A number of security predictions have been doing the rounds over the last few weeks, so I decided to put pen to paper and write a list of my own. However, I have a quite a few predictions so I have listed them over several blog posts. After all, I didn't want to bombard you with too much information in one go! Part three examines the threats associated with data breaches. more
Last June I wrote an article titled "The IETF's Other Diversity Challenge" where I discussed the positive steps the Internet Engineering Task Force (IETF) is taking to increase the diversity of its participants and raised a potentially overlooked demographic: Network Operators. That essay was a problem statement of sorts, and I was long ago taught that you should only raise problems that you have a solution for, or are at least willing to help solve. more
Every time Google becomes involved in telecommunications it gets international media coverage; and every single time the same question is raised -- why does Google become involved in telecoms infrastructure, plus the underlying issue of it becoming a telecoms operator. This time the question is -- why does Google want to become involved in mobile telecoms and how is it going to compete with the other operators? more
An Internet Bill of Rights may or may not be a good idea. The point here is that, besides highly commendable topics such as net neutrality and privacy, some of them seem to mandate cybersecurity. Approved in Brazil last May, the Marco Civil includes the principle of preservation of stability, security and functionality of the network, via technical measures consistent with international standards. more
The Congressional Internet Caucus held its 15th annual State of the Net conference today at The Newseum in Washington, DC. This is traditionally a start the new year networking and information update day for the capital's technology policy set. Immediately following the lunch break, at a session titled "Internet Functions in Transition: Is the US and the World Ready?", NTIA head Lawrence Strickling provided the first official Obama Administration reaction... more
Apparently, we consumers in the USA don't need to have broadband speeds of 25 Mbps or higher. And we certainly don't need upload speeds greater than 3 Mbps! At least, that's according to comments filed to the US Federal Communications Committee (FCC) by the National Cable & Telecommunications Assocation (NCTA) in response to the FCC's proposal to raise the definition of "broadband" from 4 Mbps downstream and 1 Mbps upstream to 25 Mbps down and 3 Mbps up. more
2014 will be remembered as the year of the "multistakeholder model" on the Internet. NTIA demonstrated its commitment to bottom-up, multistakeholder Internet governance by committing to complete the transfer of responsibility for various technical functions -- known as the IANA Functions -- to the multistakeholder community. NTIA called on ICANN to convene the community to develop a transition plan to accomplish this goal. more
As we have previously observed, the efforts undertaken by ICANN, the World Economic Forum (WEF), and CGI.BR to launch a NETmundial Initiative (NMI) to follow up on last spring's NETmundial meeting in Sao Paulo has encountered heavy skepticism and substantial resistance from the major civil society and technical groups from which endorsement and participation was sought. more
2014 was a big year for us and for our clients. The new gTLD program forced us to rethink, reprioritize and implement new and different strategies to protect our brands online. The uncertainty largely behind us, and with more information at our fingertips about just how well (or not) brands are faring in the new environment, it's time to look forward to what we can do in 2015 to fix what's broken, throw away what's useless, fight for what's important... more
Every year those in the security industry are bombarded with various cyber security predictions. There's the good, the bad and the ugly. Some predictions are fairly ground breaking, while others are just recycled from previous years -- that's allowed of course if the threats still stand. In part one of my predictions I looked at the malware threats, so let's take a look at big data and the cloud for part two. more
In my comments on the draft Cross-Community Working Group (CWG) on Naming Related Functions proposal for the IANA transition, I expressed my overall support, albeit somewhat reserved, for the proposal... but with the ICG's deadline of January 15 having come and gone, and the informal deadline of January 31 looming for the revised proposal from the Names community to be submitted, I'd like to shed some light on what I believe the role and reasoning for some of the mechanisms identified by the CWG, specifically the Contract Co., to be. more
As I was entering in data for the weekly DNSSEC Deployment Maps, I was struck by the fact that we are now at the point where 617 of the 795 top-level domains (TLDs) are now signed with DNSSEC. You can see this easily at Rick Lamb's DNSSEC statistics site...Now, granted, most of that amazing growth in the chart is because all of the "new generic TLDs" (newgTLDs) are required to be signed with DNSSEC, but we are still seeing solid growth around the world. more
Today we continue with part 2 of the 10 part series on IPv6 Security Myths by debunking one of the myths I overhear people propagating out loud far too much: That you don't need to worry about security because IPv6 has it built into the protocol. In this post, we'll explore several of the reasons that this is in fact a myth and look at some harsh realities surrounding IPv6 security. more
In Ripley Scott's classic 1982 science fiction film Blade Runner, replicant Roy Batty (portrayed by Rutger Hauer) delivers this soliloquy... "I've...seen things you people wouldn't believe... Attack ships on fire off the shoulder of Orion. I watched C-beams glitter in the dark near the Tannhäuser Gate. All those... moments... will be lost in time, like (cough) tears... in... rain. Time... to die." more
The bring-your-own-device (BYOD) trend continues to make corporate inroads. According to Security Intelligence, more than 60 percent of enterprises now allow or "tolerate" employee mobile device use in the workplace. But companies still have significant security concerns, especially when it comes to the specter of lost data. Here are seven tips to boost BYOD security in 2015. more
Sponsored byWhoisXML API
Sponsored byRadix
Sponsored byDNIB.com
Sponsored byVerisign
Sponsored byIPv4.Global
Sponsored byCSC
Sponsored byVerisign