[Newsclips] IETF SYN-ACK Newspack 2022-03-14

[David Goldstein <david@goldsteinreport.com>]

The IETF SYN-ACK Newspack collects IETF-related items from a variety of news outlets and other online publications. They do not represent the views of the IETF and are not checked for factual accuracy.

 

**********************

IETF IN THE NEWS

**********************

Countering China’s Growing Influence at the International Telecommunication Union

Summary: As Russia, China, Iran, and others seek to manipulate the international system to their advantage, the United States and others will need to be more proactive. While the work of the International Telecommunication Union (ITU) is complex and obscure, failure to protect the independence and integrity of the ITU will impact every American. It is not simply the phones used, or the satellites positioned, or the chips embedded. Rather, what is at stake is secure air travel, privacy in every sphere of modern life, and the ability of the U.S. military to protect the American people. The stakes could not be higher, and it is time for the U.S. government to step up. ... The growth of the Internet over the past 30 years has been breathtaking. This growth and success in no small part has been due to the relatively loose regulatory environment overseeing the Internet that allowed rapid innovation and private-sector, market-driven choices. Some governance, such as making sure that Internet addresses are unique and that changes to the root servers are conducted in a reliable and non-disruptive manner, has been in place for decades and is necessary to ensure that the Internet operates smoothly. These functions are managed largely by nonprofit entities, such as the IETF and ICANN.

< <https://www.heritage.org/global-politics/report/countering-chinas-growing-influence-the-international-telecommunication> https://www.heritage.org/global-politics/report/countering-chinas-growing-influence-the-international-telecommunication>

 

Call for Nominations for the ICANN Root Server System Governance Working Group (GWG)

On behalf of the IETF, the IAB provides two technical experts to the ICANN Root Server System Governance Working Group (GWG). The current appointees are Ted Hardie and Geoff Huston. Ted has asked to step down from this role; the IAB thanks him for his service.

< <https://www.iab.org/2022/03/07/call-for-nominations-for-the-icann-root-server-system-governance-working-group-gwg/> https://www.iab.org/2022/03/07/call-for-nominations-for-the-icann-root-server-system-governance-working-group-gwg/>

 

Service provider views on transport slicing and packet fronthaul

... Segment routing is an emerging Internet Engineering Task Force (IETF) routing technology that helps simplify network traffic engineering and control while maintaining existing MPLS hardware and services. One important use case is protocol simplification by eliminating the need for Label Distribution Protocol (LDP) in core MPLS networks. A second major use case is the replacement of complex RSVP-traffic engineering (TE) in MPLS networks with more scalable segment routing-based traffic engineering. A third use case — which relates directly to 5G — is transport network slicing using segment routing-TE and software-defined networking (SDN) control to create soft slices.

< <https://www.lightreading.com/5g/service-provider-views-on-transport-slicing-and-packet-fronthaul/a/d-id/775954> https://www.lightreading.com/5g/service-provider-views-on-transport-slicing-and-packet-fronthaul/a/d-id/775954>

 

Announcing FusionAuth 1.34 [news release]

... PKCE is a standard which increases security when used in conjunction with OAuth. It’s pronounced (‘pixee’). PKCE helps prevent CSRF and authorization code injection attacks. The security current best practices from the IETF recommend using PKCE:

< <https://fusionauth.io/blog/2022/03/08/announcing-fusionauth-1-34> https://fusionauth.io/blog/2022/03/08/announcing-fusionauth-1-34>

 

FCC Encourages Increased Security Measures

The Federal Communications Commission (FCC) unanimously approved a notice of inquiry for secure use of the internet’s global routing system, the Border Gateway Protocol (BGP), in light of Russia’s aggression. This inquiry will focus on vulnerabilities of the internet’s global routing system and will also examine the potential impacts that these vulnerabilities can have on the transmission of data through email, e-commerce, bank transactions, interconnected Voice-over Internet Protocol, and other electronic transmission sources. Known vulnerabilities surrounding the BGP already exist, some of which Russian-connected threat actors have exploited, including the ability to manipulate the BGP to execute a distributed denial of service attack (“DDoS attack”) and to reroute and steal data. The inquiry notes a range of measures that NIST, the Internet Engineering Task Force, and the FCC have recommended. Such measures, however, have not been uniformly adopted. This is an important inquiry to monitor as network operators may soon face increased security requirements, including heightened security standards known as “BGPsec,” in order to mitigate critical vulnerabilities.

< <https://www.icemiller.com/ice-on-fire-insights/publications/ice-miller-cybersecurity-law-snapshot-russian-agg/> https://www.icemiller.com/ice-on-fire-insights/publications/ice-miller-cybersecurity-law-snapshot-russian-agg/>

< <https://www.lexology.com/library/detail.aspx?g=a17dbf02-2596-488d-9e8a-f928e19e347a> https://www.lexology.com/library/detail.aspx?g=a17dbf02-2596-488d-9e8a-f928e19e347a>

 

The Bitcoin Bridge Special: Craig Wright tackles IPv6, blockchain integration

... Speaking of remarkable foresight, the Internet Engineering Task Force (IETF) has been working on the Internet Protocol Version 6 (IPv6) as far back as the early 90s. And it is this collection of standards that Dr. Wright had in mind when he was still creating Bitcoin.

< <https://coingeek.com/the-bitcoin-bridge-special-craig-wright-tackles-ipv6-blockchain-integration-video/> https://coingeek.com/the-bitcoin-bridge-special-craig-wright-tackles-ipv6-blockchain-integration-video/>

 

La darknet Tor finisce tra i domini speciali della IETF [The Tor darknet ends up among the special domains of the IETF]

Qualcosa sta per cambiare nella darknet e nella Rete più in generale. Con la Request for comment 7686 la IETF ha escluso il dominio di primo livello ".onion" dal novero di quelli che possono essere commercializzati dall'ICANN. Una decisione epocale per chi naviga nella darknet utilizzando le reti TOR.

< <https://www.fastweb.it/fastweb-plus/digital-magazine/la-darknet-tor-finisce-tra-i-domini-speciali-della-ietf/> https://www.fastweb.it/fastweb-plus/digital-magazine/la-darknet-tor-finisce-tra-i-domini-speciali-della-ietf/>

 

C'è un problema di privacy su Internet, ma c'è anche un protocollo per risolverlo [There is a privacy issue on the Internet, but there is also a protocol to fix it]

... Il nuovo protocollo al momento è utilizzabile attraverso il resolver DNS 1.1.1.1 di Cloudflare, ma per poterlo utilizzare bisognerà attendere che ODoH sia integrato nei browser e nei sistemi operativi e affinché questo avvenga dovrà essere certificato come standard dall'Internet Engineering Task Force. Prima di poter utilizzare questo protocollo che protegge la privacy, quindi, potrebbero volerci ancora mesi o anni.

< <https://www.fastweb.it/fastweb-plus/digital-magazine/odoh-il-nuovo-protocollo-per-aumentare-la-privacy-su-internet/> https://www.fastweb.it/fastweb-plus/digital-magazine/odoh-il-nuovo-protocollo-per-aumentare-la-privacy-su-internet/>

 

Pourquoi la guerre en Ukraine fait planer le spectre d’une fragmentation d’Internet [Why the war in Ukraine raises the spectre of Internet fragmentation]

... Les technologues qui ont inventé l'Internet et créé nombre de ses entreprises les plus influentes combattent la fragmentation depuis des années. Par exemple, l'Internet Society, la Commission européenne, l'Internet Engineering Task Force (IETF) et le RIPE NCC, l'organisme européen chargé de superviser les registres Internet, se sont opposés à un appel de la Chine en faveur de normes Internet centralisées, que les pionniers de l'Internet considéraient comme contraires à l'éthique distribuée du réseau.

< <https://www.cnetfrance.fr/news/pourquoi-la-guerre-en-ukraine-fait-planer-le-spectre-d-une-fragmentation-d-internet-39938347.htm> https://www.cnetfrance.fr/news/pourquoi-la-guerre-en-ukraine-fait-planer-le-spectre-d-une-fragmentation-d-internet-39938347.htm>

 

Épuisement des adresses IPv4 - Définition et Explications [Exhaustion of IPv4 Addresses - Definition and Explanations]

... En 1994, le groupe Address Lifetime Expectations de l'IETF prévoit que l'épuisement des adresses IP se produira entre 2005 et 2011.

< <https://www.techno-science.net/glossaire-definition/Epuisement-des-adresses-IPv4.html> https://www.techno-science.net/glossaire-definition/Epuisement-des-adresses-IPv4.html>

 

El nuevo Cibertelón de Acero para el siglo XXI [The new Cybertelon of Steel for the 21st century]

... Al respecto, la Internet Society, la Comisión Europea, el Grupo de Trabajo de Ingeniería de Internet (IETF) y el supervisor europeo de registros de Internet, RIPE, ya se opusieron a la petición china de ser la centralizadora de los estándares de Internet, algo que los pioneros de la red consideraban antitético al espíritu distribuido y sin fronteras de la red.

< <https://www.elespanol.com/invertia/disruptores-innovadores/opinion/20220310/nuevo-cibertelon-acero-siglo-xxi/656314364_13.html> https://www.elespanol.com/invertia/disruptores-innovadores/opinion/20220310/nuevo-cibertelon-acero-siglo-xxi/656314364_13.html>

 

Jak blízko jsme rozštěpení internetu? [How close are we to splitting the internet?]

... 5) Jednotné standardy – bez jednotných standardů nemůže existovat žádná globální struktura. Zde mluvíme především o dokumentech RFC vydávaných organizací IETF a dokumentech W3C (World Wide Web Consortium). Zde zatím k nějakému vědomému narušování nikdy nedošlo. Horší je někdy interpretace standardů některými vendory, ale to je úplně jiná kategorie.

< <https://www.lupa.cz/clanky/jak-blizko-jsme-rozstepeni-internetu/> https://www.lupa.cz/clanky/jak-blizko-jsme-rozstepeni-internetu/>

 

ロシアによるウクライナ侵攻で高まる「スプリンターネット」の懸念 [Concerns about "splinter net" rising due to Russia's invasion of Ukraine]

... インターネットを発明し、業界で影響力の強い多くの企業を立ち上げた技術者たちは、何年もの間インターネットの分断化と戦ってきた。例えば、ISOC、欧州委員会、インターネット技術タスクフォース（IETF）、IPアドレスの割り当てを行う欧州の組織RIPEは、中国が提案した一元化されたインターネット標準に反対した。インターネットのパイオニアたちは、この構想がネットワーク分散化の精神とは正反対だと考えたのだ。スプリンターネットの最も強い兆候は、中国のいわゆるグレートファイアウォールだ。これは、米国のSNS企業や香港の抗議活動に関する情報などのコンテンツをブロックするために中国が使っているインターネット監視・管理システムを指す。

< <https://japan.cnet.com/article/35184443/> https://japan.cnet.com/article/35184443/>

 

[기술 기고] EtherNet/IP에 TSN 적용 [[Technical Contribution] Apply TSN to EtherNet/IP]

... 레이어 3 기능은 현재 인터넷 엔지니어링 태스크포스(IETF)에 의해 설계되고 있으며 기본적으로 802.1 TSN 사양의 기능을 레이어 3으로 확장한다. 종종 결정론적 Detnet(deterministic network)이라고 불리는 이 작업은 집필 당시 아직 완성되지 않았다.

< <https://hellot.net/news/article.html?no=66350> https://hellot.net/news/article.html?no=66350>

 

Национальный домен Фиджи исчез из Интернета на 12+ часов из-за технической ошибки [Fiji's country code domain disappeared from the Internet for 12+ hours due to a technical error]

... Судя по всему, причиной проблем стала техническая ошибка в настройке ключей DNSSEC – набор расширений Инженерного совета Интернета (IETF) протокола DNS, позволяющих минимизировать атаки, связанные с подменой IP-адреса при разрешении доменных имён): специалисты Южно-Тихоокеанского университета, выполняющего функции регистратуры национального домена Фиджи, в первый раз осуществляли эту процедуру самостоятельно и задали неверное значение одного из ключей. DNS-серверы, строго соблюдающие протокол DNSSEC, воспринимают такую ситуацию как потенциальную атаку и автоматически блокируют запросы.

< <https://d-russia.ru/nacionalnyj-domen-fidzhi-ischez-iz-interneta-na-12-chasov-iz-za-tehnicheskoj-oshibki.html> https://d-russia.ru/nacionalnyj-domen-fidzhi-ischez-iz-interneta-na-12-chasov-iz-za-tehnicheskoj-oshibki.html>

 

**********************

SECURITY & PRIVACY

**********************

Former FCC security chief: Rosenworcel proposal to secure internet routing system could be part of larger cyber agenda

David Simpson, a former national security bureau chief, says FCC Chairwoman Jessica Rosenworcel’s interest in securing Border Gateway Protocol could be an important part of the FCC’s development of cyber-focused policies moving forward.

< <https://insidecybersecurity.com/share/13280> https://insidecybersecurity.com/share/13280>

 

Routing Without Rumor: Securing the Internet’s Routing System

The DNS has provided the fundamental service of mapping internet names to addresses from almost the earliest days of the internet’s history. Billions of internet-connected devices use DNS continuously to look up Internet Protocol addresses of the named resources they want to connect to - for instance, a website such as blog.verisign.com. Once a device has the resource’s address, it can then communicate with the resource using the internet’s routing system.

< <https://blog.verisign.com/security/routing-security/> https://blog.verisign.com/security/routing-security/>

 

Medical and IoT Devices From More Than 100 Vendors Vulnerable to Attack

More than 150 Internet of Things (IoT) devices — including many that are used in the healthcare sector — from over 100 companies are at heightened risk of attack from a set of seven vulnerabilities in a third-party remote access component in the devices.

< <https://www.darkreading.com/vulnerabilities-threats/medical-and-iot-devices-from-more-than-100-vendors-vulnerable-to-attack> https://www.darkreading.com/vulnerabilities-threats/medical-and-iot-devices-from-more-than-100-vendors-vulnerable-to-attack>

 

Russia Issues Its Own TLS Certs

Russia is offering its own trusted Transport Layer Security (TLS) certificate authority (CA) to replace certificates that need to be renewed by foreign countries. As it is, a pile of sanctions imposed in the wake of Russia’s invasion of Ukraine is gumming up its citizen’s access to websites.

< <https://threatpost.com/russia-issues-its-own-tls-certs/178891/> https://threatpost.com/russia-issues-its-own-tls-certs/178891/>

 

Russia issues its own TLS certificates to get past global sanctions

Russia has set up its own Transport Layer Security (TLS) certificate authority to help Russians bypass website access issues arising from global sanctions imposed on the country.

< <https://www.siliconrepublic.com/comms/russia-internet-tls-certificates-domestic-sanctions> https://www.siliconrepublic.com/comms/russia-internet-tls-certificates-domestic-sanctions>

 

eu: Incidents Handling and Cybercrime Investigations

The European Union Agency for Cybersecurity (ENISA) explores how CSIRTs, law enforcement agencies and the judiciary cooperate and how they can train together to better tackle cyber incidents and respond to cybercrime.

< <https://www.enisa.europa.eu/news/enisa-news/incidents-handling-and-cybercrime-investigations> https://www.enisa.europa.eu/news/enisa-news/incidents-handling-and-cybercrime-investigations>

 

Authenticated bootstrapping of DNSSEC delegations

When securing a DNS zone with DNSSEC for the first time, it is the parent zone operator’s task to extend their DNSSEC chain of trust by signing and publishing delegation signer (DS) records. These records, placed in the parent zone alongside the domain’s conventional NS records, are computed from the hashes of the zone’s DNSSEC public keys.

< <https://blog.apnic.net/2022/03/08/authenticated-bootstrapping-of-dnssec-delegations/> https://blog.apnic.net/2022/03/08/authenticated-bootstrapping-of-dnssec-delegations/>

 

Threat hunting with Yara: The three body problem

Since its birth, Yara has become a common ground to exchange threat signatures between cybersecurity researchers. It is quintessential for identifying known or related malware, as well as hunting for malware artifacts.

< <https://blog.apnic.net/2022/03/09/threat-hunting-with-yara-the-three-body-problem/> https://blog.apnic.net/2022/03/09/threat-hunting-with-yara-the-three-body-problem/>

 

**********************

INTERNET OF THINGS

**********************

Standards Certification Testing: Bringing Order to the Internet of Things: Comarch leads the way in developing automated standards certification systems [sponsored]

>From human speech to quantum encryption, communication relies on protocols that are mutually understood and reliably implemented. Without them, there is only noise.

< <https://spectrum.ieee.org/comarch-automated-test-framework> https://spectrum.ieee.org/comarch-automated-test-framework>

 

Medical and IoT Devices From More Than 100 Vendors Vulnerable to Attack

More than 150 Internet of Things (IoT) devices — including many that are used in the healthcare sector — from over 100 companies are at heightened risk of attack from a set of seven vulnerabilities in a third-party remote access component in the devices.

< <https://www.darkreading.com/vulnerabilities-threats/medical-and-iot-devices-from-more-than-100-vendors-vulnerable-to-attack> https://www.darkreading.com/vulnerabilities-threats/medical-and-iot-devices-from-more-than-100-vendors-vulnerable-to-attack>

 

China unveils guidelines for standards on 'internet of vehicles'

China has unveiled guidelines for setting the standards related to the internet of vehicles, as part of efforts to protect internet and data security of the industry.

< <http://www.china.org.cn/china/2022-03/08/content_78094286.htm> http://www.china.org.cn/china/2022-03/08/content_78094286.htm>

 

New Zealand councils commit to smart cities network

A multi-year partnership with Smart Cities Council will ensure all New Zealand councils have the opportunity to engage and contribute to the nation’s smart cities agenda and internationally.

< <https://www.smartcitiesworld.net/news/new-zealand-councils-commit-to-smart-cities-network-6758> https://www.smartcitiesworld.net/news/new-zealand-councils-commit-to-smart-cities-network-6758>

 

**********************

OTHERWISE NOTEWORTHY

**********************

The Danger of Weaponising the DNS in the Ukraine Russia Conflict and Good News

As we watch the Ukraine and Russia conflict over boundaries and territories, I chanced upon a YouTube video showing the region of Europe and how, for the last 1000 years, national boundaries and names of nations have changed where in 1142, you had nations like Muslim Spain, Kievan Rus.

< <https://circleid.com/posts/20220312-danger-of-weaponising-the-dns-in-the-ukraine-russia-conflict-and-good-news> https://circleid.com/posts/20220312-danger-of-weaponising-the-dns-in-the-ukraine-russia-conflict-and-good-news>

 

Russia’s digital iron curtain will fail

After President Vladimir Putin launched his military assault on Ukraine last month, Kyiv urged the international community to punish Russia by switching off its internet connections. Icann, the apolitical, non-profit organisation that runs the internet’s “address book”, rightly refused the demand, arguing that such a move “would have devastating and permanent effects on the trust and utility of this global system”.

< <https://www.ft.com/content/26e88a2b-c7ba-46c7-8191-490188f4757b> https://www.ft.com/content/26e88a2b-c7ba-46c7-8191-490188f4757b>

 

The Narrative: Have we reached splinternet yet? by Milton Mueller, Brenden Kuerbis and Vagisha Srivastava

The Russian invasion of Ukraine has put global interconnection to the test as never before. Every media outlet is now talking about “Splinternet.” The ruptures extend beyond the internet and web to include many forms of cooperation and trade, especially in financial systems. This Narrative briefly comments on some of the more notable developments and tries to weave it into a coherent picture.

< <https://www.internetgovernance.org/2022/03/08/the-narrative-have-we-reached-splinternet-yet/> https://www.internetgovernance.org/2022/03/08/the-narrative-have-we-reached-splinternet-yet/>

 

Inside Cogent's Decision to Cut Off a Major Part of Russia's Internet Access

Even before Russia invaded Ukraine on Feb. 24, Cogent Communications CEO Dave Schaeffer knew he had big problems. Schaeffer's company, which runs a big chunk of the internet backbone and sells access to it, had watched Russia's military intelligence use the internet to launch online attacks. The company determined that some of those attacks had traveled over Cogent's system.

< <https://www.cnet.com/news/politics/inside-cogents-decision-to-cut-off-a-major-part-of-russias-internet-access/> https://www.cnet.com/news/politics/inside-cogents-decision-to-cut-off-a-major-part-of-russias-internet-access/>

 

Breaking Russia's internet backbone

The internet's governing bodies dismissed Ukraine's requests to cut Russia off from the internet. But now, two of the main backbone internet providers, Lumen Technologies and Cogent, have severed Russia's ties to the internet.

< <https://www.zdnet.com/article/breaking-russias-internet-backbone/> https://www.zdnet.com/article/breaking-russias-internet-backbone/>

 

Will Russia’s Isolation Last? Foreign companies and tech powers are increasingly pressured to cut ties over political crises. But then what?

Many international businesses in tech and other industries are stopping work in Russia after the invasion of Ukraine. It’s not clear how long the corporate solidarity to isolate Russia will last. Just look at past crises.

< <https://www.nytimes.com/2022/03/09/technology/russia-isolation.html> https://www.nytimes.com/2022/03/09/technology/russia-isolation.html>

 

Cloudflare refuses to pull out of Russia, says Putin would celebrate shutoff

Cloudflare is resisting requests to fully shut off its services in Russia, saying that such a move would hurt Russian citizens and likely be "celebrated" by Putin's government. "[W]e have received several calls to terminate all of Cloudflare's services inside Russia," CEO Matthew Prince wrote in a blog post yesterday. "We have carefully considered these requests and discussed them with government and civil society experts. Our conclusion, in consultation with those experts, is that Russia needs more Internet access, not less."

< <https://arstechnica.com/tech-policy/2022/03/cloudflare-wont-cut-off-russia-says-it-needs-more-internet-access-not-less/> https://arstechnica.com/tech-policy/2022/03/cloudflare-wont-cut-off-russia-says-it-needs-more-internet-access-not-less/>

 

Internet Backbone Giant Lumen Shuns .RU

Lumen Technologies, an American company that operates one of the largest Internet backbones and carries a significant percentage of the world’s Internet traffic, said today it will stop routing traffic for organizations based in Russia. Lumen’s decision comes just days after a similar exit by backbone provider Cogent, and amid a news media crackdown in Russia that has already left millions of Russians in the dark about what is really going on with their president’s war in Ukraine.

< <https://krebsonsecurity.com/2022/03/internet-backbone-giant-lumen-shuns-ru/> https://krebsonsecurity.com/2022/03/internet-backbone-giant-lumen-shuns-ru/>

 

Lumen, a second major American Internet carrier, pulling out of Russia

Lumen, a leading American Internet provider to Russia, announced Tuesday that it was severing business relations in the country, a move likely to increase Russia’s isolation as its citizens slip behind what some analysts are calling a new digital Iron Curtain.

< <https://www.washingtonpost.com/technology/2022/03/08/lumen-internet-russia-backbone-cut/> https://www.washingtonpost.com/technology/2022/03/08/lumen-internet-russia-backbone-cut/>

 

Internet provider Lumen pulls the plug on Russia

Lumen Technologies Inc , one of the companies that comprises the backbone of the internet, said on Tuesday it was pulling the plug on Russia because of an "increased security risk."

< <https://www.reuters.com/technology/internet-provider-lumen-pulls-plug-russia-2022-03-09/> https://www.reuters.com/technology/internet-provider-lumen-pulls-plug-russia-2022-03-09/>

 

Standardizing for a sustainable digital future

Cities, governments, and companies are on a steep learning curve as they adopt new tech as part of low-carbon, sustainable, citizen-centric development strategies.

< <https://www.itu.int/hub/2022/03/global-standards-symposium-sustainable-digital-future/> https://www.itu.int/hub/2022/03/global-standards-symposium-sustainable-digital-future/>

 

Setting the table for equity in standardization: Q&A with Minister Khumbudzo Ntshavheni

During last week’s Global Standards Symposium, we caught up with South Africa’s Minister of Communications and Digital Technologies, Khumbudzo Phophi Silence Ntshavheni.

< <https://www.itu.int/hub/2022/03/equity-standardization-minister-khumbudzo-ntshavheni-south-africa/> https://www.itu.int/hub/2022/03/equity-standardization-minister-khumbudzo-ntshavheni-south-africa/>

 

Measuring the potential benefit of egress traffic engineering with Segment Routing

Border Gateway Protocol (BGP) best paths on which the Internet relies are not always the ‘best’ when it comes to bandwidth and latency. This is due to several factors including BGP not considering congestion on links and AS-PATHs using prepending no longer reflect closeness.

< <https://blog.apnic.net/2022/03/10/measuring-the-potential-benefit-of-egress-traffic-engineering-with-segment-routing/> https://blog.apnic.net/2022/03/10/measuring-the-potential-benefit-of-egress-traffic-engineering-with-segment-routing/>

------

David Goldstein

email:  <mailto:david@goldsteinreport.com> david@goldsteinreport.com

web:  <http://goldsteinreport.com/> http://goldsteinreport.com/

Twitter:  <https://twitter.com/goldsteinreport> https://twitter.com/goldsteinreport

phone: +61 418 228 605 - mobile; +61 2 9663 3430 - office/home