‹ Back
Deploy360 8 September 2015

TODAY! Watch ION Cape Town Live!

Megan Kruse
By Megan KruseDirector, Partner Engagement and Communications

ion-capetown-ai-pngStarting today in about an hour, at 9:00am SAST (UTC+2) our ION Cape Town event will be streaming live out of Cape Town, South Africa.  We’ll be sharing the very latest news about IPv6, DNSSEC, DANE, TLS, Best Current Operational Practice (BCOP) efforts, and standards within the IETF.

You can watch the event live. Below is the full ION Cape Town agenda and the presentations will be uploaded here as they come in.

I hope you can join us, either here in Cape Town at the lovely Spier Hotel, or online!

9:00 AM

Opening Remarks

Megan Kruse, Internet Society

9:15 AM

Welcome from the Internet Society South Africa Chapter

Alan Levin

9:30 AM

Welcome from the Internet Society South Africa-Gauteng Chapter

Gabriel Ramokotjo

9:45 AM

Collaborative Security: Routing Resilience Manifesto and MANRS

Andrei Robachevsky, Internet Society

The Routing Resilience Manifesto initiative, underpinned by the “Mutually Agreed Norms for Routing Security (MANRS)” document that includes a set of actionable recommendations, aims to help network operators around the world work together to improve the security and resilience of the global routing system. In this session, we’ll explain the basic principles outlined in MANRS, how to sign up and support the effort, and how to get involved in helping to further increase global routing security.

10:00 AM

Why Implement DNSSEC?

Simon Balthazar, TZNIC

DNSSEC helps prevent attackers from subverting and modifying DNS messages and sending users to wrong (and potentially malicious) sites. So what needs to be done for DNSSEC to be deployed on a large scale? We’ll discuss the business reasons for, and financial implications of, deploying DNSSEC, from staying ahead of the technological curve, to staying ahead of your competition, to keeping your customers satisfied and secure on the Internet. We’ll also examine some of the challenges operators have faced and the opportunities to address those challenges and move deployment forward.

10:30 AM


11:00 AM

Deploying DNSSEC: A Case Study

Mark Elkins, Posix Systems – (South) Africa

This session will explore one organization’s technical solution for deploying DNSSEC support within its country code Top Level Domain (ccTLD). With a goal of making it easier for domain name holders to easily add DNSSEC, we will take a quick look at the DNSSEC implementation strategy, the status/progress of signed domains, and lessons learned and challenges for increasing the percentage of signed domain names.

11:30 AM

DANE: The Future of Transport Layer Security (TLS)

Michuki Mwangi, Internet Society

If you connect to a “secure” server using TLS/SSL (such as a web server, email server or xmpp server), how do you know you are using the correct certificate? With DNSSEC now being deployed, a new protocol has emerged called “DANE” (“DNS-Based Authentication of Named Entities“), which allows you to securely specify exactly which TLS/SSL certificate an application should use to connect to your site. DANE has great potential to make the Internet much more secure by marrying the strong integrity protection of DNSSEC with the confidentiality of SSL/TLS certificates. In this session, we will explain how DANE works and how you can use it to secure your websites, email, XMPP, VoIP, and other web services.

12:00 PM

DANE/DNSSEC/TLS Testing in the Go6lab

Jan Žorž, Internet Society

Jan Zorz set up DNSSEC, DANE, and TLS in his go6lab and then tested the implementations in the top one million Alexa domains. Jan will share his experiences deploying, testing, and evaluating DNSSEC, DANE, and TLS in his own lab and explain the process he used.

12:30 PM


1:30 PM

What’s Happening at the IETF? Internet Standards and How to Get Involved

Andrei Robachevsky, Internet Society

What’s happening at the Internet Engineering Task Force (IETF)? What RFCs and Internet-Drafts are in progress related to IPv6, DNSSEC, Routing Security/Resiliency, and other key topics? We’ll give an overview of the ongoing discussions in several working groups and discuss the outcomes of recent Birds-of-a-Feather (BoF) sessions, and provide a preview of what to expect in future discussions.

1:45 PM

IETF, Operational Experience, and Africa

Michuki Mwangi, Internet Society

The Internet Society is working toward fostering a larger and more engaged network operator community around the IETF and protocol development work. Part of that work was a survey of network operators in 2014 and an Internet-Draft about its results. We’re also interested specifically in bringing more African engineers with operational experience into the IETF, and perhaps even bringing a physical IETF meeting to the continent of Africa within the next few years. We’ll outline some of our recent work and hope to make this an interactive session to learn from the local community how to encourage more IETF participation.

2:15 PM

Best Current Operational Practices – An Update

Jan Žorž, Internet Society

The Internet Engineering Task Force (IETF) standardizes the protocols and services that vendors implement and network operators are supposed to deploy and use. We believe there is an opportunity to better identify, capture, and promote best current operational practices emerging from various regional network operators’ groups. We believe sharing these documents across the globe would benefit the wider Internet community and help more operators deploy new technologies like IPv6 and DNSSEC faster and easier. Deploy360’s Jan Zorz will give an update on this progress, discuss the status of BCOP efforts across the world, and give an overview of some of the documents in the process so far.

2:30 PM

Applying the 4DX Methodology to IPv6 Deployment

Mukom Akong Tamon, AfriNIC

Three years ago on World IPv6 Launch, thousands of ISPs, home networking equipment manufacturers, and web companies around the world united to permanently enable IPv6 on their products and services. With the global IPv6 traffic at 5% and growing, Africa’s share of that IPv6 traffic is negligible. Yet IPv6 deployment is one of those initiatives that everyone agrees is merely important and will forever be at the mercy of other initiatives that are urgent. How do you change that? By using the proven methodology 4DX that will guarantee the IPv6 deployment project has a chance amidst the whirlwind of other urgent initiatives. This should certainly start moving up dial on IPv6 traffic in Africa.

3:00 PM


3:30 PM

IPv6 Success Stories– Network Operators Tell All!

Moderator: Nishal Gorbudhan (Packet Clearing House)

Panelists: Andrew Alston , Liquid Telecom; Graham Beneke; Ben Maddison, Workonline Communications (Pty) Ltd.; Mark Tinka, SeaCom

In this session, we invite network operators to share their IPv6 success stories and lessons learned along the way that can help other managers of networks deploy IPv6. How did they do it? What technical, organizational, and political challenges did they face? Attendees will gain vital insight as network operators lay out the stages for IPv6 implementation—creating the business case for management buy-in, initiating a planning process, flipping the switch, and, finally, gathering measurements and proving success.

4:30 PM

Closing Remarks

Megan Kruse, Internet Society

‹ Back

Disclaimer: Viewpoints expressed in this post are those of the author and may or may not reflect official Internet Society positions.

Related articles

Improving Technical Security 15 March 2019

DNS Privacy Frequently Asked Questions (FAQ)

We previously posted about how the DNS does not inherently employ any mechanisms to provide confidentiality for DNS transactions,...

Improving Technical Security 14 March 2019

Introduction to DNS Privacy

Almost every time we use an Internet application, it starts with a DNS (Domain Name System) transaction to map...

Improving Technical Security 13 March 2019

IPv6 Security for IPv4 Engineers

It is often argued that IPv4 practices should be forgotten when deploying IPv6, as after all IPv6 is a...

Join the conversation with Internet Society members around the world