Disruptive Telephony

Today I'm driving about 2 hours southeast into downtown Boston to attend the USENIX Large Installation System Administration (LISA) conference. As I wrote about on an ISOC blog, the head of my team within the Internet Society, Richard Jimmerson, will be speaking today at 2pm Eastern on the topic of:

IPv6, DNSSEC, RPKI, etc.: What’s the Holdup and How Can We Help?

You’re busy. We get it. This industry moves fast and you’ve got your hands full keeping your networks updated and secure from the threat of the day. But why is it taking so long to deploy IPv6, DNSSEC, and other standards coming out of the IETF? These standards are the future of the Internet, but deployment to date has been slow.

He'll be outlining the new ISOC project of which I am a part that aims to help speed up the deployment of these standards - and asking for feedback and help. I will be there along with another team member, Megan Kruse, to talk with folks about the project and interact with people involved with IPv6, DNSSEC and other technologies.

It's been a good number of years since I last attended a USENIX conference but I'm very much looking forward to getting back with the crowd. Looks like some excellent technical talks so I'm looking forward to learning a good bit.

If you are down at LISA, please do feel free to drop me a note - or find me on Twitter. I expect I'll be tweeting out of the event and probably posting some thoughts and comments.

---

If you found this post interesting or useful, please consider either:

• following me on Twitter;
• adding me to a circle on Google+;
• subscribing to my email newsletter; or
• subscribing to the RSS feed

---

In the ongoing debate around the controversial "Stop Online Piracy Act (SOPA)" bill in the US Congress (that I have covered previously here and here), there are four updates worth reading:

• First, Matt Cutts provided a comprehensive SOPA update last week talking about all the online activism and support against the bill. Great collections of links, and I loved this part at the end:

  I thought we’d have to wait 20-25 years before a critical mass of people would defend the net. But SOPA has brought that day a lot closer. SOPA galvanized the tech community, from start-ups to venture capitalists to the largest web companies. SOPA was an unexpected shock and a wake-up call. Well, guess what? Now the internet is awake. And I don’t think it’s going back to sleep any time soon. We might need to rally again in the near future, but we can do that. The internet learns fast.

• Sandia National Laboratories responded to a request from Congresswoman Zoe Lofgren with a letter outlining why SOPA wouldn't work and would decrease our cybersecurity.
  
  
• The European Parliament adopted a resolution that included among its many clauses, one (#25) that spoke specifically to SOPA/Protect-IP issues:

  Stresses the need to protect the integrity of the global internet and freedom of communication by refraining from unilateral measures to revoke IP addresses or domain names;

• Finally, the Business Software Alliance (BSA), which represents many of the largest tech companies and had been promoted as supporting SOPA, clarified their position and indicated that the law as written is too broad and could have unintended consequences.

All in all a much better situation than was the case two weeks ago...

Image credit: jasonippolito on Flickr

---

Please note that this blog post represents my personal opinion and has no connection whatsoever to any employers or other organizations, either past or present.

---

If you found this post interesting or useful, please consider either:

• following me on Twitter;
• adding me to a circle on Google+;
• subscribing to my email newsletter; or
• subscribing to the RSS feed

---

How exactly will the proposed "Stop Online Privacy Act (SOPA)" impact the DNS infrastructure of the Internet? What are the technical and engineering problems caused by the proposed bill? How will the bill actually DECREASE our national cybersecurity?

I covered the basics of SOPA (HR.3261) and its companion bill in the Senate, S.968, the "PROTECT-IP Act", last week and and in the time since I wrote that post the public opposition to SOPA has mounted dramatically as people have come to understand what exactly these bills will do. Like many, I applaud the intent of these bills to protect intellectual property, but am concerned that the mandated mechanism of "DNS filtering" proposed by these bills will have serious negative consequences.

If you want to understand the technical issues with the proposed mechanism, there are three whitepapers I would recommend for reading - and for sharing with your legislators. (I've sent the links in to my representatives.) I'd note that the first two documents were prepared back in the spring of 2011 to address the U.S. Senate's version, the PROTECT-IP Act, but the mechanism proposed in SOPA is essentially the same.

• Internet Society Perspectives on Domain Name System (DNS) Filtering (direct link to English PDF)

  In this easy-to-read paper, the Internet Society explains why DNS filtering is not a solution, how the mechanism can be easily circumvented and how it will "not solve the problem, interfere with cross-border data flows and services, and undermine the Internet as a single, unified, global communications network." The document discusses the issues of "collateral damage" of website blockage, explains some of the non-technical issues and provides links to further resources.

• Security and Other Technical Concerns Raised by the DNS Filtering Requirements in the PROTECT IP Bill (PDF)

  This whitepaper was written by 5 of the leading DNS designers, operators and researchers and dives into significant technical depth. In particular, it looks at how the proposed DNS filtering mechanism would break the implementation of DNSSEC, a newer method being deployed to help secure the DNS infrastructure. The paper, too, addresses how easily DNS filtering can be bypassed (and provides very simple examples demonstrating this) and the security issues that come with that circumvention. It also looks at the "collateral damage" issue, the impact to content delivery networks (CDNs) and the overall impact that DNS filtering would have to the Internet.

• Cybersecurity in the Balance: Weighing the Risks of the PROTECT IP Act and the Stop Online Piracy Act

  This recent paper from Allan A. Friedman, a Fellow at the Brookings Institution, frames the SOPA/PROTECT-IP debate in terms of the impact to national cybersecurity. It again covers the issues with DNS filtering, impacts to DNSSEC, unintended consequences, etc., but does so from the point-of-view of how this will affect the cybersecurity position of the U.S., both domestically and at an international level.

All three of these papers are good to read (and share) to understand the technical weaknesses of the proposed solutions in SOPA/PROTECT-IP.

Please do pass them along so that people can understand the technical issues with these proposed solutions.

Image credit: jasonippolito on Flickr

---

Please note that this blog post represents my personal opinion and has no connection whatsoever to any employers or other organizations, either past or present.

---

If you found this post interesting or useful, please consider either:

• following me on Twitter;
• adding me to a circle on Google+;
• subscribing to my email newsletter; or
• subscribing to the RSS feed

---

If you are a U.S. citizen and have NOT been paying attention to the madness going on in the US Congress right now with regard to the Internet, you really NEED to take a look...

If you have a website, you need to be paying attention...

If you own a domain name, you need to be paying attention...

Backed by the traditional media industries (and all their lobbying $$$) the U.S. Senate and House are considering legislation that would seriously break the Internet as we know it. Rather than the DMCA "takedown notices" that have been used to date, these new bills would require ISPs to disable access to websites.

Basically it would give corporations the ability to manipulate (through ISPs) the DNS system to block access to content that they feel is objectionable or violates their copyrights, etc.

I think we all can generally agree that stopping online piracy and illegal activities is a good goal. As well as being a consumer of online content, I am also a creator of online content, and sure, I don't want my content pirated and mis-used by others...

but a "simple" technical solution is NOT the answer!

On a purely technical point-of-view, the Internet Society has issued a DNS Filtering White Paper on why this type of filtering is not a solution to combating illegal activities... and the danger such filtering has to the fabric of the Internet and to users themselves.

In the US Senate, the bill is S.968, the "Preventing Real Online Threats to Economic Creativity and Theft of Intellectual Property Act of 2011 (PROTECT IP)" Act (also known as "PIPA") while over in the house it was first known as the "E-PARASITE bill (the Enforcing and Protecting American Rights Against Sites Intent on Theft and Exploitation Act)" and now has been introduced as H.3261, the "Stop Online Piracy Act (SOPA)".

There has been a great amount of online content generated around this issue. Some of the articles I found useful include:

• GigaOm: Looks like Congress has declared war on the internet (LOTS of links to learn more)
• Techdirt: E-PARASITE Bill: 'The End Of The Internet As We Know It'
• CNET: SOPA: Hollywood's latest effort to turn back time
• CNET: Five essential changes to Protect IP Act
• Fred Wilson: Protecting The Safe Harbors Of The DMCA And Protecting Jobs
• Ars Technica: House takes Senate's bad Internet censorship bill, tries making it worse
• EFF: The Stop Online Piracy Act: A Blacklist by Any Other Name Is Still a Blacklist
• Video: PROTECT IP / SOPA Act Breaks the Internet
• Forbes: Why Anti-Piracy Legislation Will Become Law - and a counterpoint

PopVox has an interesting comparison of the organizations supporting and opposing S.968 and HR.3261. Look at the "Organizations Supporting" and "Organizations Opposing" tabs, although I believe there are more opposing orgs than simply those listed... still, it gives a view of the players involved.

The battle is going on right now with one of the latest updates being that tech industry reps were denied a seat at next week's House hearings and that now the 4 presenters to the committee will all be pro-SOPA entities.

Please... take a moment to read these links above... read even more... educate yourself on what the issues are - and let your opinion be known to your representatives in the U.S. House and Senate. Please spread the word online, too, as we who are users of the Internet need to let our voices be heard...

Image credit: jasonippolito on Flickr

---

UPDATE #1: Alex Howard has a great collection of SOPA/PIPA-related links, including a video of Senator Ron Wyden (the senator currently putting a "hold" on the PROTECT IP bill in the Senate).

UPDATE #2: While I began this post "If you are a U.S. citizen", Neville Hobson correctly pointed out that those outside the U.S. need to be concerned, too, as this type of government intervention in the Internet by the US government, if successful, will certainly spread to other governments. Plus, any issues affecting DNS will naturally have impacts outside the USA.

---

Please note that this blog post represents my personal opinion and has no connection whatsoever to any employers or other organizations, either past or present.

---

If you found this post interesting or useful, please consider either:

• following me on Twitter;
• adding me to a circle on Google+;
• subscribing to my email newsletter; or
• subscribing to the RSS feed

---

• From the Editor’s Desk
• DANE: Taking TLS Authentication to the Next Level Using DNSSEC
• Message from the IETF Chair
• Words from the IAB Chair
• ISOC Panel Addresses Regulation, Innovation, and the Internet
• IAB Plenary Tackles IPv6, Privacy Issues
• New Technology Demo: PCP
• Internet Society Fellows to the IETF Increase Participation on a Global Scale
• IETF Ornithology: Recent Sightings
• IETF 81 At–A–Glance
• IRTF Update
• IETF Meeting Calendar

The IETF Journal is published three times a year and past (and future) versions can be found at:

http://isoc.org/wp/ietfjournal/

If you would like to be alerted to future editions - or would like to contribute articles - more information can be found on that page.
 

---

If you found this post interesting or useful, please consider either:

• following me on Twitter;
• adding me to a circle on Google+;
• subscribing to my email newsletter; or
• subscribing to the RSS feed

---

For those of us wanting to see IPv6 deployed, yesterday brought the great news that Comcast has started rolling out its IPv6 production network to customers.

Now, granted, the initial rollout was to only 100 homes in San Francisco's East Bay. It is also restricted to a single computer directly connected to a Comcast cable modem. This initial rollout did not support home routers which are typically found for WiFi in many/most homes these days.

Still... it's a start!

The experience Comcast gains with this initial rollout will only help them with wider rollouts and the inclusion of home routers.

Kudos to Comcast for this start of their IPv6 rollout... I'm looking forward to hearing of other service providers starting their IPv6 deployments! (Time Warner, I'm talking about you! :-)

---

UPDATE: Comcast has now come out with two of their own blog posts on this topic:

• Deployment of IPv6 Begins by Jason Livingood
• Technical Details for Our IPv6 Deployment by John Brzozowski

Notice in particular this great part to the technical piece:

It is also important to note that we are deploying native dual stack, which means a customer gets both IPv6 and IPv4 addresses. That means we are not using tunneling technology or large scale Network Address Translation (NAT). Using a tunnel introduces additional overhead compared to not using one (native IPv6), as your traffic must traverse a relaybefore going to the destination and back. And NAT technologies rely on two layers of NAT, one in your home (in a home gateway device), and one within a the service provider's network that usually shares a single IPv4 address across possibly hundreds of customers or more. Using NAT presents many challenges compared to not using NAT, as your traffic must traverse a NAT device before going to the destination and back. In addition, we believe those two layers of NAT will break a number of applications that are important to our customers.

---

If you found this post interesting or useful, please consider either:

• following me on Twitter;
• adding me to a circle on Google+;
• subscribing to my email newsletter; or
• subscribing to the RSS feed

---

Would you like to learn about how to deploy IPv6? Would you like to hear from people who are already using IPv6 within their networks? Would you like to learn a bit about DNSSEC and how it can help you secure your online presence?

If so, please join us in Toronto, Ontario, Canada, for our next "Internet ON" (ION) Conference on Monday, November 14, 2011, starting at 12:30pm and sponsored by the Internet Society (my new employer). The sessions on the agenda include:

• New ISOC Initiative – Bridging the Divide Between IETF Standards and Industry-wide Deployment
• Panel Discussion: Challenges and Opportunities in Deploying IPv6, DNSSEC, and Other Key Technologies
• World IPv6 Day Recap (my presentation)
• Ask the Expert: Next Steps to Implementing IPv6
• Closing Remarks and Q&A

We're looking forward to providing a great session for people to ask questions and talk about how to get these technologies actually deployed in networks today.

The ION conference is part of the larger 2011 Canadian ISP Summit that takes place on the following two days and is included as part of the registration for the Canadian ISP Summit.

However, registration for the ION conference is FREE if you just want to attend the half-day session on Monday. You can sign up through the Canadian ISP Summit registration page, where one of the available options is for the ION ONLY registration.

(NOTE: If you do sign up for the free ION Only registration, the lunch and dinner listed on the agenda are not included. Those are part of the full registration.)

If you do want to register for the full Canadian ISP Summit, which has a great agenda of technical and business talks , we have a discount code of "ISOCDC" which can get your $50 off the registration if used by November 11, 2011.

We just had a very successful ION event in Buenos Aires last month and we're looking forward to great conversations and discussions up in Toronto - I hope to see you there!

P.S. A couple of people have already asked me if I'm going to be able to spend more time in Toronto (and meet them). Unfortunately due to family medical issues I'm just in Toronto for Monday and will be flying back Tuesday morning. Normally I would have loved to stay for this full event because some of the other sessions look great - and Toronto is also an outstanding place to visit.

---

If you found this post interesting or useful, please consider either:

• following me on Twitter;
• adding me to a circle on Google+;
• subscribing to my email newsletter; or
• subscribing to the RSS feed

---

Interested in a new work role? Looking to make a change from what you are doing now?

If you have a passion for the Internet - and for protecting the openness of the Internet - then please consider applying for one of open positions at the Internet Society. We have several new positions open, including:

• Sr. Manager, Next Generation Leaders Programme
• Internet Development Manager for Africa
• Application Development Specialist
• Sr. Director of Business Development and Resource Mobilization

I'm excited about joining the Internet Society and would love to welcome others onboard!

---

If you found this post interesting or useful, please consider either:

• following me on Twitter;
• adding me to a circle on Google+;
• subscribing to my email newsletter; or
• subscribing to the RSS feed

---

Who should run the Internet? Should it continue in the "multi-stakeholder" way it has operated so far? Or should governments have more of a say in how it is run?

The Economist captures that argument in a piece out today entitled "A plaything of powerful nations" that reports on the meeting this week in Nairobi of the Internet Governance Forum (IGF). The article rather succinctly covers some of the tension and challenges around public policy issues I briefly mentioned in my recent post about joining the Internet Society.

A key point for me is this (my emphasis added):

The multi-stakeholder approach dates from the beginnings of the internet. Its founding fathers believed that more openness would be both more secure and better for innovation. What is more, since the internet is a network of independent networks, it is hard to construct a form of governance that allows anyone to dictate things from the top.

Yet as the article notes, many governments would like to try - and the power struggle is really only beginning.

There are definitely going to be some interesting times ahead...

---

NOTE: While I am now employed by the Internet Society, I am NOT involved with the public policy activities of the organization and all comments and viewpoints expressed here are entirely mine alone as an individual.

---

If you found this post interesting or useful, please consider either:

• following me on Twitter;
• adding me to a circle on Google+;
• subscribing to my email newsletter; or
• subscribing to the RSS feed

---

In the end, my impending job change is perhaps best explained by two quotes: this prescient quote from the 1992 film Sneakers:

“There’s a war out there, old friend. A world war. And it’s not about who’s got the most bullets. It’s about who controls the information. What we see and hear, how we work, what we think… it’s all about the information!”

and this quote from poet Mary Oliver:

“Tell me, what is it you plan to do with your one wild and precious life?”

For a longer explanation, read on... but perhaps not on a mobile phone... this one's a bit on the lengthy side...

Bleeding "Voxeo Blue"

Just shy of four years ago, I wrote here about joining this incredibly remarkable company, Voxeo, that probably none of you had ever heard of.

I hope I changed that a wee bit. :-)

Around a thousand blog posts later, a hundred videos, too many speaking engagements and webinars to count, many articles, a ton of analyst briefings and media interviews ... and countless tweets, Facebook posts and other updates later... it has been truly an amazing journey.

Along the way I have come to truly love the company - and I don't use that term lightly - and the incredible people who are gathered together focused on making Voxeo THE platform for developing and deploying communications applications. As I mentioned in a recent post, Voxeo is a rocketship, firing into the skies and leaving its competitors behind.

Over these four years, I have been living, breathing, eating, sleeping all things Voxeo... I have been proud to be a "Voxeon"... slice open my skin and it bleeds "Voxeo blue"...

The Larger Battle

And yet... I have never been able to escape the siren call of the larger battle going on all around us. It did not surprise me to find that the Voxeo blog in which I published the most posts is "Speaking of Standards". Listeners to my weekly reports into the FIR podcast have perhaps grown weary of my rants about "single points of failure" and the need for services that are "distributed and decentralized" that allow you to retain control over your information and content. Readers of my blogs have seen my many posts on the theme of "the open Internet".

We have before us a choice of futures.

One choice leads to a future where innovative companies like Voxeo can emerge, thrive, disrupt and succeed.

Another choice leads to a future where what little "innovation" there is exists only at the will of the gatekeepers to the network after appropriate requirements and/or payments are met. Other choices lead to outcomes somewhere in between those polarities.

How will we choose?

Walled Gardens, Redux

I began my time online some 30 years ago in the 1980's era of the big "information services". CompuServe, AOL, Prodigy, Delphi, The Source, GENIE... and many other names that have long since faded into history.

People accustomed to the ubiquity of the Web today might find it hard to believe that once upon a time you could only get certain news, technical, financial, movie or sports info on the service to which you subscribed... that you could only communicate with people who had accounts on the same system as you.

It was the era of the proverbial "walled gardens"... where each service tried to keep the walls high enough and the content pretty enough that you would never leave.

The forces of "openness" were around, too. Academic networks like BITNET and JANET on the one end and home-grown networks of BBS's like FidoNet on the other, with other networks and things like UUCP and Usenet floating around as well.

And then came this "Internet", the one network to interconnect them all.

And out of that interconnection and interoperability came the world we live in today... out of that chaotic world of engineers and open standards came this network that is now no longer simply a research network but instead has become critical communication infrastructure... and a critical component of commerce.

And with that rise to prominence come all those who would seek to change the nature of the network... for perceived safety... for convenience... for profit... for control... for "security"...

So now we see services like Facebook, Google+, Twitter and more that seek to provide a nice pretty space in which you can exchange messages, photos and more... without ever leaving the confines of the service... they are a walled garden with just many ways to access the garden and to look over the walls.

Everyone wants to own your eyeballs... to host your content... to provide your identity...

And we see companies like Apple, Google and Microsoft seeking to control a large degree of how we connect to and use the mobile Internet...

And we see a change from "permissionless innovation" where anyone can set up a new service... to a model where you have ask permission or agree to certain "terms of service" in order to connect your new service to other services or to have your app available on some platforms...

And we see countries that want to throw up a wall around their citizens... sometimes to keep information from coming in... and sometimes to keep information from going out... and sometimes to be able to shut down all access...

And we see players who did control our communications systems always looking for opportunities where they could maybe, just maybe, stuff the proverbial genie back in the bottle and regain that control they lost...

It's a crazy time...

As one who has lived through our online evolution, and who in fact has been able to do what I do and to live where I live because of the "open Internet", I don't want to see us return into a fractured world of walled gardens.

We can make a different choice.

And So, A Choice

In the midst of all this craziness exists a global nonprofit organization that many of you may not have heard of. It has a very simple mission:

to promote the open development, evolution, and use of the Internet for the benefit of all people throughout the world.

The Internet Society, or "ISOC" for short, exists to promote the idea that "the Internet is for everyone", where "everyone" includes people all around the world... and yes, it includes the corporations, service providers, governments and other organizations, too. To support that mission, ISOC undertakes a wide variety of education and policy initiatives around the world, all with the aim of fostering the growth of the open Internet. Local "chapters" of ISOC have sprouted up around the globe pursuing these initiatives at a local/regional level. Perhaps more relevant to many readers, ISOC is the organizational home of the Internet Engineering Task Force (IETF), the group that creates the RFCs and the open standards that describe how the Internet operates today. A significant amount of ISOC's focus is on facilitating the creation and promotion of these open standards. (For those curious to learn more, ISOC's 2010 Annual Report is available online.)

I was actually a dues-paying member of ISOC back in the early '90s, when each month I would read through their print magazine (very ironically, but this was pre-Web) "On The Internet" to learn more about how the Internet was evolving throughout the world. I rejoined again a year or two ago to help in some small way support this very important work. (You can join, too.)

And on this coming Monday, September 19th, I will join the Internet Society as a staff member.

The Missing Link

The particular project I will join within ISOC is a brand new initiative targeted at helping bridge the gap between the standards created within the IETF and the network operators and enterprises who are actually deploying networks and technologies based on those standards. To help translate those standards into operational guidance... to help people understand how to deploy those standards and why they should, what benefit they will see, etc

The initiative is currently called the "Deployment and Operationalization Hub", or "DO Hub", and while that may or may not be its final name, the idea is to find/curate content that is already out there created by others, create content where there are gaps, make it easy to distribute information about these resources... and promote the heck out of it so that people get connected to the resources that they need. The initial focus will be, somewhat predictably, on IPv6, but also DNSSEC and possibly another technology. It is a new project and the focus is being very deliberately kept tight to see how effective this can be,

My title will be Senior Content Strategist and my role will very much be about the creation, curation and distribution of information. Writing articles, reviewing resources, blogging, creating videos, screencasts, etc, Once we have the initial repository built out, there will be a phase next year where we will be out on the conference circuit talking about these technologies and helping people understand how they can get started... and continually adding even more content.

For a guy who loves teaching, writing and "demystifying emerging technology", it's kind of tailor-made. In fact, when ISOC approached me a few months ago with the job description, my wife and I both looked at each other and said "wow, that's me!"

In the end, the goal is to help make it as easy as possible to deploy and use open standards... so that we might wind up collectively making the choices that can lead to an open Internet where innovation can thrive.

I'll still be living in Keene, NH. (Many ISOC employees are remote.) I'll still be blogging in my various blogs. I'll still be speaking at conferences from time to time. I'll be back at IETF meetings again (which I'm VERY much looking forward to). None of that really changes with this move.

Every New Beginning Comes From...

..some other beginning's end. ("Closing Time", by Semisonic)

Leaving Voxeo was decidedly NOT an easy choice. I agonized over the decision for an insanely long time. I work with awesome people who I know I will miss, have been thoroughly enjoying what we are doing and have been looking forward to where the company is going... it has some amazing plans that will even further disrupt the industry!

Some will tell me that I am crazy... that Voxeo is the closest they've seen to a "sure thing"... that leaving is a dumb move.

They may be right.

And yet... recent events in my personal life have highlighted the fragility of our lives and the limited time we have - and the need to pursue one's passion.

And so it is that I end one beginning and start a new one... with the hope that in some small way the new work I do will help companies like Voxeo thrive - and indeed to help continue and expand the conditions that create companies like Voxeo.

We have a choice of futures before us...

---

Image credits: Gerry Balding, Thomas Gehrke on Flickr.