Internet Society Frontpage

Events Membership
About the Internet Standards
Publications  Public Policy
About ISOC Education

Publications 

IETF Journal

Table of Contents - Volume 7, Issue 2 (October 2011)

From the Editor’s Desk

By Mat Ford

The recent and widely publicized intrusion into the DigiNotar certificate authority infrastructure amply highlighted the weaknesses of the systems widely in use today to secure online communications. The advent of DNSSEC deployment raises the intriguing possibility of using the DNS as a secure repository for certificates in the future. In our cover article, Richard Barnes offers a detailed overview of the DANE working group’s efforts to make this possibility a technical reality. Read more…

This article was posted on 27 October 2011

Top of page

DANE: Taking TLS Authentication to the Next Level Using DNSSEC

By Richard L. Barnes

 Abstract

Authentication of Domain Name System (DNS) names for Transport-Layer Security (TLS) endpoints is a core security challenge in many Internet protocols, most famously Hypertext Transfer Protocol (HTTP). Today, the cryptographic bindings that underlie TLS authentication are asserted in Public Key Infrastructure for X.509 (PKIX) certificates issued by third-party certification authorities (CAs). The DNS-based Authentication of Named Entities (DANE) working group is developing protocols that allow certificates to be bound to DNS names using Domain Name System Security Extensions (DNSSEC). These protocols will enable additional assurances for the traditional, PKIX-based model, as well as enabling domain holders to assert certificates for themselves, without reference to third-party certificate authorities. With this increased responsibility, however, DNS operators will play a more critical role in securing applications. So while DANE holds the promise of more direct authentication, it will also create some new security challenges. Read more…

This article was posted on 27 October 2011

Top of page

Message from the IETF Chair

By Russ Housley

Russ Housley, IETF Chair

Russ Housley, IETF Chair

The IETF participants are energetic! The work of the IETF is highly relevant!

IETF 81 was held in Quebec City, Canada. It was a successful meeting, attended by 1,057 people from 46 countries. This first-time meeting in Quebec City was wonderfully hosted by Research In Motion (RIM)—convention center facilities were very comfortable and Tuesday evening’s social event at the Musée de la Civilisation was well attended. Comcast and .ca were our sponsors, and Bell and Telus provided network connectivity. Thanks to all for your support.

Many working groups made significant progress at IETF 81, and it was a genuine pleasure to see so many talented people engaged and collaborating. Read more…

This article was posted on 27 October 2011

Top of page

Words from the IAB Chair

By Bernard Aboba

Bernard Aboba, IAB Chair

Bernard Aboba, IAB Chair

The IETF 81 Technical Plenary included a report on World IPv6 Day organized by Leslie Daigle, as well as a series of presentations on the Web Privacy Tustle, organized by Alissa Cooper. World IPv6 Day presentations included reports from Facebook (Donn Lee), Google (Lorenzo Colitti), Yahoo! (Igor Gashinsky), Telefonica (Carlos Ralli Ucendo), and Cisco (Mark Townsley). For the session on the Web Privacy Tustle, Jens Grossklags, Fred Carter, Andy Zeigler, and Alissa Cooper provided their thoughts.1

The IAB held its annual retreat 12–13 May 2011, at VeriSign in Sterling, Virginia. During the retreat, the IAB reviewed the Programme and Initiative framework that it put in place during last year’s retreat, and agreed to commit to the framework as an organizational tool going forward. Read more…

This article was posted on 27 October 2011

Top of page

ISOC Panel Addresses Regulation, Innovation, and the Internet

By Carolyn Duffy Marsan

What will drive the Internet’s evolution in the future: market forces or government regulation? This was the topic debated by a panel of experts at an Internet Society-sponsored luncheon held in Quebec City in conjunction with the IETF 81 meeting.

Panelists, including experts from across the IETF community, predicted a future of increasing regulation given how the Internet has become critical infrastructure for both government and industry.

Leslie Daigle, chief Internet technology officer at ISOC, explained that three key aspects of the Internet need to be retained, regardless of how the network and its underlying protocols evolve: permissionless innovation, open access, and collaboration. Read more…

This article was posted on 27 October 2011

Top of page

IAB Plenary Tackles IPv6, Privacy Issues

By Carolyn Duffy Marsan

Carolyn Maynard Painting

Quebec City streetscape painting by Carolyn M. Maynard

The IAB’s plenary in Quebec City featured a recap of World IPv6 Day as well as a discussion of privacy considerations on the Web.

World IPv6 Day Panel

World IPv6 Day, held 8 June 2011, was a tremendous success in terms of encouraging Web sites and content delivery networks to conduct a 24-hour trial of IPv6, said Leslie Daigle, chief Internet technology officer for the Internet Society.

“Facebook, Google, Yahoo, and more than 1,000 other Web sites turned on IPv6 on their front door,’’ Daigle said, adding that the goal of the Internet Society-organized event was to motivate ISPs, hardware makers, operating system vendors, and other Web companies to prepare their services for IPv6 as well as to understand the issues related to IPv6 transition. “It was a good day for the Internet coming together.’’ Read more…

This article was posted on 27 October 2011

Top of page

New Technology Demo: PCP

By Tina Tsou, Christian Jacquenet, and Xiaohong Deng

PCP Staff

The Port Control Protocol demo staff (Photo credit: Yannick Grandmont/Internet Society)

Several organizations collaborated to carry out the Port Control Protocol (PCP) demonstrations during the IETF Quebec City meeting. PCP is a simple, flexible, lightweight protocol that is being designed by the IETF to address some of the issues raised by the forthcoming IPv6 transition period where access to some legacy IPv4 content requires the control of firewall or network address translator capabilities for the dynamic allocation of transport-layer port numbers.

The demonstration was inspired by the IETF mantra of “rough consensus and running code” to expose IETF technologies to real operator requirements and scenarios, and to develop the technology innovation and provide feedback to the IETF community. Read more…

This article was posted on 27 October 2011

Top of page

Internet Society Fellows to the IETF Increase Participation on a Global Scale

Six members of an Internet Society Fellowship programme took part in the 81st meeting of the Internet Engineering Task Force (IETF). The Internet Society Fellows to the IETF programme, which operates under the aegis of the Internet Society’s Internet Leadership programme, began in 2006 and is today an established Internet Society activity. Through a competitive process, the Internet Society selects Fellows from a talented pool of applicants from around the world. Fellows infuse IETF meetings with their diverse experience and local expertise about how the Internet works in their communities.

“Since the inception of the Fellows to the IETF programme, the Internet Society has selected and supported 57 engineers from more than 25 developing and emerging economies,” said Toral Cowieson, senior director of Internet leadership at the Internet Society. “Having these engineers engaged in this critical standards work helps ensure representation of a broad range of viewpoints and the ongoing development of globally relevant and effective Internet standards.” Read more…

This article was posted on 27 October 2011

Top of page

IETF Ornithology: Recent Sightings

Compiled by Mat Ford

Getting new work started in the IETF usually requires a Birds-of-a-Feather (BoF) meeting to discuss goals for the work and to help assess the level of interest in and support for new work. In this article, we’ll review the BoFs that took place during the IETF, their intentions and outcomes. If you’re inspired to arrange a BoF meeting, please be sure to read RFC 5434, Considerations for Having a Successful Birds-of-a- Feather (BoF) Session. Full descriptions of the BoFs that were proposed in the run-up to the IETF 81 meeting can be found on the wikiRead more…

This article was posted on 27 October 2011

Top of page

IETF 81 At–A–Glance

Registered attendees: 1057

Newcomers: 133

Number of countries: 46  Read more…

This article was posted on 27 October 2011

Top of page

IRTF Update

By Lars Eggert

During IETF 81 in Quebec City, Canada, seven research groups held meetings: IRTF Logo

  • Delay-Tolerant Networking RG
  • Peer-to-Peer RG
  • Network Management RG
  • IP Mobility Optimizations RG
  • Host Identity Protocol RG
  • Scalable Adaptive Multicast RG
  • Virtual Networks RG Read more…

This article was posted on 27 October 2011

Top of page

IETF Meeting Calendar

IETF 82

  • 13-18 November 2011
  • Host: Taiwan Network Information Center (TWNIC)
  • Location: Taipei, TW

Read more…

This article was posted on 27 October 2011

Top of page

Full edition in PDF

The full edition of the IETF Journal is available here in PDF.

This article was posted on 27 October 2011

Top of page