Blogs

Zoom Cryptography and Authentication Problems

In my last blog post about Zoom, I noted that the company says "that critics have misunderstood how they do encryption." New research from Citizen Lab show that not only were the critics correct, Zoom's design shows that they're completely ignorant about encryption. When companies roll their own crypto, I expect it to have flaws. I don't expect those flaws to be errors I'd find unacceptable in an introductory undergraduate class, but that's what happened here. more

Data Center Operators Are Essential Critical Infrastructure Workers Amid COVID-19 Pandemic

The March 19, 2020, guidance from the U.S. Department of Homeland Security's Cybersecurity and Infrastructure Security Agency (CISA) declared what global citizens appreciate more each day as the COVID-19 pandemic crisis unfolds: "Functioning critical infrastructure is imperative during the response to the COVID-19 emergency for both public health and safety as well as community well-being." more

Spring Clean Your House of Domains, DNS and Digital Certificates

At the start of the year, many responsible for managing domain name portfolios may be considering spring cleaning! Traditionally, such a task consists of a review to check that all domains in the portfolio serve a purpose either from a commercial or defensive perspective. The aim is to ensure budget isn't wasted on domains of little to no value. It's fair to say that for many organizations, this is a difficult process - almost as feared as actually spring cleaning our own homes. more

Zoom Security: The Good, the Bad, and the Business Model

Zoom - one of the hottest companies on the planet right now, as businesses, schools, and individuals switch to various forms of teleconferencing due to the pandemic - has come in for much criticism due to assorted security and privacy flaws. Some of the problems are real but easily fixable, some are due to a mismatch between what Zoom was intended for and how it's being used now - and some are worrisome. more

Ten Stopgap Tips for Privacy and Security Risk Management in a Pandemic

As businesses adjust to the "new normal" in the ongoing COVID-19 pandemic, it is important to quickly take stock of where your organization stands on privacy and security risk. Even in these unusual circumstances, organizations of all sizes and sophistication continue to be expected to act with reasonable care and comply with their public commitments and regulatory obligations. Enterprises may be finding different or better ways to operate, collaborate, and service customers. more

Testing, Testing, Testing for a More Secure (Internet) World

Reading up on COVID-19 and Zoom/Boris Johnson outcry yesterday, an analogy struck me between the two: the lack of testing. In both cases, to truly know how safe and secure we are, testing needs to be stepped up considerably. This post focuses on cybersecurity. Over the past days and weeks, more and more organisations have switched to digital products and services to sustain working from home, to keep productivity up and to be connected. more

At the Crossroads: The State of Domain Registration Data Services

The Internet's users rely on domain name registration information for vital purposes, including providing security, problem-solving, and legal and social accountability. The data is so important that users perform more than two billion WHOIS queries every day. ICANN has instituted new data policies over the last two years, and is also directing a migration to a new technical protocol, RDAP, that will replace WHOIS access in the near future. So at this critical juncture, how is it all going? more

Will COVID-19 Traffic Kill the Internet?

This is the question being asked all across the industry as the volume of data traffic has leaped upward due to students and employees working from their homes. We got our first glimpse of the impact of the crisis when Verizon announced a week into the crisis that they were seeing a 22% increase in data traffic in their network. More recently, AT&T announced a 27% increase in network traffic. more

Dear U.S.A. – Observations on the Cyber Solarium Commission Report

I am writing to you as someone who is not your citizen, (although I had the fortune to wed the most beautiful of your daughters), to share my thoughts about the recent US Government Cyber Solarium Commission report. U.S.A. We owe you one! Without you and your citizens there would be no free Internet as we know it. Thank You! Your constitution is our inspiration. We, the global digital citizenship want to be "the people", in order to "secure the Blessings of Liberty to ourselves and our Posterity..." more

OneWeb Is Bankrupt – Who Will Buy Their Assets?

OneWeb has filed for Chapter 11 bankruptcy. OneWeb CEO Adrian Steckel stated that they were "close to obtaining financing" but failed as a "consequence of the economic impact of the COVID-19 crisis." That is plausible, but they were also far behind SpaceX Starlink in launch cost and capacity. (SpaceX, remains open as an essential industry working on defense contracts, but two employees have tested positive for COVID-19) and financial analyst Tim Farrar said SpaceX faced a "near-term cash problem" even before the pandemic). more

Cybersquatting and Reverse Domain Name Hijacking: UDRP to ACPA

Trademark owners in the U.S. have a choice in suing for alleged cybersquatting: either the Uniform Domain Name Dispute Resolution Policy (UDRP) or the Anticybersquatting Consumer Protection Act (ACPA). Of the two, the UDRP is far and away the forum of choice for a very good reason: it is speedy, efficient, and inexpensive. Complaint to award can be concluded in less than 45 days. more

Malware Detection Provider Gets Important Victory Allowing It to Flag Unwanted Driver Installer

Despite a recent Ninth Circuit decision denying immunity to malware detection software for targeting competitor's software, court holds that Section 230 protected Malwarebytes from liability for designating software driver program as potentially unwanted program. Plaintiff provided software that works in real-time in the background of the operating system to optimize processing and locate and install missing and outdated software drivers. more

Using Bigger Bandwidth Applications

The recent Cisco Annual Internet Report for 2018–2023 had one chart that I found intriguing. The purpose of Cisco's report is to look at the future of broadband usage, and the report included a chart showing the amount of bandwidth needed for various web functions. To me, this list was reminiscent of the list that the FCC made in 2015 when they set the definition of broadband at 25/3 Mbps -- except that all of the items on this list require more bandwidth than the functions the FCC foresaw just five years ago. more

COVID-19: Business and Brand Protection Response

With the COVID-19 health crisis evolving so quickly, it's hard to predict the extent of the long-term impact on business and the economy. While every business sector is facing different considerations, it's safe to say all are handling challenges from supply chain interruptions, rapid shifts to remote work, and massive changes in consumer spending and communication habits. more

Societies Running on Quicksand: A Critical Look at Today's Networks

The last few weeks have reinforced the importance of modern communication networks to societies. Health care providers, schools, governments, and businesses all rely on networks that enable us to connect and collaborate remotely. Had we encountered a similar pandemic ten years ago, we would not have been able to continue our activities on the level that is possible today. more

News Briefs

Vint Cerf Has Tested Positive for Coronavirus

FCC Grants ISPs Temporary Access to Wireless Spectrum to Help Handle Demand During Pandemic

Over 360 Security Experts Around the World From Group to Combat COVID-19 Hackers, Protect Hospitals

BT Removes Broadband Caps, Offers Unlimited Data to Customers Amid COVID-19 Crisis

EU Commissioner Calls on Streaming Services to Switch Streaming Videos From HD to Standard Mode

Public Interest Registry, ICANN Agree to Extend Deadline on Review of Proposed Acquisition of .ORG

U.S. Health Agency Suffers From Cyberattack, COVID-19 Disruptions by Foreign Actors Suspected

Broadband Companies Take Connectivity Pledge Amid COVID-19 Crisis

Over 50 Domain Operators in China Ask ICANN for Immediate Fee Waivers Due to Impact from Coronavirus

FCC Proposes Over $200 Million in Fines Against Four Largest Wireless Carriers

Firefox Starts the Roll Out of DNS Over HTTPS (DoH) by Default for US-Based Users

ICANN to Hold First-Ever Remote Public Meeting

Israel's Entire Voter Registry Exposed, the Massive Data Leak Involves 6.5 Million Voters

American University Washington College of Law to Hold Open Discussion on the .ORG Sale Controversy

Highly Sensitive Domain Corp.com Up for Sale by Original Owner, Calls It a 'Chemical Waste Dump'

Coronavirus Exposes China's Deep Surveillance State

California Attorney General Asks ICANN for Detailed Information On the .ORG Sale

FCC Gives Google, Sony and Others Full Authorization for Commercial Deployment of 3.5 GHz Spectrum

CENTR Reports Decreased Growth in European ccTLDs

Red Sea Region Suffers From Multi-Day Internet Outage Following an Undersea Cable Cut

Most Viewed

Most Commented

Industry Updates

Participants – Random Selection

There are no participants in this section yet.