[Newsclips] IETF SYN-ACK Newspack 2021-09-13

[David Goldstein <david@goldsteinreport.com>]

The IETF SYN-ACK Newspack collects IETF-related items from a variety of news outlets and other online publications. They do not represent the views of the IETF and are not checked for factual accuracy.

 

**********************

IETF IN THE NEWS

**********************

TELUS and Ericsson: How network slicing is changing the fundamentals of telecom

... To test the merit of network slicing and the “art of the possible,” TELUS and Ericsson conducted the first multi-vendor network slicing proof of concept (POC) in a lab environment based on two different standard bodies, 3GPP Release 16 and the IETF.

< <https://www.ericsson.com/en/blog/2021/9/telus-and-ericsson-partnership-shows-how-network-slicing-is-changing-the-fundamentals-of-telecom> https://www.ericsson.com/en/blog/2021/9/telus-and-ericsson-partnership-shows-how-network-slicing-is-changing-the-fundamentals-of-telecom>

 

IPv6+ Accelerates Carriers' Target Network Development in Asia Pacific [news release]

... ETSI ISG IPE Chairman Latif Ladid and IETF IAB member Robin Li delivered keynote speeches focusing on the global IPv6 development trend, IPv6 technological innovation system, IPE industry alliance and the latest progress of IPv6+ standards. ... In the keynote themed "IPv6+ Standards and Industry Progress" by Robin Li, the IETF IAB member said that services drive IP evolution. From Native IP to MPLS, IP networks have entered the IPv6+ era. It is recommended that the evolution and deployment of IPv6+ standard in three phases:

< <http://us.acrofan.com/detail.php?number=526040> http://us.acrofan.com/detail.php?number=526040>

< <https://www.ft.lk/it-telecom-tech/IPv6-accelerates-carriers-target-network-development-in-Asia-Pacific/50-722794> https://www.ft.lk/it-telecom-tech/IPv6-accelerates-carriers-target-network-development-in-Asia-Pacific/50-722794>

 

Debunking Wi-Fi® Security Myths: Public Wi-Fi Hotspots are Insecure

... In situations where the public network absolutely must be unauthenticated, there is Wi-Fi Enhanced Open, and network operators of open Wi-Fi networks should use this feature. Wi-Fi Enhanced Open reduces the risk of data exposure or theft while maintaining the convenience of being able to simply connect to an open network via a public Wi-Fi hotspot. Open Wi-Fi used to mean “unencrypted Wi-Fi”, but now Wi-Fi Enhanced Open networks provide unauthenticated data encryption to users. Based on Opportunistic Wireless Encryption (OWE) defined in the Internet Engineering Task Force (IETF) RFC8110 specification and the Wi-Fi Alliance Opportunistic Wireless Encryption Specification, Wi-Fi Enhanced Open benefits users by providing unauthenticated data encryption while maintaining the ease of use of open networks. The capability is transparent to users, and benefits network providers because there are no public passphrases to maintain, share, or manage.

< <https://techspective.net/2021/09/10/debunking-wi-fi-security-myths-public-wi-fi-hotspots-are-insecure/> https://techspective.net/2021/09/10/debunking-wi-fi-security-myths-public-wi-fi-hotspots-are-insecure/>

 

Visiting Oslo by bike, a Norwegian student tracks Bluetooth headset users

... “With the boom in smart devices over the last decade,” said Moore, “it is extremely concerning that this hasn’t been considered when privacy is taking a powerful turn currently. The post-Snowden era makes these findings even more worrisome too.” Back in 2014 the Internet Engineering Taskforce (IETF) vowed to toughen its protocols to prevent trivially easy spying of the type uncovered by NSA whistleblower Snowden. The following year MAC address randomisation emerged as one of the concrete wins from that effort.

< <https://www.bollyinside.com/news/visiting-oslo-by-bike-a-norwegian-student-tracks-bluetooth-headset-users> https://www.bollyinside.com/news/visiting-oslo-by-bike-a-norwegian-student-tracks-bluetooth-headset-users>

 

With a new data protection act on the cards, time for a reality check

... The internet has been developed as a transborder, decentralised and virtual space which everyone can access, irrespective of their nationality, race, creed or culture. Since its public launch in the 1990s, the internet has been intentionally kept outside the control of national jurisdiction. It is a borderless abstract space that is controlled and regulated mostly by private groups and entities—e.g. the Internet Corporation for Assigned Names and Numbers (ICANN), the Internet Engineering Task Force (IETF), the Internet Research Task Force (IRTF), regional internet registries (RIRs), etc.

< <https://www.thedailystar.net/views/opinion/news/new-data-protection-act-the-way-time-reality-check-2171611> https://www.thedailystar.net/views/opinion/news/new-data-protection-act-the-way-time-reality-check-2171611>

 

Building a 400GE backbone network for the smart era

... Huawei is also promoting the development of the SRv6 industry. As a next-gen network protocol technology, SRv6 has become the preferred choice for future network architecture. Huawei contributed to SRv6 standardization, leading and participating in 35 IETF SRv6 contributions, 85 percent of the total number. Huawei is working on joint innovation projects in this area with a number of operators, including China Telecom. Huawei offers the most complete SRv6 capabilities in the industry, and is accelerating the simplification and smartification of the backbone network.

< <https://www.huawei.com/ie/technology-insights/publications/huawei-tech/87/building-400ge-backbone-network-for-the-smart-era> https://www.huawei.com/ie/technology-insights/publications/huawei-tech/87/building-400ge-backbone-network-for-the-smart-era>

 

With a new data protection act on the cards, time for a reality check

The internet has been developed as a transborder, decentralised and virtual space which everyone can access, irrespective of their nationality, race, creed or culture. Since its public launch in the 1990s, the internet has been intentionally kept outside the control of national jurisdiction. It is a borderless abstract space that is controlled and regulated mostly by private groups and entities—e.g. ICANN, the IETF, the Internet Research Task Force, regional internet registries, etc.

< <https://www.thedailystar.net/views/opinion/news/new-data-protection-act-the-way-time-reality-check-2171611> https://www.thedailystar.net/views/opinion/news/new-data-protection-act-the-way-time-reality-check-2171611

 

Firefox 92 ermöglicht HTTPS-Upgrades dank DNS [Firefox 92 enables HTTPS upgrades thanks to DNS]

... Der Vorteil dieser Vorgehensweise ist, dass mit dem Weg über das DNS zunächst keine HTTP-Verbindung mehr zu dem angesurften Server aufgebaut werden muss, die dann erst danach auf HTTPS migriert wird. Um die Sicherheit dabei aufrechtzuerhalten, muss ein vertrauenswürdiger DNS-Server über eine sichere Verbindung wie DoH genutzt werden. Die genannten Techniken sind Teil größerer Arbeiten bei der IETF und Mozilla will damit künftig das sogenannte Encrypted Client Hello (ECH) umsetzen, als Alternative zu ESNI. Eine Übersicht zu der Technik selbst samt einer Erklärung zu Unterschieden im Vergleich zu HSTS liefert die Chrome-Entwicklerin Emily Stark in ihrem Blog.

< <https://www.golem.de/news/mozilla-firefox-92-ermoeglicht-https-upgrades-dank-dns-2109-159423.html> https://www.golem.de/news/mozilla-firefox-92-ermoeglicht-https-upgrades-dank-dns-2109-159423.html>

 

Visioconférence, une définition en un clic [Videoconferencing, a one-click definition]

... A défaut de consensus entre opérateurs télécoms et fournisseurs d’accès internet, ce sont dans les années 2005 à 2010 les acteurs d’internet et du web – Google, Facebook, Microsoft, Cisco, Adobe, etc. – qui ont banalisé des offres de visioconférence interopérables sur TCP/IP (le protocole SIP de l’IETF l’emportant sur H323 soutenue par l’IUIT-T, SG16). Ce fut l’émergence de solutions utilisant la VoIP (voice over IP), lancées par des start-up telles que Skype, Yahoo Messenger, Jami, Snapchat, etc. Ces solutions ont eu l’avantage de fonctionner sur PC, mais aussi sur tablettes et smartphones avec caméras, connectés à internet via la 3G (UMTS) puis la 4G.

< <https://www.zdnet.fr/lexique-it/visioconference-une-definition-39928673.htm> https://www.zdnet.fr/lexique-it/visioconference-une-definition-39928673.htm>

 

Bluetooth fülessel mászkál? Rossz ötlet [Are you walking around with a Bluetooth earpiece? Bad idea]

... Pedig van eszköz a kivédésére. A MAC-címek randomizálása például annak az első eredménye, hogy 2014-ben az Internet Engineering Taskforce (IETF) meghirdette: szigorítja protokolljait, hogy megakadályozza a Snowden által feltárt, triviális megfigyelési lehetőségeket.

< <https://bitport.hu/bluetooth-fulessel-maszkal-rossz-otlet> https://bitport.hu/bluetooth-fulessel-maszkal-rossz-otlet>

 

IPv6开启标准化工作，独立IP未来将不再稀缺 [IPv6 starts standardization work, and stand-alone IP will no longer be scarce in the future]

... 所谓的IPv6，其实是“Internet Protocol Version 6”（互联网协议第6版）的缩写，是互联网工程任务组（IETF）为IPv4地址资源枯竭而设计的下一代IP协议。对于互联网有着一定了解的朋友想必都听说过“IP地址”，这是在互联网中定位到相应设备的核心元素，相当于是互联网世界中的门牌号。

< <https://www.36kr.com/p/1387023870049669> https://www.36kr.com/p/1387023870049669>

 

IPv6全球部署概况 [Overview of IPv6 global deployment]

来自华为、Verizon、中国电信和Inside Products公司的专家在IETF的V60PS提交了关于IPv6部署状态的草案报告，旨在提供一份IPv6过渡技术的调研，并发掘在过渡技术中出现的难点。

< <https://www.edu.cn/xxh/ip6/202109/t20210909_2153300.shtml> https://www.edu.cn/xxh/ip6/202109/t20210909_2153300.shtml>

 

**********************

SECURITY & PRIVACY

**********************

Major New OpenSSL Released

A key part of the cryptographic infrastructure of the Internet, OpenSSL has turned 3.0, but rival Rust-based TLS, Rustls, promises to head off future security vulnerabilities.

< <https://www.darkreading.com/application-security/major-new-openssl-released> https://www.darkreading.com/application-security/major-new-openssl-released>

 

Cybercriminals See Bountiful Harvest in Food Supply Chain

The US Department of Justice put the food and agriculture sector on notice that companies need to beef up cybersecurity or risk attacks that could hobble their business and affect the critical infrastructure responsible for the US food supply.

< <https://www.darkreading.com/threat-intelligence/cybercriminals-see-bountiful-harvest-in-food-supply-chain> https://www.darkreading.com/threat-intelligence/cybercriminals-see-bountiful-harvest-in-food-supply-chain>

 

CIS Controls v8 Internet of Things & Mobile Companion Guides

The Center for Internet Security (CIS) launched CIS Controls v8 earlier this year. It was enhanced to keep up with evolving technology (modern systems and software), evolving threats, and even the evolving workplace. The v8 release was not just an update to the CIS Critical Security Controls (CIS Controls); the whole ecosystem surrounding the Controls has been (or soon will be) updated as well. The latest additions include the CIS Controls Internet of Things and Mobile Companion Guides.

< <https://www.cisecurity.org/blog/cis-controls-v8-internet-of-things-mobile-companion-guides/> https://www.cisecurity.org/blog/cis-controls-v8-internet-of-things-mobile-companion-guides/>

 

Routing concepts you may have forgotten, part 2: BGP is just harnessing gossip by George Michaelson

Part one of this series discussed the fundamentals of prefix and length, and explored how they help routing do its job because everyone maintains lists. As was said in that post:

< <https://blog.apnic.net/2021/09/10/routing-concepts-you-may-have-forgotten-part-2-bgp-is-just-harnessing-gossip/> https://blog.apnic.net/2021/09/10/routing-concepts-you-may-have-forgotten-part-2-bgp-is-just-harnessing-gossip/>

 

**********************

INTERNET OF THINGS

**********************

Internet of Things is missing horizontal cybersecurity standards

A report released by trade association DigitalEurope on Wednesday (8 September) underlined the lack of baseline cybersecurity requirements, saying the existing rules were insufficient and calling for horizontal regulation as the EU is working on updating its cybersecurity legislation.

< <https://www.euractiv.com/section/cybersecurity/news/internet-of-things-is-missing-horizontal-cybersecurity-standards/> https://www.euractiv.com/section/cybersecurity/news/internet-of-things-is-missing-horizontal-cybersecurity-standards/>

 

Rocket Lab signs five-launch deal with European Internet of Things satellite company Kinéis

Rocket Lab said Wednesday it signed a five-launch contract with European satellite data company Kinéis, adding to the space company’s backlog.

< <https://www.cnbc.com/2021/09/08/rocket-lab-signs-launch-deal-with-kinis-european-iot-satellites.html> https://www.cnbc.com/2021/09/08/rocket-lab-signs-launch-deal-with-kinis-european-iot-satellites.html>

 

US senators want Tencent-backed Internet of Things firm Tuya sanctioned, calling the Chinese platform a security threat

Three US senators are urging Treasury Secretary Janet Yellen to sanction Chinese Internet of Things (IoT) company Tuya Smart, calling the New York-listed company a national security threat that undermines Americans' privacy.

< <https://www.scmp.com/tech/tech-war/article/3148413/us-senators-want-tencent-backed-internet-things-firm-tuya-sanctioned> https://www.scmp.com/tech/tech-war/article/3148413/us-senators-want-tencent-backed-internet-things-firm-tuya-sanctioned>

< <https://www.msn.com/en-xl/news/other/us-senators-want-tencent-backed-internet-of-things-firm-tuya-sanctioned-calling-the-chinese-platform-a-security-threat/ar-AAOkzBk> https://www.msn.com/en-xl/news/other/us-senators-want-tencent-backed-internet-of-things-firm-tuya-sanctioned-calling-the-chinese-platform-a-security-threat/ar-AAOkzBk>

 

How the Internet of Things (IoT) is connecting rural farmers to the world

The world is ever-changing and, so is the sector your business operates in. You don’t just need data to keep track of trends that are shaping the economy – you need the expertise to turn that data into valuable insights and sustainable growth opportunities that will unlock your business’ potential.

< <http://www.702.co.za/articles/424622/smart-farming-how-iot-tracks-the-health-of-livestock-and-crops-in-real-time> http://www.702.co.za/articles/424622/smart-farming-how-iot-tracks-the-health-of-livestock-and-crops-in-real-time>

< <https://www.msn.com/en-za/news/other/how-the-internet-of-things-iot-is-connecting-rural-farmers-to-the-world/ar-AAO96Cx> https://www.msn.com/en-za/news/other/how-the-internet-of-things-iot-is-connecting-rural-farmers-to-the-world/ar-AAO96Cx>

 

**********************

NEW TRANSPORT PROTOCOLS

**********************

Need to measure QUIC packet loss? There’s a spin bit cousin for that

Network measurement techniques have been mostly developed independently from protocols and, therefore, typically build upon externally visible semantics. One example of this is TCP sequence numbers and acknowledgements, which can be used to derive a flow’s round-trip time (RTT).

< <https://blog.apnic.net/2021/09/08/need-to-measure-quic-packet-loss-theres-a-spin-bit-cousin-for-that/> https://blog.apnic.net/2021/09/08/need-to-measure-quic-packet-loss-theres-a-spin-bit-cousin-for-that/>

 

Java internet address resolution plan proposed

... In explaining the motivation for this proposal, proponents said the java.net.INetAddress API resolves host names to IP addresses and vice versa. The API currently uses the operating system’s native resolver, which typically is configured to use a combination of a local hosts file and the Domain Name System (DNS). Motivations for defining an SPI for name and address resolution include: ... or emerging network protocols, a resolver SPI would allow seamless integration of new protocols such as DNS over Quick UDP Internet Connections (QUIC), Transport Layer Security (TLS), or HTTPS.

< <https://www.infoworld.com/article/3632973/java-internet-address-resolution-plan-proposed.html> https://www.infoworld.com/article/3632973/java-internet-address-resolution-plan-proposed.html>

< <https://www.arnnet.com.au/article/691185/java-internet-address-resolution-plan-proposed/> https://www.arnnet.com.au/article/691185/java-internet-address-resolution-plan-proposed/>

< <https://www.reseller.co.nz/article/691185/java-internet-address-resolution-plan-proposed/> https://www.reseller.co.nz/article/691185/java-internet-address-resolution-plan-proposed/>

 

**********************

OTHERWISE NOTEWORTHY

**********************

Ruminating with VINT CERF: The co-founder of the Internet warns that your grandchildren might not be able to see any photos of you.

I met Vint Cerf through my wife, Emily, who booked him in 2014 on “The Colbert Report.” Born in California and trained at Stanford, Cerf and his colleague, Robert Kahn, played the key roles at Department of Defense Advanced Research Projects Agency (DARPA)  in developing the Internet and Internet-related technologies that made the advent of the World Wide Web possible. In 2005, he received the Presidential Medal of Freedom and joined Google, where he serves as VP and Chief Internet Evangelist.

< <https://oldgoats.substack.com/p/ruminating-with-vint-cerf> https://oldgoats.substack.com/p/ruminating-with-vint-cerf>

 

Internet Tech Standards Are the Next Human Rights Battleground

In the past few years, public awareness has grown about the race currently underway among states and corporations to dominate the development and deployment of new technologies. This isn’t only a race, however, to lock in the trade advantages that come with tech dominance. It is also a race to shape our societies and the values by which we live. And it is being run on many different tracks, some of them well-known by now—5G telecom networks and artificial intelligence—but others more obscure and unexpected.

< <https://www.worldpoliticsreview.com/articles/29936/internet-tech-standards-are-now-a-human-rights-issue> https://www.worldpoliticsreview.com/articles/29936/internet-tech-standards-are-now-a-human-rights-issue>

 

The IANA Transition at Five

Just five years ago, in September 2016, a significant change in the operation of the internet occurred. Known as the IANA transition, it involved the U.S. government giving up the last vestiges of its direct oversight of the World Wide Web and, more particularly, its unique avenue for exerting influence over the management of the internet’s DNS. At the end of the transition, a private nongovernmental organization—ICANN—assumed full responsibility for managing the DNS.

< <https://www.lawfareblog.com/iana-transition-five> https://www.lawfareblog.com/iana-transition-five>

 

PeeringDB 2021 User Survey is Now Open

PeeringDB is seeking input from network operators, exchange operators, facility providers, content distributors and anyone who uses our interconnection database. We are running an anonymous satisfaction survey until 11:59 PM UTC on Friday, 8 October 2021, and would like your feedback to help us make PeeringDB more useful to everyone involved in connecting networks.

< <https://teamarin.net/2021/09/09/peeringdb-2021-user-survey-is-now-open/> https://teamarin.net/2021/09/09/peeringdb-2021-user-survey-is-now-open/>

 

PeeringDB 2021 User Survey

PeeringDB wants input from network operators, exchange operators, facility providers, content distributors, and anyone who uses our interconnection database.

< <https://www.afrinic.net/peeringdb-2021-user-survey> https://www.afrinic.net/peeringdb-2021-user-survey>

 

Five reasons to peer

As I’m sure most APNIC Blog readers know, peering is a process in which two or more networks exchange traffic, and it can help you to make the most of your resources and expand your network for the benefit of your business. Reducing costs and improving user experience, peering has many more benefits for all sorts of organizations, from small hosting providers to ISPs, Content Delivery Networks (CDNs), and enterprises. This series looks at 10 different reasons why you should give peering a go, in two parts.

< <https://blog.apnic.net/2021/09/06/five-reasons-to-peer/> https://blog.apnic.net/2021/09/06/five-reasons-to-peer/>

 

Another five reasons to peer

>From reducing costs and improving user experience, peering has many more benefits for all sorts of organizations, including small hosting providers, ISPs, CDNs, and enterprises.

< <https://blog.apnic.net/2021/09/07/another-five-reasons-to-peer/> https://blog.apnic.net/2021/09/07/another-five-reasons-to-peer/>

------

David Goldstein

email:  <mailto:david@goldsteinreport.com> david@goldsteinreport.com

web:  <http://goldsteinreport.com/> http://goldsteinreport.com/

Twitter:  <https://twitter.com/goldsteinreport> https://twitter.com/goldsteinreport

phone: +61 418 228 605 - mobile; +61 2 9663 3430 - office/home