[Newsclips] IETF SYN-ACK Newspack 2021-11-08

[David Goldstein <david@goldsteinreport.com>]

The IETF SYN-ACK Newspack collects IETF-related items from a variety of news outlets and other online publications. They do not represent the views of the IETF and are not checked for factual accuracy.

 

 

**********************

IETF IN THE NEWS

**********************

IAB report to the community for IETF 112

This is the IAB report for the period between IETF 111 and IETF 112. This report presents a summary of activities.

< <https://www.iab.org/2021/11/01/iab-report-to-the-community-for-ietf-112/> https://www.iab.org/2021/11/01/iab-report-to-the-community-for-ietf-112/>

 

Call for nominations: IETF appointment to the ISOC Board of Trustees

The Internet Society (ISOC) provides organizational and financial support for the IETF. As part of the arrangements between ISOC and the IETF, the IETF is called upon to name 4 Trustees to its Board (BoT), with staggered 3-year terms.

< <https://www.iab.org/2021/11/02/call-for-nominations-ietf-appointment-to-the-isoc-board-of-trustees-8/> https://www.iab.org/2021/11/02/call-for-nominations-ietf-appointment-to-the-isoc-board-of-trustees-8/>

 

Qui est Dr. Bilel Jamoussi, candidat de la Tunisie au poste de Directeur du Bureau de la Normalisation des télécommunications de l’UIT 2023-2026 [Who is Dr. Bilel Jamoussi, candidate from Tunisia for the post of Director of the ITU Telecommunication Standardization Bureau 2023-2026]

... • Coopération et collaboration avec les autres organes de normalisation tel que WSC (CEI, ISO, UIT), GSC, ETSI, IEEE, IETF, GSMA, W3C, oneM2M, TMF, LoRa Alliance, etc. et les organismes de l’ONU tel que l’OMS, la CEE-ONU, le PNUD, l’OMM, et le PNUE

< <https://www.leaders.com.tn/article/32605-qui-est-dr-bilel-jamoussi-candidat-de-la-tunisie-au-poste-de-directeur-du-bureau-de-la-normalisation-des-telecommunications-de-l-uit-2023-2026> https://www.leaders.com.tn/article/32605-qui-est-dr-bilel-jamoussi-candidat-de-la-tunisie-au-poste-de-directeur-du-bureau-de-la-normalisation-des-telecommunications-de-l-uit-2023-2026>

 

من يكون الدكتور بلال الجموسي مرشح الجمهورية التونسية لخطة مدير مكتب تقييس الاتصالات بالاتحاد الدولي للاتصالات 2023-2026 [Who will be Dr. Bilal Al-Jamussi, candidate of the Tunisian Republic for the plan of the Director of the Telecommunications Standardization Office of the International Telecommunication Union 2023-2026]

... • التعاون والشراكة مع هيئات التقييس الأخرى مثلWSC (UIT, ISO, CEI)W3C ,IETF ,IEEE ,ETSI, TMF,OneM2M, LoRa Alliance... ووكالات الأمم المتحدة مثل منظمة الصحة العالمية، ولجنة الأمم المتحدة الاقتصادية لأوروبا، وبرنامج الأمم المتحدة الإنمائي، والمنظمة العالمية للأرصاد الجوية، وبرنامج الأمم المتحدة للبيئة.

< <https://ar.leaders.com.tn/article/6304-الدكتور-بلال-الجموسي-مرشح-الجمهورية-التونسية-لخطة-مدير-مكتب-تقييس-الاتصالات-بالاتحاد-الدولي-للاتصالات> https://ar.leaders.com.tn/article/6304-الدكتور-بلال-الجموسي-مرشح-الجمهورية-التونسية-لخطة-مدير-مكتب-تقييس-الاتصالات-بالاتحاد-الدولي-للاتصالات>

 

Un nouvel internet décentralisé, ou Web 3.0, est-il possible ? [Is a new decentralized internet, or Web 3.0, possible?]

Le temps est venu de lutter contre la domination des géants de l’internet. En Europe, diverses réglementations ont été adoptées qui visent à forcer ces géants à respecter des règles du jeu plus saines et à être plus protecteurs des droits des utilisateurs et de la concurrence. Certains prônent même le démantèlement des « Big techs », une arme de destruction massive rarement utilisée dans l’histoire. ... Une poignée d’entreprises détiennent un quasi-monopole au sein de l’internet dans les domaines critiques des services (moteurs de recherche, courrier électronique, etc.), des infrastructures (transit mondial, réseaux de distribution de contenu, services de cloud computing, etc.) et même, dans une certaine mesure, de la normalisation de l’internet (IETF, ICANN/IANA, W3C, etc.). L’équation est sans précédent, et leur position est devenue quasiment inexpugnable.

< <https://www.cointribune.com/tribunes/tribune-du-droit-fiscalite/un-nouvel-internet-decentralise-ou-web-3-0-est-il-possible/> https://www.cointribune.com/tribunes/tribune-du-droit-fiscalite/un-nouvel-internet-decentralise-ou-web-3-0-est-il-possible/>

 

La Sécurité des Visioconférences, un monde idéal ! [Videoconferencing Security, an ideal world!]

... WebRTC est un nouveau standard Web soutenu par W3C (2) et IETF (3) à l’initiative de Google notamment. Il permet de commuter des ordinateurs entre eux au moyen de la technologie Peer to Peer.

< <https://www.journaldunet.com/solutions/dsi/1503345-video-en-ligne-un-enjeu-de-souverainete/> https://www.journaldunet.com/solutions/dsi/1503345-video-en-ligne-un-enjeu-de-souverainete/>

 

標準仕様はW3CからWHATWGに　WebHIDやWASMに関心高まる [Standard specifications increase interest in WebHID and WASM from W3C to WHATWG]

... HTMLは1989年にティム・バーナーズ＝リー氏が発明して以降、仕様策定の場をIETF▼やW3Cといった標準化団体に移した。HTML 1.0は1993年、HTML 2.0は1995年にIETFが標準化した。その後W3Cに移管され、1997年にHTML 3.2およびHTML 4.0が標準化された。

< <https://xtech.nikkei.com/atcl/nxt/mag/nnw/18/102200122/102200003/> https://xtech.nikkei.com/atcl/nxt/mag/nnw/18/102200122/102200003/>

 

携帯電話（フィーチャーフォン、ガラケー）及び一部のスマートフォンは図書館ホームページをご利用できなくなります。 [Mobile phones (feature phones, garages) and some smartphones will not be able to use the library homepage.]

西宮市立図書館ホームページでは、みなさまに安心してご利用いただけるよう、暗号化通信(TLS)を用いています。この暗号化通信のバージョンのうち、TLS1.0及びTLS1.1について問題（脆弱性）があり、非推奨とする方針がIETF（世界的なインターネット技術の標準化団体）より示されました。

< <https://www.nishi.or.jp/bunka/shisetsuannai/toshokan/oshirase/20211105tosyokanhp.html> https://www.nishi.or.jp/bunka/shisetsuannai/toshokan/oshirase/20211105tosyokanhp.html>

 

**********************

SECURITY & PRIVACY

**********************

China Hosts More Malware Than Russia: Findings From DNSFilter’s 2021 Domain Threat Report

AI-driven web security company DNSFilter has released its annual Domain Threat Report. Their research spans March 2020 through August 2021, but they found that more than the COVID pandemic impacted end users’ interaction with malicious sites. They identified trends among sites related to cryptocurrency, unemployment, and more.

< <https://www.dnsfilter.com/newsroom/china-hosts-more-malware-than-russia-dnsfilters-2021-domain-threat-report> https://www.dnsfilter.com/newsroom/china-hosts-more-malware-than-russia-dnsfilters-2021-domain-threat-report>

 

Cybercriminals Take Aim at Connected Car Infrastructure

While car makers are paying more attention to cybersecurity, the evolution of automobiles into "software platforms on wheels" and the quick adoption of new features has put connected cars in the crosshairs.

< <https://www.darkreading.com/attacks-breaches/cybercriminals-take-aim-at-connected-car-infrastructure> https://www.darkreading.com/attacks-breaches/cybercriminals-take-aim-at-connected-car-infrastructure>

 

The Future of Cybersecurity is in Silicon

Silicon-based security, including cryptography, secure storage, attestation and authentication, will enable developers to leverage hardware-based functions to secure their products and services.

< <https://www.orfonline.org/research/the-future-of-cybersecurity-is-in-silicon/> https://www.orfonline.org/research/the-future-of-cybersecurity-is-in-silicon/>

 

us: CISA Kicks Off Infrastructure Security Month

The Cybersecurity and Infrastructure Security Agency (CISA) kicks off Infrastructure Security Month today. Throughout the month, the agency will use the theme “Build It In” to remind people of the importance of considering infrastructure security and resilience from design concept all the way through development and implementation.

< <https://www.cisa.gov/news/2021/11/01/cisa-kicks-infrastructure-security-month> https://www.cisa.gov/news/2021/11/01/cisa-kicks-infrastructure-security-month>

 

Maritime Cybersecurity: A Rising Tide Lifts all Boats

Ports and ships — the maritime industry — are vital points in the global supply chain for food, medicine, consumer goods, fuel and many other products. Most of the world’s globally traded goods travel by sea. That’s why maritime security is key for supply chain security. Meanwhile, maritime cybersecurity faces threats at multiple places, including ports, communications systems and ships themselves.

< <https://securityintelligence.com/articles/maritime-cybersecurity-rising-tide/> https://securityintelligence.com/articles/maritime-cybersecurity-rising-tide/>

 

DNSSEC provisioning automation with CDS/CDNSKEY in the real world

Whenever a DNSSEC-signed zone changes its trust anchor — typically a Key Signing Key (KSK) — the delegation signer (DS) record has to be communicated to the parent zone via some API. RFC 7344 describes how this DNSSEC Delegation Trust Maintenance can be automated via the DNS itself:

< <https://blog.apnic.net/2021/11/02/dnssec-provisioning-automation-with-cds-cdnskey-in-the-real-world/> https://blog.apnic.net/2021/11/02/dnssec-provisioning-automation-with-cds-cdnskey-in-the-real-world/>

 

Op-Ed: What a house cat can teach us about cybersecurity

The news today often contains reports about cybersecurity breaches that steal our data or threaten our national security. The nation spends billions of dollars on cybersecurity measures, and yet we seem unable to get ahead of this problem. Why are our computers so hard to protect?

< <https://www.latimes.com/opinion/story/2021-11-07/op-ed-what-a-house-cat-can-teach-us-about-cybersecurity> https://www.latimes.com/opinion/story/2021-11-07/op-ed-what-a-house-cat-can-teach-us-about-cybersecurity>

 

An Attack Against Time

When Liza Minnelli sang that famous tune, “Money makes the world go around,” she should have added one more word: time. Time makes the world go around. It’s that one agreed-upon part of life that the world shares. From laptops to phones to wall clocks to just about every other technology, time is everywhere, controlling our important life responsibilities. In cybersecurity, time is also critical. Event log files rely on time. Forensic investigations rely on time. Networks rely on time. In fact, Network Time Protocol (NTP) is one of the oldest internet protocols still in use.

< <https://securityintelligence.com/posts/attack-against-time/> https://securityintelligence.com/posts/attack-against-time/>

 

DNSSEC provisioning automation with CDS/CDNSKEY in the real world

Whenever a DNSSEC-signed zone changes its trust anchor — typically a Key Signing Key (KSK) — the delegation signer (DS) record has to be communicated to the parent zone via some API. RFC 7344 describes how this DNSSEC Delegation Trust Maintenance can be automated via the DNS itself:

< <https://blog.apnic.net/2021/11/02/dnssec-provisioning-automation-with-cds-cdnskey-in-the-real-world/> https://blog.apnic.net/2021/11/02/dnssec-provisioning-automation-with-cds-cdnskey-in-the-real-world/>

 

**********************

INTERNET OF THINGS

**********************

Submission to Canadian Government Consultation on a Modern Copyright Framework for AI and the Internet of Things

Abstract: We are grateful for the opportunity to participate in the Canadian Government’s consultation on a modern copyright framework for AI and the Internet of Things. Below, we present some of our research findings relating to the importance of flexibility in copyright law to permit text and data mining (“TDM”). As the consultation paper recognizes, TDM is a critical element of artificial intelligence. Our research supports the adoption of a specific exception for uses of works in TDM to supplement Canada’s existing general fair dealing exception.

< <https://papers.ssrn.com/sol3/papers.cfm?abstract_id=3952238> https://papers.ssrn.com/sol3/papers.cfm?abstract_id=3952238>

 

EU sets new cybersecurity rules for wireless 'internet of things'

The European Commission has adopted new cybersecurity rules for wireless devices with the aim to prevent online payment fraud and better protect citizens' personal data – after several reports flagged up the risks from toys that spy on children or unencrypted data stored on smartphones.

< <https://euobserver.com/democracy/153385> https://euobserver.com/democracy/153385>

 

Privacy and the Internet of Things

All these devices we have at home or in the car are known as the Internet of Things and there are more than 7 billion of them all over the world. Anything we own that's connected to the internet is also a very tempting target for hackers and cybercriminals. A recent report estimated that four out of five Australians have been hacked through the Internet of Things, so how can we protect ourselves and our gadgets?

< <https://www.abc.net.au/radio/brisbane/programs/afternoons/privacy-and-the-internet-of-things/13618786> https://www.abc.net.au/radio/brisbane/programs/afternoons/privacy-and-the-internet-of-things/13618786>

 

Why Smart Cities Begin With More Connected Schools

Schools need to make data-driven transportation decisions so they can serve their communities with agility and build the foundation for more intelligent cities down the road.

< <https://www.eweek.com/networking/why-smart-cities-begin-with-more-connected-schools/> https://www.eweek.com/networking/why-smart-cities-begin-with-more-connected-schools/>

 

Webinar: How 5G in smart cities accelerates innovation

The latest webinar from SmartCitiesWorld and Cloudera takes an in-depth look at how 5G is accelerating urban innovation, and the role of data analysis as part of that acceleration. 

< <https://www.smartcitiesworld.net/webinars/webinar-how-5g-in-smart-cities-accelerates-innovation> https://www.smartcitiesworld.net/webinars/webinar-how-5g-in-smart-cities-accelerates-innovation>

 

Cybercriminals Take Aim at Connected Car Infrastructure

While car makers are paying more attention to cybersecurity, the evolution of automobiles into "software platforms on wheels" and the quick adoption of new features has put connected cars in the crosshairs.

< <https://www.darkreading.com/attacks-breaches/cybercriminals-take-aim-at-connected-car-infrastructure> https://www.darkreading.com/attacks-breaches/cybercriminals-take-aim-at-connected-car-infrastructure>

 

**********************

NEW TRANSPORT PROTOCOLS

**********************

你未必知道的WebRTC：前世、今生、未来 [WebRTC you may not know: past, present, future]

如果你是一位工程师，想必听过 WebRTC，就算没有开发过；如果你是一位互联网用户，大概率使用过 WebRTC，虽然可能没有意识到。在这个视频为王的时代，我们漫谈一下这个技术的来龙去脉以及一些有趣的应用。 ... 当 WebRTC 成为公共标准后，Google自己貌似在开始与 WebRTC “脱钩”，开始投资到另一个全新的技术栈：WebTransport + WebCodecs + WebAssembly。其中 WebTransport 主要基于 QUIC（HTTP/3的传输层协议），带来更低的网络延迟，更适合视频类应用。WebCodecs 内置于浏览器，让其有独立的音视频编码解码能力。WebAssembly，一个已经发展了相当长时间、进入成熟期的开源技术，它不仅让浏览器渲染执行 JavaScript 代码的性能获得“原生”级别的提升，更重要的是它可能支持机器学习方面的结合。

< <https://wap.stockstar.com/detail/IG2021110500006154> https://wap.stockstar.com/detail/IG2021110500006154>

 

**********************

OTHERWISE NOTEWORTHY

**********************

Standards needed to achieve net-zero, said UN SG at COP26

World's leading developers of international standards welcome decision to establish a group of experts to “propose clear standards to measure and analyse net-zero commitments from non-state actors”.

< <https://www.itu.int/en/myitu/News/2021/11/03/15/47/Standards-needed-to-achieve-net-zero-said-UNSG-at-COP26> https://www.itu.int/en/myitu/News/2021/11/03/15/47/Standards-needed-to-achieve-net-zero-said-UNSG-at-COP26>

 

IEEE to Standardize xAPI v2.0 as an International Standard

The Institute of Electrical and Electronics Engineers (IEEE) professional standards association is on track to release the Experience Application Programming Interface (xAPI) version 2.0 as an international standard within the next six months. Recognizing xAPI as a global data standard will promote its adoption and use, allowing it to be specified in procurement contracts and acquisition language for digital learning products and services.

< <https://adlnet.gov/news/2021/10/20/IEEE-to-Standardize-xAPI-v2.0-as-an-International-Standard/> https://adlnet.gov/news/2021/10/20/IEEE-to-Standardize-xAPI-v2.0-as-an-International-Standard/>

 

Subspace Rebuilt the Internet for Real-Time Applications: The company uses "Internet weather" mapping, automatic rerouting, and dedicated fiber to speed up traffic

The Internet was designed to move data worldwide, and to do so in spite of disruptions from natural disasters, nuclear attacks, or other catastrophes. At first the goal was just to increase the volume of data moving over networks. But with the rising importance of real-time applications like videoconferencing and online gaming, what now matters most is reducing latency—the time it takes to move data across the network.

< <https://spectrum.ieee.org/internet-latency> https://spectrum.ieee.org/internet-latency>

 

It’s Time to Nominate a Colleague for One of IEEE’s Major Awards

Each year IEEE pays tribute to technical professionals whose outstanding contributions have made a lasting impact on technology and the engineering profession for humanity. The IEEE Awards program seeks nominations annually for IEEE's top awards—Medals, Recognitions, and Technical Field Awards—that are given on behalf of the IEEE Board of Directors.

< <https://spectrum.ieee.org/nominate-colleague-for-ieee-award> https://spectrum.ieee.org/nominate-colleague-for-ieee-award>

 

Global Encryption Day – A Worldwide Success!

The first ever Global Encryption Day was held on 21 October 2021 and was an outstanding success! Organized by the Global Encryption Coalition (GEC), Global Encryption Day brought people together around the world to champion strong encryption and to deliver the message to governments that weakening encryption puts people, communities, and entire nations at risk. On Global Encryption Day:

< <https://www.internetsociety.org/blog/2021/11/global-encryption-day-a-worldwide-success/> https://www.internetsociety.org/blog/2021/11/global-encryption-day-a-worldwide-success/>

 

CCID5: Evaluating BBR for Datagram Congestion Control Protocol

Bottleneck Bandwidth and Round-trip time (BBR) is a relatively new congestion control algorithm for TCP traffic that has been proven to overcome problems like low throughput, long delays, and buffer-bloating typically present in loss-based Congestion Control (CC) algorithms.

< <https://blog.apnic.net/2021/11/03/ccid5-evaluating-bbr-for-datagram-congestion-control-protocol/> https://blog.apnic.net/2021/11/03/ccid5-evaluating-bbr-for-datagram-congestion-control-protocol/>

 

All the Gs, part 2: 2G to 4G

Unless you have been asleep under a rock for the last few years, you will be aware that we’re on the brink of another uptick in mobile data bandwidth. 5G has arrived. But what were the precursor technologies that led to 5G?

< <https://blog.apnic.net/2021/11/04/2g-to-4g/> https://blog.apnic.net/2021/11/04/2g-to-4g/>

 

US democratic alliance on internet governance ‘not yet clear’ for EU Commission

A United States initiative to put forth a proposal on the future governance of the internet is still too undefined for the European Commission, according to an internal communication seen by EURACTIV.

< <https://www.euractiv.com/section/digital/news/us-democratic-alliance-on-internet-governance-not-yet-clear-for-eu-commission/> https://www.euractiv.com/section/digital/news/us-democratic-alliance-on-internet-governance-not-yet-clear-for-eu-commission/>

 

Tim Berners-Lee Wants to Put Online Privacy on a Solid Foundation

The man who invented the web attended a conference named after it to suggest a course correction for his creation. “People ask me constantly: Tim, if you could go back in time to 1989, what would you change about how the Web was built,” said Tim Berners-Lee at the start of his talk Thursday afternoon at the Web Summit in Lisbon. By which, he continued, they mean: “How on Earth did we get here, and can we fix it?”

< <https://au.pcmag.com/security/90589/tim-berners-lee-wants-to-put-online-privacy-on-a-solid-foundation> https://au.pcmag.com/security/90589/tim-berners-lee-wants-to-put-online-privacy-on-a-solid-foundation>

 

The latest space race is all about improving Internet access. Here’s what you should know.

Whether you knew it or not, the new space race that’s unfolding is about Internet access. Since 2019, Elon Musk’s SpaceX has put more than 1,000 of its Starlink satellites into low-earth orbit as part of a plan to provide broadband Internet to underserved communities around the world. And just this week, Amazon announced that it plans to put its first prototype Project Kuiper satellites in orbit by the end of 2022 with a similar goal in mind. (Amazon founder Jeff Bezos owns The Washington Post.)

< <https://www.washingtonpost.com/technology/2021/11/02/satellite-internet-starlink-kuiper-faq/> https://www.washingtonpost.com/technology/2021/11/02/satellite-internet-starlink-kuiper-faq/>

------

David Goldstein

email:  <mailto:david@goldsteinreport.com> david@goldsteinreport.com

web:  <http://goldsteinreport.com/> http://goldsteinreport.com/

Twitter:  <https://twitter.com/goldsteinreport> https://twitter.com/goldsteinreport

phone: +61 418 228 605 - mobile; +61 2 9663 3430 - office/home