DEFCON 1 Status at ICANN

Defense Readiness Condition (DEFCON) is a measure of the activation and readiness of the United States armed forces. The DEFCON scale is a numerical ranking from 5 (standard peacetime protocol) to DEFCON 1 (expectation of actual imminent attack). Today ICANN should find itself at a DEFCON 1 status with the announced pending departure of Doug Brent, ICANN's Chief Operating Officer, effect at the end of July. more

Canadian Spam Law Update

As you may know, there are two laws currently being discussed in Canadian legislative assemblies: Senate Bill S-220, a private member’s bill with private right of action and criminal remedies; Parliamentary Bill C-27, tabled by the government, with private right of action, coordination between various enforcement agencies... more

What Will 6G Look Like in a Geopolitical Divided World

A recent session of the Australian Computer Society (ACS) and the Australian Smart Communities Association (ASCA) masterclass on 5G, featured Dr. Ian Oppenheimer, the NSW Government's Chief Data Scientist and one of the country's most respected experts in radio technology. Ian is also the Chair of the scientific advisory board of the 6G Flagship organization, a global research organization based in Finland. This organization has just published a range of fascinating research papers on 6G. more

Oil and Gas Cyber Security Forum

A reader recently brought to my attention an upcoming conference in London in the UK -- The Oil and Gas Cyber Security Forum. Here's a little blurb: "Despite investments into state of the art technology, a majority of the oil and gas industry remain blissfully unaware of the vulnerabilities, threats and capability of a malicious cyber attack on control systems..." I bring this up because it is relevant to the trends in cyber security that we see this year - that of the Advanced Persistent Threat. more

Is the WCIT Indeed Wicked?

The traditional network operators see OTT services as a threat, and the companies offering them are perceived to be getting a free lunch over their networks - they are calling for international regulation. In particular, the European telcos (united in ETNO) have been claiming that this undermines their investment in infrastructure and they want to use the WCIT conference in Dubai later this year to lobby for regulatory changes that would see certain levies being levied - something that is strenuously opposed by, among others, the USA and the APAC countries. more

Microsoft Warns Extortion Drives Majority of Attacks Amid AI Escalation, Identity Collapse, and Global Fragmentation

Microsoft's latest Digital Defense Report reveals how cybercriminals and nation-states are rapidly adopting AI to enhance attacks. With identity-based threats soaring, the company urges urgent modernization of security systems and global cooperation. more

Radical Shift of Power Proposed at ICANN Putting Govts in Primary Decision Making Role

ICANN has proposed a major change to its bylaws that would require the organization to adopt all policy "advice" issued by the Governmental Advisory Committee (GAC) unless 2/3 of ICANN's non-conflicted board members vote to oppose the adoption of that governmental rule. This draconian proposal to change ICANN's bylaws would fundamentally transform ICANN away from being a "bottom-up" and "private-sector-led" organization and into a governmental regulatory agency... more

Amazon Gets FCC Approval to Deploy Its Project Kuiper Broadband Satellites

Today, the FCC has sided with Amazon in a regulatory battle over Project Kuiper, the company's satellite internet system. Despite objections from rival SpaceX, the commission has approved Amazon's plan to prevent the upcoming satellite internet constellation from causing orbital debris in space. more

Phishing Costs Companies over $411 Million per Alert

Phishing blindsides businesses' best defenses and takes a toll whose price tag still hasn't been pinned down. Here's one estimate: $441 million per attack, according to a recent study of the cybercrime's effect on stock market data (market value, volume of shares traded, and stock volatility) of global firms. The authors use "event studies" techniques (i.e., analyzing the impact of specific types of events on companies' market performance) to analyze nearly 2,000 phishing alerts by 259 companies in 32 countries... more

Trump’s Cuba Policy and Its Impact on the Cuban Internet

On June 12th, I speculated on Trump's forthcoming Cuba policy and its impact on the Internet. He outlined his policy in a June 16th speech and the Treasury Department published a FAQ on forthcoming regulation changes. It looks like my (safe) predictions were accurate. I predicted he would attack President Obama, brag about what he had done, make relatively minor changes that would not upset businesses like cruise lines, airlines, and telecommunication and hotel companies. more

The Cost of an ISO 27001 Certification

The first question I often get when talking to IT Service providers on ISO 27001 certification is: "How much does it cost to get it?" I like to reply with a question: "how much does it cost when you don't have it?" The answer to the first question is easy, the answer to the second one is more complicated. As a financial I am interested in the business case. If the cost of not having an ISO 27001 certification is higher than the cost of getting and maintaining one, you can actually make a profitable investment by getting certified. more

UK Online Safety Act Becomes Law Amid Controversy

The UK's Online Safety Bill has received Royal Assent and is now officially the Online Safety Act. This law mandates tech companies to incorporate new standards for the design, operation, and moderation of their platforms. more

Three Years With ICANN

I joined the ICANN board during the December 2004 ICANN meeting in Cape Town. I served for a three year term and stepped down at this last meeting in Los Angeles and didn't run for another term... Before joining ICANN, I thought that ICANN was the only part of the Internet that wasn't really working. I knew that there must be a better way to do what ICANN does, but I couldn't be bothered to figure it out. I'd agree with people who said things like, "it should just be distributed" or "it should just be first come first serve" or "we should just get rid of it." People from ICANN would say, "it's more complicated than that" or "at this point that would be impossible." After being part of the process for three years, I find myself saying those same things... more

Why Most People Haven’t Heard of the DNS Root Server System

At the ICANN 81 meeting in Istanbul on 10 November 2024, I gave a presentation about the DNS Root Server System, in an effort to increase understanding of the Root Server System (RSS) and Root Server Operators (RSOs). The talk was intended for the members of the ICANN Governmental Advisory Committee (GAC), but much of this explanation may be of interest to general audiences. more

Biggest Fine Yet: French Watchdog Slaps Google With a $57M Fine Under the New GDPR Law

France's data privacy watchdog has fined Google 50 million euros ($57 million) under the European Union's General Data Protection Regulation (GDPR) making it the most significant regulatory enforcement action since the law came into effect in May. more