Donate

Improving Technical Security

Global infrastructure is required so that Internet endpoints without a prior relationship can communicate in a trusted and secure way. Unmediated connections are a hallmark of the Internet. Technologies such as encryption infrastructure, time security, and identity and authentication functions comprise the necessary infrastructure. It is this shared connectivity and trust infrastructure that enables a trustworthy and secure Internet for everyone, so it is where we will focus our efforts in 2019.

To that end, the Mutually Agreed Norms for Routing Security (MANRS) campaign, successful in 2018, continues in 2019. MANRS has historically focused on measuring companies’ and organizations’ commitments to take action. This theme will continue in 2019 with a goal of doubling the number of MANRS members by the end of the year. We will also engage the community in discussions with the aim of establishing a governance model that supports a sustainable MANRS community, so that the project does not need further incubation.

Beyond strengthening the community, the deployment of the MANRS Observatory in 2019 will permit something more dramatic: the ability to note how many routing leaks happen on the Internet, whether there is a downwards trend in such failures, and whether the efforts of MANRS (and other routing security efforts such as route signing) appear to make any difference. For the first time, we will be able to report to the Internet community about the outcomes of MANRS. This will allow a mid-year decision on where MANRS will go next: whether there are new norms to embrace, or indeed whether MANRS can be effective at all.

Beyond MANRS, we will work within various communities to create the technical and policy building blocks that allow trust infrastructure to be developed, promoted, and implemented. We will continue to support developments that are needed for confidential end-to-end communication. We will examine the deployment issues surrounding network time synchronization security mechanisms. At the beginning of 2019, we will undertake an effort to identify and report the hurdles in standardization, usability, software availability, and operationalization, and to identify next steps; the report will be complete and published by the end of the year. More generally, we will develop a methodology for identifying how certain trust technologies can be deployed effectively, and test the methodology’s utility in improving those technologies.

As ever, Internet Society staff will contribute to the development of best practices or technical standards resulting in standards that are secure and deployable in global setting. We will assess potential deployment issues in the deployment of new standards such as Transport Layer Security (TLS) 1.3, and Domain Name System (DNS) over TLS and HTTPS. To reach communities such as network operators, we will use the proven Deploy360 Programme channels to report on these issues and to drive deployment of these and other trust technologies.

In addition, we continue to advocate for the importance of security and trust in the components and operations that make up the Internet’s infrastructure. The adoption and implementation of industry and community-wide norms of behavior that protect the public core, including in the international security community, is an important objective in that context. Not only will we continue to advocate strongly that trust in the Internet’s infrastructure is an important foundation for the Internet itself to be secure and trustworthy, but we will continue to seek technical and policy levers that affect the ecosystem positively.

Technical Security News

Internet Resilience Discussions at IETF 104
Internet Resilience Discussions at IETF 104 Thumbnail
Improving Technical Security 22 March 2019

Internet Resilience Discussions at IETF 104

Let’s look at what’s happening in the Internet Engineering Task Force (IETF) and the upcoming IETF 104 meeting in...

Join a Local IETF Viewing Hub in Africa
Join a Local IETF Viewing Hub in Africa Thumbnail
Improving Technical Security 20 March 2019

Join a Local IETF Viewing Hub in Africa

The Internet Engineering Task Force (IETF) is the premier Internet standards body, developing open standards through processes to make the...

DNS Privacy Frequently Asked Questions (FAQ)
Improving Technical Security 15 March 2019

DNS Privacy Frequently Asked Questions (FAQ)

We previously posted about how the DNS does not inherently employ any mechanisms to provide confidentiality for DNS transactions,...

Introduction to DNS Privacy
Introduction to DNS Privacy Thumbnail
Improving Technical Security 14 March 2019

Introduction to DNS Privacy

Almost every time we use an Internet application, it starts with a DNS (Domain Name System) transaction to map...

IPv6 Security for IPv4 Engineers
IPv6 Security for IPv4 Engineers Thumbnail
Improving Technical Security 13 March 2019

IPv6 Security for IPv4 Engineers

It is often argued that IPv4 practices should be forgotten when deploying IPv6, as after all IPv6 is a...

Making the Internet Better Together at APRICOT 2019
Making the Internet Better Together at APRICOT 2019 Thumbnail
Improving Technical Security 12 March 2019

Making the Internet Better Together at APRICOT 2019

Asia Pacific Regional Internet Conference on Operational Technologies (APRICOT) 2019, said to be the largest technical conference in the...

Load More