Click the comments link on any
story to see comments or add your own.
Subscribe to this blog
RSS feed
|
Home
24 Oct 2019
In the always interesting Lawfare blog, former FBI counsel Jim
Baker in a piece
called Rethinking
Encryption reiterates his take on the encrpytion debates. There's a certain
amount that makes me want to bang my head against the wall, e.g.
After working on the going dark problem for years, I'm confident
that this problem can be addressed from a technical perspective. In
most cases, it's just software, and software can be rewritten.
But it's worth reading to remind us of what the other side is
thinking, even with a lot of motivated reasoning that makes him
conclude that Congress can pass some laws and the going dark
problem will be solved.
A reader who is relatively new to this fight asked me is there's a short
and accessible explanation of why crypto back doors can't work.
See more ...
Stable link is https://jl.ly/Security/noback.html
25 Sep 2019
Earlier this year I gave a talk as a UASG Ambassador
at the eco talk at the CSA summit in Cologne.
We did a video interview which they finally finished editing
and put on their web site here.
eco have a little more info their web site at
https://www.dotmagazine.online/issues/digital-identities/ipv6/EAI.
The camera angle is a little odd but other than that I think it
came out well.
Stable link is https://jl.ly/Internet/uainterview.html
07 Sep 2019
The DNS has always had a few names for use as examples in documentation,
domains example.com, example.net, example.org,
and example.edu.
In 1999 RFC 2606 formally reserved the first three.
There's nothing technically special about these names,
which have normal WHOIS and DNS entries, managed by IANA.
Until recently, that meant that even though none of them handle
any e-mail, mail sent to them by mistake worked badly.
See more ...
Stable link is https://jl.ly/Email/exampnull.html
22 Aug 2019
Apropos of recent news stories about a blockchain based voting system
that was hacked before its first election, someone asked:
Perhaps final recognition that a lot of blockchain is hype? Or
simply an interesting side-story?
A blockchain can ensure that the lies you see are the same lies that
were published, but that doesn't have much to do with voting.
Voting has a very peculiar security model -- you need to verify that each
person voted at most once, you need to count all of the votes for each
candidate, and you need not to link the two. A lot of very bad voting
systems are built by people who wrongly assume that its security model
is similar to something else, which it is not.
An obvious example is Diebold who built voting machines that worked
like ATMs, which was a disaster, since the way you audit ATMs depends
on the details of each transaction being linked to the person doing
it.
Paper ballots have a lot to recommend them. It's easy for poll
workers to observe that each voter puts one ballot into the box,
they're relatively easy to count (we use mark sense machines here) and
compared to the spaghetti code in direct recording machines, they're
quite tamper resistant.
Stable link is https://jl.ly/Internet/notvote.html
28 May 2019
The IETF's DMARC working group
is thinking about a maintenance update to the DMARC spec, fixing bits that are unclear and
perhaps changing it where what mail servers do doesn't exactly agree with what it says.
Someone noted that a lot of mailers claim to have ``deployed DMARC'', and it's not at
at all clear what that really means.
See more ...
Stable link is https://jl.ly/Email/dmarcwhat.html
27 May 2019
Last November I wrote a post observing that with .DOHA and .ZIPPO
handing back the keys to their TLDS, the count of abandonded TLDs had reached 45, and I wondered
how much other destroyed value was hiding in new TLDs.
See more ...
Stable link is https://jl.ly/ICANN/dead50.html
22 Apr 2019
Last November I wrote a post observing that with .DOHA and .ZIPPO
handing back the keys, the count of abandonded TLDs had reached 45, and I wondered
how much other destroyed value was hiding in new TLDs.
See more ...
Stable link is https://jl.ly/ICANN/dead47.html
21 Apr 2019
ICANN has spent years trying to figure out what to do with domain name variants, strings that
look different but mean the same thing, for some definition of "the same."
They've been trying to deal with them in second level domains for a decade, and are now
working on rules to allow variant top-level domains.
Unfortunately, variants don't work. The problem isn't putting them in the DNS, it's that
once they're in the DNS, they don't work anywhere else.
See more ...
Stable link is https://jl.ly/ICANN/variantno.html
17 Mar 2019
The IETF is in the midst of a vigorous debate about DNS over HTTP or DNS over HTTPS,
abbreviated as DoH. How did we get there, and where do we go from here?
See more ...
Stable link is https://jl.ly/Internet/dohsofar.html
24 Jan 2019
I'm moving some of my financial accounts to Lively, a fintech startup.
We've had the usual chit-chat about details of where the money is coming
from on the messaging system on their web site. It works fine, when
there's something new they send me a note saying to log in and check
my messages.
Except that today they sent me a message through a third party "secure"
messaging service.
To protect the guilty, we'll call it Hubri.
See more ...
Stable link is https://jl.ly/Internet/sosecret.html
|
Topics
My other sites
Who is this guy?
Airline ticket info
Taughannock Networks
Other blogs
CAUCE It turns out you don’t need a license to hunt for spam. 173 days ago
A keen grasp of the obvious Italian Apple Cake 731 days ago
Related sites
Coalition Against Unsolicited Commercial E-mail
Network Abuse Clearinghouse
My
Mastodon feed
|