ISOC Member Newsletter - July 2010

AddThis Social Bookmark Button

Internet Society Honours Leading Chinese Technologist Dr. Jianping Wu with Postel Award

Recognition of pioneering role in Internet technologies and information access for Chinese research and educational communities.

MAASTRICHT, Netherlands, July 28 – The Internet Society today announced that its prestigious Jonathan B. Postel Service Award 2010 was awarded to leading Chinese technologist Dr. Jianping Wu for the pioneering role he has played in advancing Internet technology, deployment, and education in China and Asia Pacific over the last twenty years.

Dr. Wu’s best-known contribution is the development of the China Education and Research Network (CERNET) which he designed and developed to be the first Internet backbone network in China.  Created to establish a nation-wide advanced network infrastructure to support education and research among universities, CERNET has since become the world’s largest national academic network. Since 1998, Dr. Wu has also devoted his time to the design and development of a large-scale native IPv6 backbone in China that now serves to connect over 200 universities and millions of users.

 

The Postel Award was established by the Internet Society to honour individuals or organisations that, like Jon Postel, have made outstanding contributions in service to the data communications community. Commenting on its presentation to Dr. Wu, Lynn St. Amour, President and CEO of the Internet Society said:

“Jianping Wu has dedicated his career in China to developing a broadly accessible Internet that brings people together. Twenty years ago, Dr. Wu recognized the importance and future impact of the Internet and the pivotal role it would play in terms of its impact on social reform, technology advancement and economic growth for China. He has worked tirelessly to bring his vision to life. As a result, the networks that resulted from his determination and hard work have played an important role in driving Internet development in China and have had a significant impact on the Internet worldwide.”

The Internet Society presented the award, including a US$20,000 honorarium and a crystal engraved globe, during the 78th meeting of the Internet Engineering Task Force (IETF) in Maastricht, The Netherlands 25-30 July 2010. Watch Dr Wu’s acceptance speech here.

Internet Society’s Rough Guide to IETF 78’s Hot Topics

IETF 78 in Maastricht, Netherlands is rapidly approaching (25-30 July). Newcomers’ training and technical tutorials take place on Sunday (25 July), with the working group, BoF, and plenary sessions happening during the week.

Once again, the Internet Society is pleased to bring you our regular rough guide to the sessions most relevant to our current work.

We have turned our attention to the following broad categories:

- Common and Open Internet
- Global Addressing
- Security and Stability
- Trust and Identity

Of course, with more than 100 working groups, there are many other important technologies under discussion. So for full details of the IETF 78 agenda, see:

https://datatracker.ietf.org/meeting/78/agenda.html

(All times below are local Central European Summer Time, UTC+1)

_____________________________________
Common and Open Internet
As P2P and VoIP technologies become more prevalent, and network usage patterns sometimes deviate from their architects’ expectations, managing bandwidth to allow best use for customers becomes an increasingly important topic.
_____________________________________

conex (Congestion Exposure) WG

The purpose of the CONEX working group is to develop a mechanism by which senders inform the network about the congestion encountered by previous packets on the same flow. Today, the network may signal congestion by ECN markings or by dropping packets, and the receiver passes this information back to the sender in transport-layer acknowledgements. The mechanism to be developed by the CONEX WG will enable the sender to also relay the congestion information back into the network in-band at the IP layer, such that the total
level of congestion is visible to all IP devices along the path, from where it could, for example, be provided as input to traffic management.

Interest: Advancing development and deployment of conex mechanism to allow for more sophisticated, scalable, end-to-end congestion management.

Full charter: http://datatracker.ietf.org/wg/conex/charter/
Agenda: http://www.ietf.org/proceedings/78/agenda/conex.txt
(27 July, 09:00 – 11:30)

decade (Decoupled Application Data Enroute) WG

Peer-to-Peer (P2P) applications, including both P2P streaming and P2P file-sharing applications, make up a large fraction of traffic in the Internet today. One way to reduce access network and/or cross-domain bandwidth usage by P2P applications is to introduce storage capabilities in the network between hosts running P2P applications. Allowing P2P applications to store and retrieve data from inside the network can reduce traffic on the last-mile uplink, as well as backbone and transit links.

Interest: Content-centric networking is an important emerging networking paradigm, decade may have more general applicability than just P2P.

Full charter: http://datatracker.ietf.org/wg/decade/charter/
Agenda: http://www.ietf.org/proceedings/78/agenda/decade.html

(27 July, 1300-1500)

homegate (Broadband Home Gateway) BoF

The basic hypothesis of this (proposed) working group is that a well organized collection of requirements for support of various features would make it more likely that future home gateway devices behave better in certain existing problematic situations.

Interest: If the potential overlaps with other SDOs can be clarified, this is potentially important work to improve the ability to deploy new end-to-end technology on the Internet in future.

Draft charter: http://trac.tools.ietf.org/area/tsv/trac/wiki/HOMEGATE#PROPOSEDCHARTER-PLEASEREVIEWUPDATE
Agenda: Not available

(28 July, 0900-1015)

urnbis (Uniform Resource Names, Revised) BoF

The purpose of this BoF is to review the Uniform Resource Name (URN) specifications, and determine what needs to be done to update and possibly extend them.

Interest: URNs have typically been largely of interest to the library and information system communities. It is infrastructure technology for applications on the Internet.

Draft charter: http://www.ietf.org/mail-archive/web/urn/current/msg01431.html
Agenda: http://www.ietf.org/proceedings/78/agenda/urnbis.txt

(27 July, 0900-1130)

precis (Preparation and Comparison of Internationalized Strings ) WG

The goal of this group is to assess whether a new method based on the new IDN-based approach to string preparation (IDNA2008) is the appropriate path forward for existing stringprep protocols as well as for other application protocols requiring internationalized strings.

Interest: Multilingualism.

Full charter: https://datatracker.ietf.org/wg/precis/charter/
Agenda: http://www.ietf.org/proceedings/78/agenda/precis.txt

(29 July, 0900-1130)

_____________________________________
Global Addressing
There is steadily increasing momentum to deploy IPv6 as the IPv4 address pool approaches depletion. While much work is ongoing to support interoperability in coexisting IPv4 and IPv6 network environments, there are also interesting developments in emerging IPv6 environments.
_____________________________________

intarea (Internet Area)

The Internet Area Working Group (INTAREA WG) acts primarily as a forum for discussing far-ranging topics that affect the entire area. Such topics include, for instance, address space issues, basic IP layer functionality, and architectural questions. The group also serves as a forum to distribute information about ongoing activities in the area, create a shared understanding of the challenges and goals for the area, and to enable coordination.

Interest: Advancing draft-ietf-intarea-shared-addressing-issues to WG Last Call.

Full charter: http://datatracker.ietf.org/wg/intarea/charter/
Agenda: http://www.ietf.org/proceedings/78/agenda/intarea.txt

(26 July, 17:40 – 19:40)

_____________________________________
Security and Stability
Securing the DNS and greater assurance in routing is critical for the ongoing expansion and evolution of the Internet in all areas of our societies and economies.
_____________________________________

karp (Keying and Authentication for Routing Protocols) WG

Many routing protocol deployments, if they use authentication at all, are using older (possibly deprecated) cryptographic algorithms and missing some modern security mechanisms, like replay protection, algorithm agility, or key rollover. In addition, many use the same key permanently. This needs to be fixed. Additionally, key management for routing protocols needs to be added to easily address the terminated-employee problem of compromised shared secrets. Such key management needs to work over multicast media, and needs to work directly over the link layer in some cases (since routing depends upon it).

This recently chartered working group will address a package of framework documents drawn from the work of the original BOF participants

Full charter: http://tools.ietf.org/wg/karp/charters
Agenda: http://tools.ietf.org/wg/karp/agenda

(23 March, 09:00-11:30)

sidr (Secure Inter-Domain Routing) WG

The SIDR WG is focused on securing inter-domain routing. The approach being developed is Resource PKI (RPKI). RPKI adds an authentication framework to BGP. It is going to require a certificate management infrastructure, and models that accommodate infrastructure are on the agenda. Additional agenda topics include: key rollover, removing TLS from the provisioning protocol, revisions to the Trust Anchor format, algorithm migration, and certification policies. This is a key technology for improving trust in the routing infrastructure.

The full charter is available at: http://tools.ietf.org/wg/sidr/charters

Interest: Improving security in the routing infrastructure is a key component to developing a platform for improved confidence in the network, and building out more robust and secure networks.

Agenda: http://www.ietf.org/proceedings/78/agenda/sidr.html

(28 July, 1300-1530)

saag (Security Area Open Meeting)

Internet Draft: draft-saintandre-tls-server-id-check-08
Representation and Verification of Domain-Based Application Service Identity in Certificates Used with Transport Layer Security

Link: https://datatracker.ietf.org/doc/draft-saintandre-tls-server-id-check/

This document specifies best current practices for representing and verifying the identity of application services enabling a secure connection between two entities using certificates in the context of Transport Layer Security (TLS).

Interest: Much of the Trust and Identity related work includes the use of certificates. This is a much needed baseline document.

The draft will be reviewed in the agenda: http://tools.ietf.org/wg/saag/agenda

(29 July, 1300-1500)

_____________________________________
Trust and Identity
As public concerns increase about security of infrastructure, privacy, trust, and dentity on the Internet, these themes recur in several working group discussions.
_____________________________________

httpstate (HTTP State Management Mechanism) WG

The HTTPSTATE WG is canonically specifying how cookies are actually used in existing HTTP implementations and deployments, thus obsoleting RFC 2109 and updating RFC 2965.

Interest: Improved usability and interoperability for developers along with increased predictability for end users.

Charter: http://tools.ietf.org/wg/httpstate/charters
Agenda: http://tools.ietf.org/wg/httpstate/agenda

(26 July, 17:40-19:40)

fedauth BOF

The FedAuth effort is an outgrowth of the informal Project Moonshot bar BOF held in Anaheim at IETF 77 (http://www.project-moonshot.org/). Group participants are interested in federated authentication beyond the web. The work is driven by users and organizations that would like to gain federated access to other applications such as IMAP, XMPP, SSH, NFS and a variety of non-IETF protocols. Inputs come from both the security and applications area as well as from external bodies such as JANET, Internet2, and the SAML community.

Interest: The work extends the model used in federated identity management to interactions below the web and has value for both network trust and user managed identity.

Proposed Charter: http://www.project-moonshot.org/bof/charter
Agenda: http://www.ietf.org/proceedings/78/agenda/fedauth.html

(27 July, 0900-1130)

hasmat BOF

The focus here is HTTP Application Security Minus Authentication and Transport. The goal of this working group is to standardize a small number of selected specifications that have proven to improve security of Internet Web applications. The requirements guiding the work will be taken from the Web application and Web security communities. The proposed work is fairly narrow and the work has good support already.

Interest: This work has a direct bearing on end-user experiences on the web and will improve trust.

Proposed Charter: http://www.ietf.org/mail-archive/web/hasmat/current/msg00000.html
Agenda: http://www.ietf.org/mail-archive/web/hasmat/current/msg00001.html

(27 July, 1300-1500)

oauth (Open Authentication Protocol) WG

OAuth allows a user to grant a third-party Web site or application access to their resources, without necessarily revealing their credentials, or even their identity. The OAuth working group is heavily focused on the development of the OAuth Version 2.0 specification. The agenda of this meeting is focused exclusively on the OAuth Version 2.0 specification and updating the charter to reflect the focus of the working group. In addition, there was an interim meeting in May to progress the OAuth Version 2.0 effort.

Full charter: http://tools.ietf.org/wg/oauth/charters
Current OAuth Version 2.0 Draft: http://datatracker.ietf.org/doc/draft-ietf-oauth-v2/
Agenda: http://www.ietf.org/proceedings/78/agenda/oauth.txt

(27 July, 1520-1700)

Internet Draft: draft-hansen-privacy-terminology-00
Terminology for Talking about Privacy by Data Minimization: Anonymity, Unlinkability, Undetectability, Unobservability, Pseudonymity, and Identity Management

link: https://wiki.tools.ietf.org/id/draft-hansen-privacy-terminology-00.html

This document won’t be presented in sessions but this document should help inform active privacy discussions in multiple working groups and on the IETF list.

Follow-up to the Rough Guide to IETF 77 Hot Topics

In March, we published the Rough Guide to IETF 77’s Hot Topics. Here now is the follow up to the meetings highlighted in that guide.

For IETF 77, which was held in Anaheim, California, we focused our attention on working groups, BoFs, plenaries, and other events in the following broad categories:

  • Common and Open Internet
  • Global Addressing
  • Security and Stability
  • Trust and Identity

In addition to the main IETF content, the Internet Society (ISOC) also held another expert panel “IPv6: Are we there yet?” that gathered experts to discuss the growing momentum behind IPv6 deployment. You can listen to a recording of that event here:

http://www.isoc.org/isoc/conferences/ipv6momentum/

Looking ahead, the final preparations are underway for IETF 78, in Maastricht, Netherlands, 25-30 July 2010, so we will soon be bringing you a guide to the expected highlights of that meeting.

_____________________________________
Common and Open Internet
As P2P and VoIP technologies become more prevalent, and network usage patterns sometimes deviate from their architects’ expectations, managing bandwidth to allow best use for customers becomes an increasingly important topic.
_____________________________________

alto (Application-Layer Traffic Optimization) WG

The alto WG is occupied with designing a service to provide applications with information from the network that enables them to perform better-than-random peer selection. In this context, there are various definitions of “better” (such as maximum throughput, minimum cross-domain traffic, and lowest cost to the user).

Outcomes:

Minutes: http://www.ietf.org/proceedings/10mar/minutes/alto.html

conex (Congestion Exposure) BOF

Congestion Exposure (ConEx) is a proposed new IETF activity to enable congestion to be exposed along the forwarding path of the Internet. By revealing expected congestion in the IP header of packets, congestion exposure provides a generic network capability which allows greater freedom over how capacity is shared. Such information could be used for many purposes, including congestion policing, accountability and inter-domain SLAs. It may also open new approaches to QoS and traffic engineering.

Outcomes:

  • WG has been chartered
  • Initial focus on experimental specifications for IPv6 networks

Minutes: http://www.ietf.org/proceedings/77/minutes/conex.txt

decade (Decoupled Application Data Enroute) BOF

Peer-to-Peer (P2P) applications, including both P2P streaming and P2P file-sharing applications, make up a large fraction of traffic in the Internet today. One way to reduce access network and/or cross-domain bandwidth usage by P2P applications is to introduce storage capabilities in the network between hosts running P2P applications. Allowing P2P applications to store and retrieve data from inside the network can reduce traffic on the last-mile uplink, as well as backbone and transit links.

Outcome:

  • Working Group has been chartered

Minutes: http://www.ietf.org/proceedings/77/minutes/decade.html

ledbat (Low Extra Delay Background Transport) WG

The LEDBAT WG is chartered to standardize a congestion control mechanism that should saturate the bottleneck, maintain low delay, and yield to standard TCP.

Outcomes:

  • Working Group is close to completing its chartered work
  • Evaluations of LEDBAT algorithm are ongoing

Minutes: http://www.ietf.org/proceedings/77/minutes/ledbat.txt

mptcp (Multipath TCP) WG

The Multipath TCP (MPTCP) working group develops mechanisms that add the capability of simultaneously using multiple paths to a regular TCP session. The primary output of the group will be the protocol extensions needed to deploy MPTCP, and adaptations to congestion control to safely support multipath resource sharing. Initially the WG will only produce documents that are experimental or informational.

Outcomes:

Minutes: http://www.ietf.org/proceedings/77/minutes/mptcp.txt

_____________________________________
Global Addressing
There is steadily increasing momentum to deploy IPv6 as the IPv4 address pool approaches depletion. While much work is ongoing to support interoperability in coexisting IPv4 and IPv6 network environments, there are also interesting developments in emerging IPv6 environments.
_____________________________________

behave (Behavior Engineering for Hindrance Avoidance) WG

While behave was chartered to create mechanisms for transiting NATs in reliable ways, most of its activity is now focused on protocol translation from IPv4 to IPv6 in a number of different scenarios. Of particular interest in these scenarios is how the proposed mechanisms deal with DNS operation across the two protocol realms (and whether it is possible to maintain any kind of reasonable operation of secure DNS in such a scenario).

Full charter: http://www.ietf.org/html.charters/behave-charter.html

The IETF and 3GPP held a joint workshop on IPv6 deployment strategies for 3GPP networks on 1 and 2 March. Dan Wing has produced a summary meeting report of that meeting, which was published in the IETF Journal v6.2 (http://www.isoc.org/tools/blogs/ietfjournal/?p=1702#more-1702). One of the important outcomes seemed to be a shared recognition that there is not community support for PNAT based proposals.

The work on the first set of new transition mechanisms for IPv6 networks to an IPv4 Internet (NAT64, DNS64, etc.) is wrapping up. Documents have gone to last call and and comments are being resolved.

Meeting minutes are available here: http://www.ietf.org/proceedings/77/minutes/behave.txt
Slides are available here: http://www.ietf.org/proceedings/77/

core (Constrained RESTful Environments) WG

(formed from 6lowapp (Application Protocols for Low-power v6 Networks) BOF

The 6lowapp BOF has indeed been chartered as a working group, called CoRE. CoRE is providing a framework for resource-oriented applications intended to run on constrained IP networks. A constrained IP network has limited packet sizes, may exhibit a high degree of packet loss, and may have a substantial number of devices that may be powered off at any point in time but periodically “wake up” for brief periods of time.

Full charter: http://www.ietf.org/dyn/wg/charter/core-charter.html

CoRE held its first working group meeting at IETF 77. The 6lowapp BOF has been considering whether different protocols, or modifications to existing protocols, are needed for very low power devices that may proliferate for sensor type networks. There is a great deal of energy on work in this area with protocol proposals being discussed on the mailing list.

There are no meeting minutes available; however, the consolidated slideset for the meeting is available here: http://www.ietf.org/proceedings/77/core-0.pdf

intarea (Internet Area)

The Internet Area Working Group (INTAREA WG) acts primarily as a forum for discussing far-ranging topics that affect the entire area. Such topics include, for instance, address space issues, basic IP layer functionality, and architectural questions. The group also serves as a forum to distribute information about ongoing activities in the area, create a shared understanding of the challenges and goals for the area, and to enable coordination.

Outcome:

  • Shared Addressing Issues draft has been adopted as intarea WG work item.

Minutes: http://www.ietf.org/proceedings/77/minutes/intarea.txt

v6ops (IPv6 Operations) WG

The IPv6 Operations Working Group (v6ops) develops guidelines for the operation of a shared IPv4/IPv6 Internet and provides operational guidance on how to deploy IPv6 into existing IPv4-only networks, as well as into new network installations.

Full charter: http://www.ietf.org/html.charters/v6ops-charter.html

Meeting minutes are available here: http://www.ietf.org/proceedings/77/minutes/v6ops.txt

Slides are available here:

http://www.ietf.org/proceedings/77/v6ops.html

_____________________________________
Security and Stability
Securing the DNS and greater assurance in routing is critical for the ongoing expansion and evolution of the Internet in all areas of our societies and economies.
_____________________________________

dnsop (Domain Name System Operations) WG

The dnsop WG works on various operational aspects of the Domain Name System.

Full charter: http://www.ietf.org/dyn/wg/charter/dnsop-charter.html

Yahoo! presented a proposal for improving the behavior of recursive name resolvers for IPv6. There was little time on the agenda for this but it received quite an animated discussion in the meeting and on the mailing list afterwards. One of the discussions focused on the measurement of brokenness for IPv6 connectivity. Google has shared numbers for this in previous and subsequent meetings. Both Yahoo! and Comcast reported that they are in the process of collecting measurements of their own to get an assessment of brokenness of IPv6 connectivity.

No minutes for the working group meeting were published.
Slides are available at: http://www.ietf.org/proceedings/77/dnsop.html

karp (Keying and Authentication for Routing Protocols) WG

Many routing protocol deployments, if they use authentication at all, are using older (possibly deprecated) cryptographic algorithms and are missing some modern security mechanisms, like replay protection, algorithm agility, or key rollover. In addition, many use the same key permanently. This needs to be fixed. Additionally, key management for routing protocols needs to be added to easily address the terminated-employee problem of compromised shared secrets. Such key management needs to work over multicast media, and needs to work directly over the link layer in some cases (since routing depends upon it).

Full charter: http://tools.ietf.org/wg/karp/charters

The karp working group was recently chartered and held its first working group meeting at IETF77. Initial versions of the three base documents intended to guide the efforts of the working group were discussed. The working group is still in the process of refining the requirements and processes for moving forward with the working group. There is also a fair amount of effort focused on getting the security and routing communities to understand the perspectives of each other. The collaboration of the two communities of expertise is critical to successful outcomes in this working group.

Meeting minutes are available at: http://www.ietf.org/proceedings/77/minutes/karp.html

RRG (Routing Research Group)

The Routing Research Group (RRG) is chartered to explore routing and addressing problems that are important to the development of the Internet but are not yet mature enough for engineering work within the IETF.

Group charter: http://www.irtf.org/charter?gtype=rg&group=rrg

The RRG has been considering a number of proposals for solving the route scaling “problem” in the routing infrastructure. At this meeting, the chairs discussed the three basic classes of proposals received, divided based on where they stop non-aggregatable addresses. The co-chairs made the following recommendations: 1) AIS as immediately deployable solution to relieve pain today; 2) ILNP as the long term solution; and, 3) further work on renumbering support.

Meeting minutes are available at: http://www.ietf.org/proceedings/77/minutes/RRG.txt

____________________________________
Trust and Identity
As public concerns increase about security of infrastructure, privacy, trust, and identity on the Internet, these themes recur in several working group discussions.
_____________________________________

Applications Area Open Meeting

At this session, two new SASL related drafts of interest to identity providers were discussed.

A SASL Mechanism for SAML: http://tools.ietf.org/html/draft-wierenga-ietf-sasl-saml-00

This memo specifies a SASL mechanism for SAML 2.0 that allows the integration of existing SAML Identity Providers with applications using SASL.

A SASL Mechanism for OpenID: http://tools.ietf.org/html/draft-lear-ietf-sasl-openid-00
This memo specifies a SASL mechanism for OpenID that allows the integration of existing OpenID Identity Providers with applications using SASL.

No minutes for this meeting were published.

httpstate (HTTP State Management Mechanism) WG

The HTTP State Management Mechanism (aka Cookies) was originally created by Netscape Communications in their informal Netscape cookie specification (”cookie_spec.html”), from which formal specifications RFC 2109 and RFC 2965 evolved. The formal specifications, however, were never fully implemented in practice. RFC 2109, in addition to cookie_spec.html, more closely resemble real-world implementations than RFC 2965, even though RFC 2965 officially obsoletes the former. Compounding the problem are undocumented features (such as HTTPOnly), and varying behaviors among real-world implementations.

The working group charter is available at: http://www.ietf.org/dyn/wg/charter/httpstate-charter

This working group will create a new RFC that:

  • obsoletes RFC 2109,
  • updates RFC 2965 to the extent it overlaps or voids RFC 2109, and
  • specifies Cookies as they are actually used in existing implementations and deployments.

No minutes for the working group meeting were published.

The Moonshot Bar BOF

This Bar BOF (outside the formal agenda) discussed federated authentication beyond the web.

A description of the informal meeting is available at:
http://www.painless-security.com/blog/2010/02/12/moonshot1

This meeting focused on a description of the problem space and possible solutions. The outcome of the discussion was to pursue an official BOF at IETF78. Subsequent discussions have resulted in the Federated Authentication BOF planned for IETF78 and a draft charter for a working group.

Related documents provided as input to the meeting include:

A GSS-API Mechanism for the Extensible Authentication Protocol,
http://www.ietf.org/internet-drafts/draft-howlett-eap-gss-00.txt

“Project Moonshot: Community briefing paper for the TF-EMC2 & TF-Mobility meetings, Vienna, 16-18 February 2010″, 5 February 2010, Josh Howlett, JANET(UK): http://www.terena.org/mail-archives/mobility/pdfEKnl2kkFsw.pdf

newprep (Stringprep after IDNA2008) BOF

The handling of non-ASCII strings in Internet protocols is a difficult problem that has still not been solved in a generalized way. In 2002, the IETF defined a method for preparation and comparison of internationalized strings that could be re-used by various applications. This method, stringprep (RFC 3454), has been re-used in several Internet protocols that have defined “profiles”.

In completing revisions to the IDN technology, the IETF’s IDNAbis WG decided to move away from the use of stringprep in domain names, instead defining sets of allowed and disallowed characters based on Unicode character properties (often called an “inclusion approach”) rather than defining explicit mappings of Unicode characters as in stringprep (an “exclusion approach”).

However, any move away from stringprep by existing profiles would introduce backward compatibility issues and migration challenges, which need to be weighed against the benefits of a new string preparation technology.

Minutes are available at:
http://www.ietf.org/proceedings/77/minutes/newprep.txt

oauth (Open Authentication Protocol) WG

OAuth allows a user to grant a third-party Web site or application access to their resources, without necessarily revealing their credentials, or even their identity.

The full charter is available at: http://tools.ietf.org/wg/oauth/charters

Current topics include a discussion of signatures, disposition of OAuth WRAP, and use cases. The focus for signatures is on “signing requests” not on “signing tokens”. Signing requests secures the direct communication between two parties (consumer and authorization server / consumer and protected resource). In contrast, signed tokens are used in stateless authorization server designs to protect token contents from modification thus establishing trust between authorization server and protected resource. http://trac.tools.ietf.org/wg/oauth/trac/wiki/SignaturesWhy

Also on the agenda was the disposition of OAuth Web Resource Authorization Profiles (WRAP) (http://tools.ietf.org/html/draft-hardt-oauth-01), use cases (http://trac.tools.ietf.org/wg/oauth/trac/wiki/OauthUseCases), and discussion of the OAuth 2 specification.

Minutes for this working group are not published at this time.

rydeirde (Registry Data Escrow/Internet Registration Escrow) BOF

In the context of domain name registries, registration data escrow is a requirement for the current generic top-level domains and it is expected to be for new registries. Some country code top-level domain managers are also interested in implementing registration data escrow for themselves. There is also such a requirement for ICANN’s generic top-level domain accredited registrars.

The desired outcome of this BOF was to have a mutually agreed specification of the contents and format of the deposits, allowing extensions for new services and objects.

The BOF outcome was that there was a majority of individuals who thought this effort should be pursued in the IETF; however, there were significant concerns to be addressed including additional clarity and limited scope in the charter.

Meeting minutes are available at:
http://www.ietf.org/proceedings/77/minutes/rydeirde.txt

Internet Society Applauds Key Milestone in Domain Name Security Technology

The Internet Society welcomes the significant milestone recently reached in implementing DNSSEC at the highest level of the Domain Name System (DNS), and applauds the efforts by ICANN, Verisign, and the U.S. Department of Commerce that made it possible.

Leslie Daigle, chief Internet technical officer for the Internet Society, said, “We’re excited to see this capstone element of DNSSEC deployment put in place. It signals a new era for operational security of the Internet, and we look forward to new levels of user confidence in network activities using DNSSEC and the services built out from it.”

DNSSEC allows users to have more confidence in the online activities that are increasingly becoming a part of our lives at work, home, and school by acting like tamper-proof packaging for domain name data. For example, it ensures that a website name typed into a browser delivers the intended server IP address. DNSSEC also provides a platform for future innovations to further enhance user confidence in Internet-based services.

DNSSEC technology used today is the result of careful protocol engineering and standardisation within the Internet Engineering Task Force (IETF), the premier Internet standards body in the world; implementation by various DNS vendors; and operational trials by DNS operators.

Through the efforts of the Public Interest Registry, the entire .ORG top-level domain recently became the first top-level generic domain to implement DNSSEC. ). The Internet Society was among the first organisations in the .ORG top level domain to deploy DNSSEC for its ISOC.org and InternetSociety.org domains. DNSSEC is also currently implemented by several country-specific top-level domains: Brazil (.br), Bulgaria (.bg), Czech Republic (.cz), Puerto Rico (.pr), and Sweden (.se).

Learn more about DNSSEC at:

http://isoc.org/dnssec

International Chamber of Commerce and Internet Society Support Renewal of Internet Governance Forum Mandate

IGF future currently under review by UN DESA

NEW YORK CITY – 13 July 2010 – As its mandate comes up for review, the Internet Governance Forum (IGF), a multistakeholder body created by the United Nations for discussion of Internet policy issues, received a strong vote of confidence from the business and technical communities today. At a joint event for UN delegates, the International Chamber of Commerce (ICC) and the Internet Society (ISOC) urged UN member states to continue the mandate of the IGF with its founding principles intact as a unique space for exchange on important Internet governance policy matters.

“Global business strongly supports continuation of the IGF, viewing it as an extremely valuable forum where everyone with an interest in the Internet can come together to discuss its future development,” stated Art Reilly, senior director of strategic technology policy with Cisco Systems, speaking on behalf of ICC and its BASIS (Business Action to Support the Information Society) initiative. “We further support the continuity of the IGF’s multistakeholder structures, its Geneva-based secretariat and its voluntary funding.”

The Internet Society echoed these sentiments: “ISOC and its membership believe that the IGF is one of the most effective and successful outcomes from the UN’s World Summit on Information Society (WSIS),” commented Lynn St.Amour, president and CEO of the Internet Society. “The IGF inspires people to work effectively in support of multistakeholder and people-centered development of the Internet – a key goal of the WSIS. It promotes and supports work in communities, in countries, in all regions and at the global level. The IGF provides an opportunity for governments, business, civil society and the Internet community to share experiences and best practices that can inform decision making in their home communities to address the issues of economic and social growth and development that are essential to achieving the Millennium Development Goals (MDG)”.

The IGF can directly impact how companies do business around the world, according to Peter M. Robinson, president and CEO of ICC’s American affiliate, the United States Council for International Business (USCIB). “In order for business to prosper and contribute to the achievement of major societal goals, we need the cooperative, multistakeholder approach that has been the IGF’s hallmark,” he said.

Since the conclusion of the Tunis UN World Summit on Information Society in 2005, the ICC and ISOC have been actively involved in support of implementing the targets, recommendations and commitments of the WSIS as they pertain to the Internet, and to Internet governance, as well as in capacity building and support of Internet standards organizations. The diverse and global communities of these two organizations continue to deploy efforts in a wide range of areas, working to enhance their cooperation and their contribution to the development of Internet-related public policy solutions around the world.

United Nations (UN) member state representatives today attended a briefing session in New York, hosted by the ICC and the Internet Society, where the benefits of the IGF were presented from the perspectives of businesses and Internet technologists. The session underlined the importance of ‘enhanced cooperation’ in matters of Internet governance.

About the Internet Governance Forum
The UN World Summit on Information Society (WSIS Tunis 2005 preceded by WSIS Geneva 2003) created the Internet Governance Forum (IGF), a multi-stakeholder forum for the discussion of “public policy issues related to key elements of Internet governance in order to foster the sustainability, robustness, security, stability and development of the Internet.”

At Tunis, UN Member States also recognized “the need for enhanced cooperation (EC) in the future, to enable governments, on an equal footing, to carry out their roles and responsibilities, in international public policy issues pertaining to the Internet, but not in the day-to-day technical and operational matters, that do not impact on international public policy issues.”

The IGF encourages open dialogue among all relevant stakeholders at the national, regional, and international levels. This open debate is essential to the process of developing people-centric public policy related to the Internet and to the ongoing effective management of Internet resources. For more information about the workshop organized by ISOC and the ICC, see:

http://www.isoc.org/isoc/conferences/wsis/IGF.shtml

Community Grants Programme Project Showcase: Harlem Computer Internet Access Programme (HICAP)

Contributed by Merle Bush, ISOC Global & ISOC-NY member
(November 2009 grantee)

A computer lab, which had provided seniors a foundation in using and understanding computers and the Internet for four years, was limited by outdated equipment and the lack of Internet access. A Community Grant from the Internet Society made it possible to acquire upgraded equipment and to connect the lab to the Internet and the Harlem Internet Computer Access Programme was born.

Today, the students use comfortable furniture while receiving instruction on a 46 inch monitor and use a Flip Video camera to chronicle sessions. The one hour HICAP classes are so popular that some days they are standing room only and run over class time by two hours.

HICAP is an ongoing projecct dedicated to the cause of educating seniors, as well as those who require assistive devices, such as prosthetics, wheelchairs, walkers, as well as the legally blind and the hard of hearing. For more information on HICAP, see:

http://hicap.blogspot.com

For more information about the Internet Society Community Grants Programme, see:

http://www.isoc.org/isoc/chapters/projects/

Apply Now for ARIN Meetings Fellowship to Attend ARIN XXVI

ARIN is calling for Fellowship applications to attend ARIN XXVI in Atlanta, GA from 6-8 October 2010: ARIN offers this Fellowship Program to bring new voices and ideas to public policy discussions. One individual from each of the three sectors within ARIN’s service region (Canada, the Caribbean and North Atlantic Islands, and the United States and Outlying Areas) will be selected. If you are interested in participating in the program, please submit your application by 6 August. The application, submission instructions, and a detailed description of the program can be found at:

https://www.arin.net/participate/meetings/fellowship.html

For more information on ARIN XXVI, visit:

https://www.arin.net/ARIN-XXVI/

Chapter Update: Australia

Contributed by Holly Raiche

Two issues dominate this month’s news from Australia: the NBN and filtering. The ISOC Australian Chapter has been contracted by the Australian Communications Consumer Acton Network (ACCAN) to translate all of the documentation on the National Broadband Network (NBN) (policy statements, legislation and technical papers) into plain English so that the ordinary consumer can understand what the NBN will mean for them. We are also participating in an industry-led group that will be coordinating the messages that are given to consumers about the NBN and its implications for consumers.

Our other focus this month is as part of the Safer Internet Group (SIG). The Government has delayed implementation of mandatory ISP blocking until the classification of material to be blocked can be reviewed. (Yes, there is an election looming.) However, the SIG is continuing to push its message that Internet blocking will not be effective, and that the Government should focus on more effective strategies that include education and cooperation with law enforcement agencies.

Finally, a reminder of our IPv6 Summit on 18-20 October which is shaping up to be a very interesting conference. For more information, see:

http://www.ipv6.org.au/summit/

Chapter Update: Ecuador

Contributed by Carlos Vera

ISOC Ecuador Capítulo ahora es movil
ISOC Ecuador Chapter is now mobile

ISOC Ecuador Capítulo, pensando permanentemente en la usabilidad de nuestro sitio web ha implementado la tecnologia necesaria para que nuestro portal http://www.isoc.org.ec pueda ser visto con optima presentacion en los BlackBerry y a traves de otros dispositivos moviles que accedan a la red ya sea con planes de datos o a traves de redes WiFi.

Los invitamos a disfrutar de todas nuestras noticias, eventos y oportunidades ahora desde cualquier lugar y en cualquier momento a traves del acceso directo desde su telefono movil.

ISOC Ecuador Capítulo con esta implementacion asegura que nuestro portal se vera uniforme y con una visualizacion adecuada sin importar el visualizador o el sistema desde el cual se acceda.

Por que Internet es para todos ahora ISOC Ecuador Capítulo con una nueva y moderna opcion para su acceso.

Chapter Update: Finland

Contributed by Tommi Karttaav

The Finnish Internet Forum to be organised Sept. 20 – 21, 2010 in Helsinki, is the first national Internet Governance meeting in Finland. It takes place after the conclusion of the 5th international Internet Governance Forum (IGF) in Vilnius the week before, and many IGF participants are also going to attend the Finnish forum. The main organizers of the Finnish Internet Forum are the Committee of the Future and the Information Society Group of the Parliament, Ministry for Foreign Affairs, Ministry of Transport and Communications, ISOC Finland Chapter and the Finnish Information Society Development Centre (TIEKE). The event is by invitation only and will be held in the Auditorium of the “Little Parliament”, the new annex of the Parliament building. Those who would like to be invited to this event are kindly requested to contact the organisers using the contact form: http://internetforum.fi/feedback.html

Chapter Update: Ghana

Contributed by Vera Doku

Update – Mobile Entrepreneurs in Africa
Accra, Tuesday, June 29: The Internet Society, Ghana Chapter (ISOC Ghana Chapter), hosted the Web Foundation during their second quarter social evening event. The Web Foundation is a sister organization of W3C founded by Tim Berners Lee, founder of the World Wide Web. The event was chaired by Nii Naaku Quaynor, convener of ghNOG and chair for ISOC Ghana.

The Web Foundation was in Ghana on a fact finding mission related to its Mobile Entrepreneurs in Africa Project. The Mobile Entrepreneurs in Africa Project, which is being funded by Vodafone, aims at training entrepreneurs to leverage mobile and web technologies that are particularly relevant to developing countries. The Project will also enable developing countries to launch new services to provide locally relevant content and applications so as to make them economically viable.

Discussions from industry experts evolved around issues of certification, development of training initiatives, incubation, creating an enabling environment and building communities. According the Stéphane Boyera, who led the Web Foundation team, the first mobile training laboratory will be launched in Ghana and training which is expected to commence early 2011 will include a segment on business models and methodologies to deploy services and build sustainable businesses.

The guest of honour, Ghana’s Deputy Minister of Communications, Gideon Quarcoo, pledged Government’s support for the project. “Ghana Government’s Better Ghana agenda includes improving the way people communicate and use the web for socio-economic development,” he said. He urged Web Foundation to consider involving the educational institutions in the country to help build the capacity of students in ICT.

There was also an update on the Computer Emergency Response Team (CERT) workshop held in Kigali and suggestions for the realization of ghCERT, Ghana’s first CERT.

Other members of the Web Foundation team present at the event were George Sadowsky, a consultant, Dominique Hazael-Massieux, a W3C staff member doing volunteer work on the project, Heinke Akkermans, a student of VU Amsterdam, working on exploring the potential of web alliance for regreening Africa project in Ghana plus Steven Wolak, and Franco Papeshi from Vodafone UK.

Chapter Update: Hong Kong

Contributed by Yannis Li

Hong Kong Internet Exchange (HKIX) site visit (31 July 10)
A site visit to HKIX will be held on 31 Jul 2010. The Hong Kong Internet Exchange (HKIX) (http://www.hkix.net/) is initiated and operated by Information Technology Services Centre (ITSC) of the Chinese University of Hong Kong (CUHK). The half-day site visit features a presentation on HKIX about its past, present and future as well as a Data Centre Tour which allows people to understand how our ISPs are interconnected with one another, how to save bandwidth as well as to exchange multimedia data faster in Hong Kong. This event has received a lot of responses which the quota is already full. Therefore another site visit might be held in August. For details, please check the Hong Kong Chapter website:
http://www.isoc.hk

APRICOT-APAN 2011, Hong Kong (15-25 Feb 2010)
Internet Society Hong Kong Chapter and DotAsia Organisation (DotAsia) successfully acquired the 2011 hosting rights of APRICOT 2011 (Asia Pacific Regional Internet Conference on Operational Technologies) and APAN 31th (Asia-Pacific Advanced Network). The conferences will be held in Hong Kong in 2011.

This is the first ever joint event of well-known and highly recognized APRICOT and APAN (named as APRICOT-APAN 2011), which will make it the biggest Internet conference in Asia. It is the 2nd APRICOT in Hong Kong after 14 years while it is the 1st APAN meeting in Hong Kong. It is expected 1,000 participants from all over Asia Pacific region will attend. For more information and updates, please visit:

http://www.apricot-apan.asia/

Chapter Update: Israel

Contributed by Nehora Dagan-Hess

On Monday, 14 June 2010, Jeff Jaffe, CEO of W3C arrived in Israel. As guest of the Israel Internet Association (which operates the W3C Israel office), he held meetings with Minister Michael Eitan, government information systems managers. The minister and the CEO of W3C discussed accessibility on the Web, making data available to the public by the government (open data) and W3C activity that is related to government activity.

The day began with a lecture at a seminar for government CIOs. Jeff described how W3C promotes the use of the Web as a tool for improving government services. He referred to the W3C report on the subject of Improving Access to Government through Better Use of the Web and to standards for developing web applications, the semantic web, accessibility and other topics.

In the evening, Jeff continued to a meeting with local technology experts and entrepreneurs, where he described the work of the W3C. After a short 10-minute lecture, the rest of the evening was comprised of a QRA session. Questions were asked about the future of HTML5, micro-payments, information security and privacy, new fields of activity in which W3C is involved and areas which W3C does not handle, and Israeli participation in W3C’s work.

Chapter Update: India, Kolkata

Contributed by Anupam Agrawal

ISOC India Kolkata Chapter worked on the content for raising awareness on Wi-Fi Security along with local authorities, Nasscom, STPI, North 24 Pgns Police and others. As part of this, local hoardings have been setup with “Dos and Dont’s” on wireless security at various places in the IT hub of Kolkata. ISOC India Kolkata Chapter recieved a mention in the press for this reason. Anupam Agrawal, Chair and Niel Hirjee, Vice Chair were interviewed and their comments have been published in The Bengal Post.

Link to website:
http://www.isocindiakolkata.in/tiki-index.php?page=Events

Link to article PDF
http://www.isocindiakolkata.in/tiki-download_file.php?fileId=1

Chapter Update: Liberia

Contributed by Charles K. Gaye

The Liberia Chapter of the Internet Society is one of the newest Chapters Chartered by the Internet Society in November, 2009. Nevertheless the Chapter is making a great impact in Liberia. The focus point of our activities is to build an informed Internet community in Liberia through awareness and capacity building. We believe strongly that capacity building in training and education of the Internet holds substantial promise for our country with regards to Internet’s communication and information delivery capabilities which we believe will speedily help our country meets its development needs.

With financial and moral support from ISOC, the Liberia Chapter of the Internet Society was able to successfully host and helped conduct two kinds of training in June, 2010. The first which lasted from 14-18 June was the joint ISOC/AfNOG Localization training in UNIX. This training was the first of its kind to be conducted in Liberia. Participants were recruited from the Ministries of Information, Foreign Affairs and Education, the Liberia Chamber of Commerce, the Tubman University of Mary Land, the University of Liberia–which is the Liberian accredited highest institution of learning, Stella Maris Polytechnic and others. Mr. Michuki Mwangi, a devoted, strong and courageous Kenyan national, came to Liberia for the first time to conduct this training which ended successful. The second kind of training was LIR+IPV6 conducted by AfriNIC, from June 28th-29th. Mukom Akong Tamon of AfriNIC for his first time also landed on the Liberian soil and conducted for the first time, LIR+IPV6 which opened our eyes to one of the greatest achievements made within the Internet evolution. Both Michuki and Mukom did a great job and will be coming back again to continue with the building up of the capacity of Liberians in Internet technology.

ISOC’s technical capacity building training workshops receive in-kind support from the Network Start-up Resource Centre. We are counting on you to do more for our country.

Our next strategy for the remaining five months will be 1) to organize a general meeting that will bring together ISPs, Liberia Telecommunication Authority, stakeholders and IT engineers to talk in order to fine means of building our country’s Internet exchange point 2) continue with awareness and capacity building activities.

We are very grateful to ISOC for their support in making our activities a success.

Chapter Update: Malaysia

Contributed by Julian Vincent

ISOC Malaysia Chapter participated in OpenWebAsia, which is a regional technology and web business conference that brings together top minds in the web technology space. It was held on the 13th & 14 of July 2010. The theme for OpenWebAsia—SEA 2010 was “Web innovation in Asia” and it brought together well knoon personalities from giant copanies like Google, Yahoo, and Amazon. It was two days of information on the Web Innovation and wher its leading in the future.

Chapter Update: New York

Contributed by Joly MacFie

Harlem Internet Computer Access Program
The first class in Harlem Internet Computer Access Program celebrated their graduation on Jun 24 2010. As can be seen on http://hicap.blogspot.com there were sumptuous vittles on hand. Eager learners are already signing up for the next class, starting in September. Congratulations to Co-ordinator Merle Bush, and all involved! Special thanks to ISOC’s Community Grants Program for making it possible.

OneWebDay 2010
ISOC New York Chapter has taken over the duties of central co-ordination of the annual September 22 OneWebDay celebration for 2010. A website, co-ordinating wiki, and organizer’s mailing list can be found at http://onewebday2010.org – If you haven’t already, start planning your events now. The popular OneWebDay Stories contest, now in its third year, will again be co-ordinated by Sivasubramanian Muthusamy of ISOC Chennai Chapter – http://stories.onewebday.org/ – please encourage everyone you know to submit short stories about how the Internet has affected their lives.

Allied Fiber Presentation/Discussion
ISOC New York Chapter held a meeting with Hunter Newby, CEO of Allied Fiber, on Jun 28 2010. This was an interesting and wide ranging roundtable discussion on AF’s plans to encircle the entire USA with a dark fiber ring with carrier neutral access at any point. The meeting was held at short notice, regrettably our two associates with the greatest expertise in such matters Frank Coluccio and NYC Community Fiber’s Lou Klepner were not able to be present.

It was decided, rather than attempt a coherent edit of 2+ hours of audio for webcast, to videotape a follow-up meeting commencing with a more formal presentation, and both Frank and Lou in attendance.

This meeting took place on Weds 14 July 2010 at NYU. Video will be made available shortly.

http://www.isoc-ny.org/p2/?p=996

NYCwiki
ISOC New York Chapter is sysop/host of the development site for a community wiki for New York City. The project is a collaboration with Wikimedia NYC and
Connecting .nyc, and is borne out of the latter’s concerns to develop
neighborhood sites in preparation for the anticipated acquisition by
the City of the .nyc Top Level Domain.

http://NYCwiki.org

hackNY
Friday July 30 will be the occasion of the hackNY program Demo Fest, held at the Cortland Institute at NYU. Sponsored by ISOC New York Chapterwith funds provided by the Kauffman Foundation, hackNY organizes the summer hackNY Fellows program, in which selected student fellows are matched with NYC startups, and provided with shared housing in NYU dorms, plus lectures from local tech leaders. We are looking forward to seeing the results of their efforts. Video will be shot and webcast at a later date.

http://www.isoc-ny.org/p2/?p=1042

Chapter Update: Senegal

Contributed by Alex Corenthin

French Version
ISOC Sénégal Chapitre, avec l’implication active de l’équipe des jeunes de ISOC

Senegal Next Generation (ISOC SN-NG) et les cellules ISOC Senegal Chapitre des universités et établissements d’enseignement supérieur du Sénégal (EC2LT de Dakar, UGB de Saint-Louis), créés à la suite du lancement du programme Next Generations Leaders de ISOC en Novembre 2009, organise le Forum Régional sur la Gouvernance de l’Internet (WAIGF) qui aura lieu du 23 au 25 Aout 2010.

Cette manifestation sera précédée par le forum national sur la Gouvernance de l’Internet le 29 Juillet 2010, organisé en partenariat avec le Ministère en charge des TIC et tous les acteurs majeurs de l’Internet au Sénégal (ARTP, SONATEL, ADIE, OPTIC, OSIRIS, GOREeTIC, SCA/Grappe TIC,).

Un forum électronique (forum.isoc.sn) a été mis en place pour receuillir les avis et contributions Sénégalaises autour des axes majeurs de la problématique de la « Gouvernance de l’Internet ». ISOC Sénégal Chapitre participe ainsi à l’élaboration d’une contribution africaine au 5ième FGI qui se tiendra en Lituanie en 2010, en invitant tous les acteurs de l’Internet à participer à ces débats sur le forum électronique.

English Version
ISOC Senegal Chapter, with the active involvement of the youth team of ISOC Senegal Next Generation and the cells of the universities and institutions of higher education in Senegal (Dakar EC2LT, St. Louis University), created following the launch of the Next Generations Leaders Programm of ISOC in November 2009, organize the West African Regional Forum on Internet Governance (WAIGF) to be held from 23 to 25 August 2010.

This event will be preceded by the National Forum on Internet Governance on 29 July 2010, in partnership with the Ministry in charge of ICT and all the major players of Internet in Senegal (ARTP, Sonatel, ADIE, OPTIC, OSIRIS, GOREeTIC, SCA). An electronic forum (forum.isoc.sn) is available to review and collects the Senegalese contributions around the major issues of “Internet Governance”. Within this program, ISOC Senegal Chapter want to be part in the development of an African contribution to the 5th IGF to be held in Lithuania in 2010, by listening the voices of all the National Internet players.

ISOC Member Newsletter. Suggestions, comments, and questions welcome to, newsletter@isoc.org

ISOC's key initiatives target the critical issues that affect all aspects of Internet development and growth. They embody ISOC's philosophy that the Internet is for everyone and they provide the organization with a solid foundation from which to positively influence standards development, access, business practices, and government policies.

Comments (2)
  • Beatriz
    Los recursos son excelentes. Se puede dar en UPR Aguadilla?
  • Eduardo Diaz
    ?A que recursos te refieres?
Only registered users can write comments!
Internet Society of Puerto Rico thanks Compojoom for providing this component