSEC back into focus!  So you can expect to see us returning to our usual mix of covering both IPv6 and DNSSEC on our blog and in our social media accounts.

While we have your attention, there’s two minor temporary changes to the site that we’ll note:

1. IPv6 Detector removed from front page – Ever since we’ve launched the site we’ve had this fun widget on the front page that showed whether you were connecting to the site using IPv4 or IPv6.  Unfortunately, in the run up to World IPv6 Launch there was concern about how our web sites would withstand the expected load and so some caching technology was introduced into our infrastructure.  Sadly, the caching servers interfere with that widget and so everyone was showing up connecting via IPv6 (don’t we wish!) and with an address of “::1″.  So until we can sort out the issue we’ve removed the widget from the front page.  Hopefully we’ll be able to get that back soon.

2. Facebook and Twitter signin for comments removed – We’ve been getting a lot of blog comment spam that was not being caught by the Akismet spam filter we’ve been using.  After noticing that it was all coming from supposed Facebook logins, we removed the ability to login via Twitter or Facebook to leave a comment to see if that will reduce the comment spam (and it seems to have done so).  So we need to figure out what’s going on there before we re-enable that capability. You can still leave comments… you just have to type in your name, email address, etc.

That’s the news for the moment. Thank you again for all the incredible feedback and support you’ve given us!

May 15

Want To Tell Us Where To Go? View Our IPv6 and DNSSEC Roadmaps…

road pictureWhat type of IPv6 and DNSSEC
articles, tutorials, and other content do we need to add to this Deploy360 website? What areas need more attention? Have you looked for some topic here and not found it?

Since we launched Deploy360 four months ago, we’ve been collecting feedback through comments to this site; through interactions on Twitter, Facebook and Google+; from email sent to our deploy360@isoc.org address; from feedback form submissions; from conversations at various events … and even before our launch from attendees at our two ION conferences last year.

You have given us a great amount of feedback, and we’ve summarized all of that into two “roadmap” documents that outline what we believe we need to add to the site. They can be found here:

Now we’d love to hear from you again… have we captured your feedback accurately? Can you see other areas that we need to add? Other topics or tutorials?

How else can we help you with information about how to deploy IPv6 and DNSSEC rapidly?

Please note that these roadmap pages will be “living documents” in that we’ll be constantly updating them as we add items to the site (and remove them from the roadmap), find new items we need to add, and generally get more feedback from you about where you think we need to focus.

With these roadmaps published, we will start adding the listed resources to the site. We will be finding these resources out on the Internet where we can – verifying their accuracy and then reviewing them here on the site. Where needed resources don’t yet exist in a free and open form, we’ll create those resources in conjunction with our partners and volunteers.

To that end, if you know of a great tutorial or article (including one you’ve written) that fits an item on the roadmap, please let us know so that we can consider it for inclusion in the site. If you are looking for a specific topic and it’s not on this site or on the roadmap yet, let us know so we can add it to the roadmap.

Many thanks again to everyone who has given us feedback on the site over the past four months. We’ve been very pleased by the response so far and are looking forward to growing this site to help many more people deploy IPv6 and DNSSEC!

Please let us know how we can help you!

May 14

DNSSEC Roadmap for the Deploy360 Programme

The Deploy360 Programme staff has been collecting requirements and feedback for DNSSEC-related content from the community here at the Deploy360 site, from within social networks and at our ION conferences.

Based on that feedback, this document is an analysis of the IPv6-related content that needs to be added to the Deploy360 Programme website. Each section lists two areas of content:

  • Requirements – content that must be added to the site for this section to be “complete” in terms of meeting the section’s education goal.
  • Enhancements – content that we would like to add to each section. This content may be added after the required content is complete or if additional funding, staff or volunteers can be found to assist with this content.

This is a living document that will be continually updated and changed as we complete listed items, discover new items we believe need to be added and/or receive feedback from the larger community about items that need to be added or removed from the list.  (And we welcome your feedback on these documents.)

The content listed below will either be curated (i.e. found on the Internet, verified for accuracy and pointed to with a review from the Deploy360 site) or will be created by the Deploy360 team in conjunction with partners and volunteers.

Separate from the content identified here, there is also the need to translate the content on the Deploy360 site into other languages.

Feedback on this roadmap is definitely welcome. Thank you.

DNSSEC Basics

Requirements:

  • Intro document – What DNSSEC is, why it matters, etc.
  • Information about how to ensure your local DNS server will pass along DNSSEC records
  • More information about the role of DS records within parent domains
  • Information about DANE and the value it brings
  • More information about the business reasons for using the added security of DNSSEC
  • Information about how SSL and DNSSEC can work together
  • Tutorials for how to use DNSSEC at various registrars (expanding the current list)
  • Guidance on DNSSEC key rollover
  • Information about establishing a DNSSEC Policy and Practice Statement (DPS)
  • DNSSEC RFC review

Enhancements:

  • Videos/screencasts of securing and signing your domain using various registrars
  • Animated video (Common Craft-style) that explains DNSSEC to regular audience
  • Assistance in editing/updating the DNSSEC HOWTO maintained by NLnet Labs
  • Marketing-type materials for internal advocates to champion DNSSEC

Case Studies

Requirements:

  • Case study (text) with a registry
  • Case study with a registrar making DNSSEC available to customers
  • Case studies with ISPs deploying DNSSEC-validating name servers
  • Case studies with multiple developers of different types of applications

Enhancements:

  • Video case studies with all of the above
  • Design and publish “deployment scenarios” for DNSSEC that are suited to specific industry segments rather than rely solely on case studies

Tools

Requirements:

  • Tutorial on how to add CZ.NIC DNSSEC extension to Microsoft IE
  • Tutorial/info about how to configure DNSSEC using
    • BIND
    • PowerDNS
    • Unbound
    • Windows 8
    • (other servers)
  • Pointers to more of the existing videos/screencasts about DNSSEC tools

Enhancements:

  • Videos/screencasts of adding DNSSEC extensions to Chrome, Firefox, IE
  • Videos/screencasts of configuring DNSSEC using the various nameservers

Training

Requirements:

  • Identification of further courseware available for open/free usage
  • Further identification of additional train-the-trainer courseware

Enhancements:

  • Creation of additional written courseware
  • Creation of deployment-focused e-learning / video tutorials
  • Ongoing webinar series offering IPv6 education
  • Develop and standardize a training package for DNSSEC that trainers and consultants can use as a base for educating their customers

Network Operators (including registries and registrars)

Requirements:

  • Guidelines for considerations for supporting DNSSEC
    • Include information about whether or not to validate at ISP-level
  • Case studies (previously covered above)
  • Questions to ask vendors regarding DNSSEC support
  • Pointers to databases of DNSSEC-enabled software and services
  • Information about DNSSEC automation software
  • Tutorial on DNSSEC deployment at the gTLD/ccTLD level

Enhancements:

  • Commissioned analyst whitepapers on DNSSEC
  • Videos/screencasts related to DNSSEC implementation at operator level
  • Funding to assist in adding DNSSEC capability to registry/registrar software

Developers

Requirements:

  • Guidelines/best practices for adding DNSSEC support to applications
  • Case studies (previously covered above)

Enhancements:

  • Videos/screencasts showing use of DNSSEC libraries
  • Creation of additional open source test tools and/or libraries

Content Providers

Requirements:

  • Case studies
  • Information about business case / value in using DNSSEC
  • Information about how to work with registrars in signing domains
  • Information about using content delivery networks (CDNs) that support DNSSEC
  • Information about DANE and other uses of DNSSEC

Enhancements:

  • (Same video screencasts as under DNSSEC Basics)

Consumer Electronics Manufacturers

Requirements:

  • Case studies
  • Information about business case / value in using DNSSEC
  • (similar information as with Developers in how to add DNSSEC support to a device)

Enhancements:

  • (Same video screencasts as under DNSSEC Basics and Developers)

 

Enterprise Customers

Requirements:

  • More material helping C-levels understand the need to deploy DNSSEC
  • Business case / cost benefit analysis support for DNSSEC
  • Case studies
  • (Tutorials on DNSSEC configuration as referenced earlier)

Enhancements:

  • Commissioned analyst whitepapers on DNSSEC
  • Videos/screencasts related to enterprise usage of DNSSEC
  • Slides / materials to help enterprise advocates promote DNSSEC within their enterprise

May 14

IPv6 Roadmap for the Deploy360 Programme

The Deploy360 Programme staff has been collecting requirements and feedback for IPv6-related content from the community here at the Deploy360 site, from within social networks and at our ION conferences.

Based on that feedback, this document is an analysis of the IPv6-related content that needs to be added to the Deploy360 Programme website. Each section lists two areas of content:

  • Requirements – content that must be added to the site for this section to be “complete” in terms of meeting the section’s education goal.
  • Enhancements – content that we would like to add to each section. This content may be added after the required content is complete or if additional funding, staff or volunteers can be found to assist with this content.

This is a living document that will be continually updated and changed as we complete listed items, discover new items we believe need to be added and/or receive feedback from the larger community about items that need to be added or removed from the list.  (And we welcome your feedback on these documents.)

The content listed below will either be curated (i.e. found on the Internet, verified for accuracy and pointed to with a review from the Deploy360 site) or will be created by the Deploy360 team in conjunction with partners and volunteers.

Separate from the content identified here, there is also the need to translate the content on the Deploy360 site into other languages.

Feedback on this roadmap is definitely welcome. Thank you.

IPv6 Basics

Requirements:

  • Introductory video explaining what IPv6 is all about (created or curated)
  • Simplified roadmap for how to deploy IPv6
  • Instructions for how to configure IPv6 on different operating systems and mobile devices
  • Suggestions to help validate the accuracy of IPv6 capability claims of vendor products
  • Pointing to existing lists of equipment known to work with IPv6
  • Basic guidelines for IPv6 security (open up a separate section on the site?)
  • Information on network planning with IPv6
  • Guidelines for IPv6 address allocation planning
  • IPv6 routing best practices
  • IPv6 RFC review
  • How to obtain IPv6 address allocations from the RIRs
  • IPv6 diagnostic and troubleshooting tools
  • Tutorial on how to set up an IPv6 test lab using tunnelbrokers and other systems

Enhancements:

  • Videos of IPv6 configuration on different operating systems and mobile devices
  • Video/screencast of setting up an IPv6 test lab
  • Pointers and reviews to books/ebooks related to IPv6
  • Animated video (Common Craft-style) that explains IPv6 to common audience
  • Videos/screencasts related to IPv6 security

IPv6 Case Studies

Requirements:

  • Case study (text) with a large ISP
  • Case study with a wireless ISP
  • Case studies with multiple developers of different types of applications
  • Case studies with multiple content providers
  • Case studies with consumer electronics manufacturers
  • Case studies with enterprises who have moved their networks to IPv6

Enhancements:

  • Video case studies with all of the above
  • Audio versions of the case studies
  • Slide presentation(s) summarizing these case studies
  • Webinars with case study participants
  • Design and publish “deployment scenarios” for IPv6 that are suited to specific industry segments rather than rely solely on case studies

IPv6 Training

Requirements:

  • Identification of courseware available for open/free usage
  • Further identification of IPv6 courses available
  • Train-the-Trainer courseware

Enhancements:

  • Creation of additional written courseware
  • Creation of deployment-focused e-learning / video tutorials
  • Ongoing webinar series offering IPv6 education
  • Develop and standardize a training package for IPv6 that trainers and consultants can use as a base for educating their customers

Network Operators

Requirements:

  • Guidelines for considerations for moving networks to IPv6
  • Case studies (previously covered above)
  • Questions to ask vendors regarding IPv6 support
  • Pointers to databases of IPv6-enabled equipment

Enhancements:

  • Commissioned analyst whitepapers on IPv6 migration
  • Videos/screencasts related to IPv6 transition
  • Materials related to IPv6 multihoming
  • Maintaining actual database of IPv6-enabled equipment
  • Marketing materials to help operators promote IPv6 to their customers

Developers

Requirements:

  • Guidelines for migrating applications or services to IPv6
  • Case studies (previously covered above)
  • Pointers to open source or reference implementations of IPv6
  • Pointers to IPv6 test tools and sites
  • Tutorials/considerations for operating in a dual-stack environment
  • Information about IPv6 transition mechanisms
  • Information about use of “Happy Eyeballs” (RFC 6555)

Enhancements:

  • Videos/screencasts showing use of IPv6 libraries
    • Commissioning of IPv6 shows on existing developer-focused video podcasts
  • Creation of open source test tools and/or libraries

Content Providers

Requirements:

  • Case studies
  • Information about using hosting providers that support IPv6
    • Listings of IPv6 hosting providers
    • Questions to ask your current hosting provider
  • Information/tutorials about using content delivery networks (CDNs) that support IPv6
  • Information/tutorials about using relay/proxy services to IPv6-enable content
  • Information/tutorials about transition technologies identified in RFC 6589

Enhancements:

  • Videos/screencasts demonstrating IPv6 at hosting providers
  • Videos/screencasts demonstrating use of CDNs with IPv6
  • Videos/screencasts demonstrating relay/proxy services
  • Videos/screencasts demonstrating transition technologies

Consumer Electronics Manufacturers

Requirements:

  • Case studies
  • Information about business case / value in using IPv6
  • (similar information as with Developers in how to add IPv6 support to a device)

Enhancements:

  • (Same video screencasts as under IPv6 Basics and Developers)

Enterprise Customers

Requirements:

  • More material helping C-levels understand the need to deploy IPv6
  • Business case / cost benefit analysis support for IPv6
  • Case studies
  • Practical guide to IPv6 address management tools
  • Information about different types of IPv6 address blocks (PA vs PI)

Enhancements:

  • Commissioned analyst whitepapers on IPv6 migration
  • Videos/screencasts related to enterprise usage of IPv6
  • Slides / materials to help enterprise advocates promote IPv6 within their enterprise

Additional Content

The following content was requested at ION events and does not currently have a section within the Deploy360 site.

Enhancements:

  • Information about consultants
  • Online forum for user discussion at the portal