Categories
Deploy360 Domain Name System Security Extensions (DNSSEC) IETF IPv6

Deploy360@IETF88: Day 3 – Perpass, IPv6 Operations and Operational Security

IETF LogoOn Day 3 of IETF88 our focus is again on IPv6 as well as the overall topic of hardening the security of the Internet.  The first sessions we’re primarily tracking is the IPv6 Operations (V6OPS) which has a whole range of documents under consideration relating to IPv6 addressing. The second session is Operational Security (OPSEC) where there are two drafts related to IPv6 security.

On a broader topic, we’ll be watching the IETF 88 Technical Plenary focused on “Hardening The Internet” and then the “Perpass” working group coming up after that.

My earlier posts about DNSSEC sessions and IPv6 sessions at IETF 88 explain in more detail what we’ll be watching.

Information about the four sessions today, including the links for the audio streams, the slides and the Jabber chat rooms, is:

For these sessions and all the others, the “tools-style agenda” for IETF 88 provides many helpful links for remote participants.

If you’d like to meet with the Deploy360 team here at IETF88, please see our post about where we’ll be at IETF88.

Categories
Deploy360 IETF IPv6

Deploy360@IETF88: Day 1 – 6Man and v6OPS

IETF LogoOur first day here at IETF88 is a quieter day for us on the Deploy360 team in terms of the number of sessions but  today’s sessions are two of the biggest in terms of content related to our work with IPv6.   The “6man” working group is focused on the “maintenance” of IPv6 and continuing the evolution of the IPv6 protocol.  The 6man agenda is FULL of talks about suggested fixes and improvements – and should generate some good discussion and actions.

Similarly, today’s “IPv6 Operations” (v6ops) sessions has what should be very interesting discussions:

Xbox One and Teredo
Balanced Security for IPv6 Residential CPE
An Internet Protocol Version 6 (IPv6) Profile for 3GPP Mobile Devices
NAT64 Operational Experiences
Recommendations of Using Unique Local Addresses
464XLAT CLAT IPv4 Address

Information about the two sessions today is here, including the links for the audio streams, the slides and the Jabber chat rooms:

For these sessions and all the others, the “tools-style agenda” for IETF 88 provides many helpful links for remote participants.

If you’d like to meet with the Deploy360 team here at IETF88, please see our post about where we’ll be at IETF88.


An audio version of this post is also available:

Categories
Deploy360 IETF

Meet The Deploy360 Team At IETF 88 In Vancouver This Week

IETF LogoThe 88th meeting of the Internet Engineering Task Force (IETF) takes place this week in Vancouver, BC, and Megan Kruse and myself (Dan York) will be there participating in Working Group sessions, recording some video interviews, helping with the live video stream of the IETF 88 Technical Plenary and the ISOC@IETF panel on IPv6 and just generally meeting with people about how we accelerate the deployment of IPv6, DNSSEC and routing technologies!

If you’d like to meet with us at IETF 88, the best bet is to probably send an email to:

deploy360@isoc.org

as that gets to both of us and the rest of the team.  As to where you can find us at IETF 88, you can expect to find Megan and I in most of the sessions related to IPv6, DNSSEC or routing resiliency/security.  Here are some of the prime ones where one or both of us will be:

You can also expect us to be in other sessions where IPv6 or DNS or routing security are mentioned.  We’re around and we’d definitely be interested in meeting with people while here.  Please do drop us an email message or find us in person.

Categories
Deploy360 Domain Name System (DNS) Domain Name System Security Extensions (DNSSEC) IETF

4 Sessions About DNSSEC, DNS And DANE At IETF 88 Next Week

IETF LogoNext week IETF 88 in Vancouver will be a bit quieter on the DNSSEC and DANE front.  As I wrote in a post today on our “Internet Technology Matters (ITM)” blog, “Rough Guide to IETF 88: DNSSEC, DANE and DNS“, the only major working group related to DNSSEC that will be meeting will be the DNSOP WG on Tuesday, November 5th.  However, in that meeting there will be the very big topic of how we automate the transfer of updated DS / DNSKEY records from a child zone up to a parent zone within DNS.  There are  a couple of different proposals that will be discussed, including:

It should be an excellent discussion.  As I wrote in the ITM post, there are several other interesting drafts as well being discussed in DNSOP – all focused around improving the operations of DNSSEC.  It should be a great session at IETF!

The DANE Working Group is not meeting but as I mentioned in the other article I expect that DNSSEC / DANE will come up in some of the many conversations that will be going on next week related to how we harden the Internet against large-scale surveillance and pervasive monitoring.  The Technical Plenary on Wednesday, November 6, should be an excellent event well worth listening to.   The “Perpass” BOF session will dive into more details. I don’t know if DNSSEC / DANE will be discussed there… but it certainly could be.

The DNS-SD Working Group discussion could also be quite interesting because as you extend DNS service discovery beyond a simple local network into a multi-network environment, you need to have some way to securely communicate that information.  We’ll see what is begin talked about in that regard.

Anyway, here are four of the sessions where DNSSEC / DANE / DNS will be discussed – you can expect to find me in all of them:

NOTE: If you are not going to be in Vancouver next week, there are multiple ways that you can participate remotely in these working groups, including audio streams and Jabber chat rooms.

Categories
Deploy360 IETF IPv6

7 Of The Many Sessions About IPv6 Next Week At IETF 88

IETF LogoThe great news for IPv6 advocates about IETF 88 in Vancouver next week is that IPv6 is everywhere! All throughout the IETF 88 agenda you can find IPv6 in various different groups.  IPv6 is definitely “the new normal” and that shows!

Our colleague Phil Roberts posted today “Rough Guide to IETF 88: All About IPv6” where  he highlights the major working groups that are tackling IPv6 topics.  There is a great amount of activity going on and Phil’s post gives a good sense of the range of work.  You can expect to find our Deploy360 team in pretty much all of these working groups monitoring what’s going on and contributing where appropriate.

To Phil’s excellent list of Working Group sessions related to IPv6 I’d add only one more that is important from a deployment/operationalization point of view.  The OPSEC Working Group has two drafts on its agenda that are both focused on IPv6 security.  With that, here is a list of some of the major groups doing IPv6 work next week… as I mentioned, you wind up finding IPv6 across all the many different groups, but here are some of the major ones.

NOTE: If you are not going to be in Vancouver next week, there are multiple ways that you can participate remotely in these working groups, including audio streams and Jabber chat rooms.

Categories
Deploy360 IETF Securing Border Gateway Protocol (BGP) To archive

4 Sessions About Routing Resiliency/Security At IETF 88 Next Week

IETF LogoNext week at IETF 88 in Vancouver the topic of routing resiliency/security will be covered in a variety of different working groups.  Our colleague Andrei Robachevsky outlined what will be covered in a post on the “Internet Technology Matters (ITM)” blog: Rough Guide to IETF 88: Routing Resilience.   We’re looking forward to those sessions and you can expect to find me in most of them.  My particular interest is in what is happening within SIDR right now, but in truth all of them should be interesting.

I’d strongly suggest reading Andrei’s post to understand what’s going to be going on with routing.  Here are the relevant working groups and times.

NOTE: If you are not going to be in Vancouver next week, there are multiple ways that you can participate remotely in these working groups, including audio streams and Jabber chat rooms.