[Newsclips] IETF SYN-ACK Newspack 2020-08-17

[David Goldstein <david@goldsteinreport.com>]

**********************

IETF IN THE NEWS

**********************

ZTE and China Mobile complete interoperability test of G-SRv6 optimisation solution

... Partnering with China Mobile, ZTE has participated in establishing the national standards, and preparing the international standards for the SRv6 optimisation solution, which has been highly recognised by the industry. Moreover, the IETF has set up an SRv6 optimisation design group, in which ZTE serves as an important member to further develop the standards.

< <https://www.vanillaplus.com/2020/08/13/54312-zte-china-mobile-complete-interoperability-test-g-srv6-optimisation-solution/> https://www.vanillaplus.com/2020/08/13/54312-zte-china-mobile-complete-interoperability-test-g-srv6-optimisation-solution/>

 

Why HBO, Disney, and Warner Bros. Care About Language Metadata

... Although the LMT was developed by and for media entertainment companies, the Table is applicable beyond its originally-intended niche. The Working Group believes it can also support “other industries using “IETF BCP 47,” (Internet Engineering Task Force Best Common Practices).

< <https://slator.com/industry-news/why-hbo-disney-and-warner-bros-care-about-language-metadata/> https://slator.com/industry-news/why-hbo-disney-and-warner-bros-care-about-language-metadata/>

 

Programatorii vor să scape de termenii rasişti din limbajele de programare [Programmers want to get rid of racist terms in programming languages}

... IETF (Internet Engineering Task Force), consorţiul internaţional care discută şi publică standardele informatice, face o serie de sugestii, inclusiv „blocklist” şi „allowlist”, sau chiar „primar-secundar”, pentru combinaţia „master-slave”.

< <https://www.zcj.ro/innovation/programatorii-vor-sa-scape-de-termenii-rasisti-din-limbajele-de-programare--202923.html> https://www.zcj.ro/innovation/programatorii-vor-sa-scape-de-termenii-rasisti-din-limbajele-de-programare--202923.html>

 

李星：向纯IPv6演进，恰逢其时 [Li Xing: The evolution to pure IPv6 is just the right time.]

... 之后在邬贺铨院士等专家的推动下，国家开始重视IPv6网络的建设。2003年，CERNET与中国电信、中国联通、中国移动、中国铁通等运营商一起参与了下一代互联网CNGI项目。由于IPv6与IPv4不兼容，包括国际IETF推广以及国内外大多数运营商都采用的是双栈技术，但教育网当时已经认定IPv6必然是未来互联网建设的趋势，下定决心要做纯IPv6的主干网络，一步到位，这也就是现在全球规模最大的采用纯IPv6技术的下一代互联网主干网CERNET2。

< <http://www.edu.cn/xxh/zhuan_jia_zhuan_lan/lx/202008/t20200811_1750919.shtml> http://www.edu.cn/xxh/zhuan_jia_zhuan_lan/lx/202008/t20200811_1750919.shtml>

 

从参与到主导，中国在IETF中贡献力量 [From participation to leadership, China contributes to the IETF]

中国没有能够参与20世纪60年代开启的互联网早期研发阶段，对于那时形成的互联网核心技术没有做出任何贡献。改革开放之后，中国的研究人员逐步认识到互联网的重要性，并于90年代开始参与IETF的工作。其主要的历史事件如表1所示。

< <https://www.edu.cn/xxh/zt/tj/202008/t20200803_1749833.shtml> https://www.edu.cn/xxh/zt/tj/202008/t20200803_1749833.shtml>

 

中国移动与中兴通讯完成G-SRv6优化方案互通测试验证 [China Mobile and ZTE have completed the interoperability test verification of the G-SRv6 optimization solution]

... 为解决以上难题，自2019年起，中国移动联合中兴通讯等厂商针对SRv6技术的优化进行了深入研究。2019年，中国移动与中兴通讯在IETF 106会议上分享了Unified SID优化技术，引起业界广泛关注。随后，基于对运营商业务和网络的理解，中国移动主导提出SRv6优化的明确需求。今年年初，正值“新冠肺炎”疫情肆虐之时，SRv6技术攻关也到了最为关键的时刻。在中国移动的带领下，中兴通讯等厂商的专家团队克服困难，提出SRv6优化的技术方案G-SRv6，该方案在头压缩4倍的情况下，支持SRv6全部功能。同时，推动G-SRv6优化方案的国内标准确立，并提前布局国际标准，使得SRv6优化方案得到国内外行业内的广泛认可。

< <https://tech.sina.com.cn/roll/2020-08-11/doc-iivhuipn8053055.shtml> https://tech.sina.com.cn/roll/2020-08-11/doc-iivhuipn8053055.shtml>

 

จีนหนุน 'IPv6' ระบบอินเทอร์เน็ตใหม่ ปิดทางซ่อนตัวตนบนโลกออนไลน์ [China to bolster new internet 'IPv6' Closing the way of hiding your online identity]

... เมื่อปี 2541 บรรดาวิศวกรคอมพิวเตอร์ ได้เสนอแผนพัฒนาระบบอินเทอร์เน็ตภายใต้โปรโตคอลใหม่ โดย Internet Engineering Task Force (IETF) องค์กรที่รับผิดชขอบในการกำหนดมาตรฐานอินเทอร์เน็ต ได้พัฒนาโปรโตคอลการสื่อสารแบบใหม่

< <https://www.thebangkokinsight.com/413869/> https://www.thebangkokinsight.com/413869/>

 

จีนเร่งพัฒนาโลกอินเทอร์เน็ตใหม่ที่ปิดโอกาสการซ่อนตัวตนของผู้ใช้งาน [China accelerates development of new internet world that shuts down the opportunity to hide the identity of its users]

... วิศวกรด้านคอมพิวเตอร์เสนอแผนพัฒนาระบบอินเทอร์เน็ตใหม่มาตั้งแต่เมื่อปี ค.ศ. 1998 ก่อนที่องค์กร Internet Engineering Task Force (IETF) ซึ่งรับผิดชอบการจัดมาตรฐานอินเทอร์เน็ต จะเปิดตัวข้อกำหนดในการติดต่อสื่อสารระหว่างอุปกรณ์สสำหรับระบบ IPv6 ซึ่งเอื้อให้มีการใช้อุปกรณ์เชื่อมต่อมากขึ้นแบบก้าวกระโดด

< <https://www.sanook.com/hitech/1508237/> https://www.sanook.com/hitech/1508237/>

 

TLS 1.3 и DoH ще променят контрола на сигурността [TLS 1.3 and DoH will change security controls]

... Защитниците на поверителността и неприкосновеността работиха усилено заедно с експертите от Internet Engineering Task Force (IETF), за да осигурят мерки за противодействие срещу подслушването и събирането на данни, обясни Холмс, цитиран от Tech Republic. Резултатът от тази съвместна работа са последната версия TLS 1.3 и криптирането на системата от имена на домейни. Тези промени всъщност предизвикаха противоречия, защото:

< <https://technews.bg/article-126858.html> https://technews.bg/article-126858.html>

 

**********************

INTERNET OF THINGS

**********************

ETSI Standard on Consumer IoT Security

With an increasing number of devices across the world being connected to the internet, the security of IoT devices is becoming a larger concern. That’s precisely why bringing to light the European Telecommunications Standards Institute or ETSI standard on how smart products should be secured is so important.

< <https://www.iotforall.com/etsi-standard-consumer-iot-security/> https://www.iotforall.com/etsi-standard-consumer-iot-security/>

 

**********************

SECURITY & PRIVACY

**********************

Partnering with Euro-IX on Infrastructure Development, Routing Security, and More

We can only be successful in creating an Internet for everyone if everyone is part of the effort. That’s why the Internet Society is thrilled to be entering into a partnership with the European Internet Exchange Association (Euro-IX).

< <https://www.internetsociety.org/blog/2020/08/partnering-with-euro-ix-on-infrastructure-development-routing-security-and-more/> https://www.internetsociety.org/blog/2020/08/partnering-with-euro-ix-on-infrastructure-development-routing-security-and-more/>

 

The COVID-19 Pandemic and Other Issues Are Stressing Corporate Cyber-Risk Management

Risks of virtually all types have exploded in 2020, courtesy of the COVID-19 pandemic and the brutal recession accompanying it, and—yes—the list absolutely includes substantially heightened uncertainty in the corporate cybersecurity landscape.

< <https://www.rsaconference.com/industry-topics/blog/the-covid-19-pandemic-and-other-issues-are-stressing-corporate-cyber-risk-managem> https://www.rsaconference.com/industry-topics/blog/the-covid-19-pandemic-and-other-issues-are-stressing-corporate-cyber-risk-managem>

 

Q2 DDoS Attacks Triple Year Over Year: Report

The number of DDoS attacks in the second quarter of 2020 was three times higher than the amount recorded in the same quarter of 2019, and only slightly lower than DDoS attacks in the first quarter. This is unusual, researchers say, as they usually see DDoS start to decline by now.

< <https://www.darkreading.com/attacks-breaches/q2-ddos-attacks-triple-year-over-year-report/d/d-id/1338622> https://www.darkreading.com/attacks-breaches/q2-ddos-attacks-triple-year-over-year-report/d/d-id/1338622>

 

Protocol gateway flaws reveal a weak point in ICS environments

Research presented at this week's Black Hat conference highlights a new threat via protocol translation attacks and reveals 9 flaws found in protocol gateways from different vendors.

< <https://www.csoonline.com/article/3570419/protocol-gateway-flaws-reveal-a-weak-point-in-ics-environments.html> https://www.csoonline.com/article/3570419/protocol-gateway-flaws-reveal-a-weak-point-in-ics-environments.html>

 

Cybersecurity Skills Gap Worsens, Fueled by Lack of Career Development

Much has been made of the cybersecurity skills shortage: It has long been an issue that many companies can’t effectively source the in-house talent they need, even as threats accelerate in both volume and sophistication. A recent survey however shows that the situation doesn’t appear to be improving.

< <https://threatpost.com/cybersecurity-skills-gap-career-development/158253/> https://threatpost.com/cybersecurity-skills-gap-career-development/158253/>

 

**********************

TLS

**********************

Zoom may have another major security worry

Earlier this year Zoom found itself in hot water over claims that its video conferencing service uses end-to-end encryption when it instead employs transport encryption instead. ... Back in April, The Intercept released a report which revealed that Zoom uses transport encryption as opposed to end-to-end encryption. Transport encryption is a Transport Layer Security (TLS) protocol which secures the connection between a user and the server they are connected to. However, the main difference between transport encryption and end-to-end encryption is that while others won't be able to access your data, Zoom will still be able to.

< <https://www.techradar.com/au/news/zoom-sued-over-misleading-security-claims> https://www.techradar.com/au/news/zoom-sued-over-misleading-security-claims>

 

**********************

OTHERWISE NOTEWORTHY

**********************

Speed Matters: How Businesses Can Improve User Experience Using Open Standards

A recent report – Milliseconds make Millions – commissioned by Google and published by Deloitte, has shown that mobile website speed has a direct impact on user experience. Reducing latency and decreasing load times by just 0.1 second can positively affect conversion rates potentially leading to an increase in net earnings.

< <https://www.internetsociety.org/blog/2020/08/speed-matters-how-businesses-can-improve-user-experience-using-open-standards/> https://www.internetsociety.org/blog/2020/08/speed-matters-how-businesses-can-improve-user-experience-using-open-standards/>

 

Measuring the Internet – Mid Year Project Update

Here at the Internet Society, we believe that the Internet is for everyone. Our work centers on increasing the Internet’s reach, reliability and resilience, as well as ensuring that the network of networks remains open, globally connected, secure, and trustworthy.

< <https://www.internetsociety.org/blog/2020/08/measuring-the-internet-mid-year-project-update/> https://www.internetsociety.org/blog/2020/08/measuring-the-internet-mid-year-project-update/>

 

Build back better after COVID-19: Key learnings from 20 years of ICT regulatory reform

As we look back at 20 years of telecommunication/information and communication technology regulation at this year’s milestone Global Symposium for Regulators (GSR-20), there is no better time to understand how the responses and initiatives from the ICT sector during the COVID-19 pandemic can help ITU Members – and the world – to build back better.

< <https://news.itu.int/build-back-better-covid-19-learnings-20-years-ict-regulatory-reform-gsr/> https://news.itu.int/build-back-better-covid-19-learnings-20-years-ict-regulatory-reform-gsr/>

 

Democratizing Innovation

Policymakers and the public at large understand the importance of innovation to economic growth and well being. What is less well appreciated is the degree to which the innovation agenda has been captured by narrow groups of investors and firms whose values and interests don’t necessarily reflect society’s needs.

< <https://www.project-syndicate.org/commentary/policymakers-should-influence-course-of-technological-innovation-by-dani-rodrik-2020-08> https://www.project-syndicate.org/commentary/policymakers-should-influence-course-of-technological-innovation-by-dani-rodrik-2020-08>

------

David Goldstein

email:  <mailto:david@goldsteinreport.com> david@goldsteinreport.com

web:  <http://goldsteinreport.com/> http://goldsteinreport.com/

Twitter:  <https://twitter.com/goldsteinreport> https://twitter.com/goldsteinreport

phone: +61 418 228 605 - mobile; +61 2 9663 3430 - office/home