The document discusses Marco d'Itri's thoughts on the transition to IPv6. It describes the transition as ongoing, with no flag days, as IPv6 adoption grows. It notes that while IPv4 NAT is easy for access networks, it is difficult for servers. Many large content providers already use IPv6. The transition involves steps before IPv4 addresses ran out, the current transition period, and after the transition when IPv4 will be optional. IPv6 adoption is growing in several countries like Belgium and the US. Eventually IPv4-only islands will need to make themselves accessible over IPv6. The document provides advice on starting an IPv6 transition and offers a simple IPv6 addressing plan.
18 September 2017 - ION Malta
DNSSEC helps prevent attackers from subverting and modifying DNS messages and sending users to wrong (and potentially malicious) sites. So what needs to be done for DNSSEC to be deployed on a large scale? We’ll discuss the reasons for deploying DNSSEC, examine some of the challenges operators have faced, and address those challenges and move deployment forward.
18 September 2017 - ION Malta
What’s happening at the Internet Engineering Task Force (IETF)? What RFCs and Internet-Drafts are in progress related to IPv6, DNSSEC, Routing Security/Resiliency, and other key topics? We’ll give an overview of the ongoing discussions in several working groups and discuss the outcomes of recent Birds-of-a-Feather (BoF) sessions, and provide a preview of what to expect in future discussions.
18 September 2017 - Rick Lamb, ICANN, on DANE:
If you connect to a “secure” server using TLS/SSL (such as a web server, email server or xmpp server), how do you know you are using the correct certificate? With DNSSEC now being deployed, “DANE” (“DNS-Based Authentication of Named Entities”) has emerged allowing you to securely specify exactly which TLS/SSL certificate an application should use to connect to your site. DANE has great potential to make the Internet much more secure by marrying the strong integrity protection of DNSSEC with the confidentiality of SSL/TLS certificates. In this session, we will explain how DANE works and how you can use it to secure your websites, email, XMPP, VoIP, and other web services.
Collaboration and shared responsibility are two pillars supporting the Internet’s growth and success. While the global routing system has worked well, it has significant security challenges that we must address. In this panel, security experts will discuss how we can create a culture of collective responsibility and improve the global routing system, including an introduction to the “Mutually Agreed Norms for Routing Security” (MANRS).
18 September 2017 - At ION Malta, Adam Peake discusses the IANA transition:
The IANA transition was successfully completed in October 2016 creating strengthened relationships between the IETF (Internet protocols and standards), Regional Internet Registries RIRs (IP addresses), and ccTLD and gTLD operators and TLD community and ICANN. A new organisation, Public Technical Identifiers (PTI), an affiliate of ICANN, is now responsible for performing the IANA functions and delivering the IANA Services on behalf of ICANN. The session will discuss these new arrangements and how they have enhanced ICANN’s accountability and transparency to the global Internet community. The session will also describe how ICANN is preparing for the Root KSK Rollover.
18 September 2017 - ION Malta
DNSSEC helps prevent attackers from subverting and modifying DNS messages and sending users to wrong (and potentially malicious) sites. So what needs to be done for DNSSEC to be deployed on a large scale? We’ll discuss the reasons for deploying DNSSEC, examine some of the challenges operators have faced, and address those challenges and move deployment forward.
18 September 2017 - ION Malta
What’s happening at the Internet Engineering Task Force (IETF)? What RFCs and Internet-Drafts are in progress related to IPv6, DNSSEC, Routing Security/Resiliency, and other key topics? We’ll give an overview of the ongoing discussions in several working groups and discuss the outcomes of recent Birds-of-a-Feather (BoF) sessions, and provide a preview of what to expect in future discussions.
18 September 2017 - Rick Lamb, ICANN, on DANE:
If you connect to a “secure” server using TLS/SSL (such as a web server, email server or xmpp server), how do you know you are using the correct certificate? With DNSSEC now being deployed, “DANE” (“DNS-Based Authentication of Named Entities”) has emerged allowing you to securely specify exactly which TLS/SSL certificate an application should use to connect to your site. DANE has great potential to make the Internet much more secure by marrying the strong integrity protection of DNSSEC with the confidentiality of SSL/TLS certificates. In this session, we will explain how DANE works and how you can use it to secure your websites, email, XMPP, VoIP, and other web services.
Collaboration and shared responsibility are two pillars supporting the Internet’s growth and success. While the global routing system has worked well, it has significant security challenges that we must address. In this panel, security experts will discuss how we can create a culture of collective responsibility and improve the global routing system, including an introduction to the “Mutually Agreed Norms for Routing Security” (MANRS).
18 September 2017 - At ION Malta, Adam Peake discusses the IANA transition:
The IANA transition was successfully completed in October 2016 creating strengthened relationships between the IETF (Internet protocols and standards), Regional Internet Registries RIRs (IP addresses), and ccTLD and gTLD operators and TLD community and ICANN. A new organisation, Public Technical Identifiers (PTI), an affiliate of ICANN, is now responsible for performing the IANA functions and delivering the IANA Services on behalf of ICANN. The session will discuss these new arrangements and how they have enhanced ICANN’s accountability and transparency to the global Internet community. The session will also describe how ICANN is preparing for the Root KSK Rollover.
23 November 2017 - At ION Belgrade, Kevin Meynell discusses what happened at the recent IETF meeting, and how to get involved in the open Internet standards community.
ION Islamabad, 25 January 2017
By Pubudu Jayasinghe, APNIC & Aftab Siddiqui, Internet Society
Today, we can say that IPv6 is already happening all around the world. It’s interesting to see the main reasons that made it happen, how it’s happening, and to make the audience think about their deployment status and strategy. Statistics from different sources are showed, including data from RIPE NCC measurements.
Chair: Simon Cooper, trust and identity services group manager, Jisc.
How to solve the top five network challenges for higher education in 2017
Speaker: Martin Wellsted, regional manager northern territory, Efficient IP.
This session will focus on the new network challenges schools and universities face as competition for enrollment and reputation increases, budgets tighten, and the onslaught of Internet of Things and BYOD continue.
Practical solutions to security, IP address management, and process automation problems will be discussed.
APrIGF 2015: Security and the Internet of ThingsAPNIC
Adli Wahid addresses the current cybersecurity issues seen with the growth of the Internet of Things at the 2015 Asia Pacific Regional Internet Governance Forum (APrIGF) in Macao.
The DDoS challenge of today has become a revenue generating opportunity for Converged Service Providers, Mobile Carriers as well as Wireline and Cable Carriers. While hardened centralized DDoS scrubbing operations are increasingly inflexible and becoming obsolete, localized DDoS mitigation operations are becoming the solution of choice for many. A new approach to DDoS protection, visibility and scalability is enabling Providers with new opportunities for revenue generating services--at a fraction of the cost of traditional DDoS defense solutions. This slide deck explains how the DDoS challenge has become an opportunity for the modern day Service Provider.
APNIC Training Delivery Manager for SEA and SA, Shane Hermoso, presents on the importance of peering and IXPs at the Women in Networking series on 17 November 2021
IPv4 vs. IPv6: How we got here
Conclusion
With IPv4 address pools rapidly disappearing and a federal mandate for government agency devices to begin shifting to IPv6-only and telecom 5G with IoT and edge devices, it’s clear that IPv6 is the future. Transitioning from IPv4 to IPv6 can be a challenge, so organizations may be interested to learn that switching to IPv6 has the potential to improve performance. In our testing without the Broadcom Offload feature, IPv6 delivered comparable performance to IPv4 on write workloads and better performance on read workloads while also reducing CPU utilization. When we enabled the Broadcom Offload feature on both IPv6 and IPv4, read workload performance increased dramatically and CPU utilization on both read and write workloads improved. Whether your organization is transitioning to IPv6 right away or choosing to delay the shift, this feature can boost performance on read workloads, which can improve the experience for users, reduce backup windows, and allow databases to load more quickly.
23 November 2017 - At ION Belgrade, Kevin Meynell discusses what happened at the recent IETF meeting, and how to get involved in the open Internet standards community.
ION Islamabad, 25 January 2017
By Pubudu Jayasinghe, APNIC & Aftab Siddiqui, Internet Society
Today, we can say that IPv6 is already happening all around the world. It’s interesting to see the main reasons that made it happen, how it’s happening, and to make the audience think about their deployment status and strategy. Statistics from different sources are showed, including data from RIPE NCC measurements.
Chair: Simon Cooper, trust and identity services group manager, Jisc.
How to solve the top five network challenges for higher education in 2017
Speaker: Martin Wellsted, regional manager northern territory, Efficient IP.
This session will focus on the new network challenges schools and universities face as competition for enrollment and reputation increases, budgets tighten, and the onslaught of Internet of Things and BYOD continue.
Practical solutions to security, IP address management, and process automation problems will be discussed.
APrIGF 2015: Security and the Internet of ThingsAPNIC
Adli Wahid addresses the current cybersecurity issues seen with the growth of the Internet of Things at the 2015 Asia Pacific Regional Internet Governance Forum (APrIGF) in Macao.
The DDoS challenge of today has become a revenue generating opportunity for Converged Service Providers, Mobile Carriers as well as Wireline and Cable Carriers. While hardened centralized DDoS scrubbing operations are increasingly inflexible and becoming obsolete, localized DDoS mitigation operations are becoming the solution of choice for many. A new approach to DDoS protection, visibility and scalability is enabling Providers with new opportunities for revenue generating services--at a fraction of the cost of traditional DDoS defense solutions. This slide deck explains how the DDoS challenge has become an opportunity for the modern day Service Provider.
APNIC Training Delivery Manager for SEA and SA, Shane Hermoso, presents on the importance of peering and IXPs at the Women in Networking series on 17 November 2021
IPv4 vs. IPv6: How we got here
Conclusion
With IPv4 address pools rapidly disappearing and a federal mandate for government agency devices to begin shifting to IPv6-only and telecom 5G with IoT and edge devices, it’s clear that IPv6 is the future. Transitioning from IPv4 to IPv6 can be a challenge, so organizations may be interested to learn that switching to IPv6 has the potential to improve performance. In our testing without the Broadcom Offload feature, IPv6 delivered comparable performance to IPv4 on write workloads and better performance on read workloads while also reducing CPU utilization. When we enabled the Broadcom Offload feature on both IPv6 and IPv4, read workload performance increased dramatically and CPU utilization on both read and write workloads improved. Whether your organization is transitioning to IPv6 right away or choosing to delay the shift, this feature can boost performance on read workloads, which can improve the experience for users, reduce backup windows, and allow databases to load more quickly.
September 2017 - Aftab Siddiqui presents on the Mutually Agreed Norms for Routing Security (MANRS), and how we can work together to improve the security and resiliency of the Internet's routing system.
7 September 2017 - At ION Conference Durban, South Africa, Kevin Meynell discusses what's happening at the IETF in the world of Internet standards, and how you can get involved in the process.
7 September 2017 - At ION Conference in Durban, South Africa, Kevin Meynell introduces the MANRS initiative on routing security and begins a panel on the topic.
7 September 2017 - At ION Conference Durban, South Africa, Andrew Alston on how Liquid Telecom deployed IPv6 and how other organizations can do the same.
3 July 2017 - At ION Costa Rica, Kevin Meynell begins a panel on Routing Security & MANRS by explaining the Mutually Agreed Norms for Routing Security (MANRS) and the basic concepts of routing security.
3 July 2017 - At ION Costa Rica, Kevin Meynell discusses work underway at the IETF on IPv6, DNSSEC, Routing, and more, and how anyone can get involved in the IETF process.
3 July 2017 - At ION Costa Rica, Megan Kruse presents final thoughts and invites participants to get involved with the Internet Society and the Deploy360 program.
Accelerate your Kubernetes clusters with Varnish CachingThijs Feryn
A presentation about the usage and availability of Varnish on Kubernetes. This talk explores the capabilities of Varnish caching and shows how to use the Varnish Helm chart to deploy it to Kubernetes.
This presentation was delivered at K8SUG Singapore. See https://feryn.eu/presentations/accelerate-your-kubernetes-clusters-with-varnish-caching-k8sug-singapore-28-2024 for more details.
DevOps and Testing slides at DASA ConnectKari Kakkonen
My and Rik Marselis slides at 30.5.2024 DASA Connect conference. We discuss about what is testing, then what is agile testing and finally what is Testing in DevOps. Finally we had lovely workshop with the participants trying to find out different ways to think about quality and testing in different parts of the DevOps infinity loop.
State of ICS and IoT Cyber Threat Landscape Report 2024 previewPrayukth K V
The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development.
The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers:
State of global ICS asset and network exposure
Sectoral targets and attacks as well as the cost of ransom
Global APT activity, AI usage, actor and tactic profiles, and implications
Rise in volumes of AI-powered cyberattacks
Major cyber events in 2024
Malware and malicious payload trends
Cyberattack types and targets
Vulnerability exploit attempts on CVEs
Attacks on counties – USA
Expansion of bot farms – how, where, and why
In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East
Why are attacks on smart factories rising?
Cyber risk predictions
Axis of attacks – Europe
Systemic attacks in the Middle East
Download the full report from here:
https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/
UiPath Test Automation using UiPath Test Suite series, part 4DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 4. In this session, we will cover Test Manager overview along with SAP heatmap.
The UiPath Test Manager overview with SAP heatmap webinar offers a concise yet comprehensive exploration of the role of a Test Manager within SAP environments, coupled with the utilization of heatmaps for effective testing strategies.
Participants will gain insights into the responsibilities, challenges, and best practices associated with test management in SAP projects. Additionally, the webinar delves into the significance of heatmaps as a visual aid for identifying testing priorities, areas of risk, and resource allocation within SAP landscapes. Through this session, attendees can expect to enhance their understanding of test management principles while learning practical approaches to optimize testing processes in SAP environments using heatmap visualization techniques
What will you get from this session?
1. Insights into SAP testing best practices
2. Heatmap utilization for testing
3. Optimization of testing processes
4. Demo
Topics covered:
Execution from the test manager
Orchestrator execution result
Defect reporting
SAP heatmap example with demo
Speaker:
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
Connector Corner: Automate dynamic content and events by pushing a buttonDianaGray10
Here is something new! In our next Connector Corner webinar, we will demonstrate how you can use a single workflow to:
Create a campaign using Mailchimp with merge tags/fields
Send an interactive Slack channel message (using buttons)
Have the message received by managers and peers along with a test email for review
But there’s more:
In a second workflow supporting the same use case, you’ll see:
Your campaign sent to target colleagues for approval
If the “Approve” button is clicked, a Jira/Zendesk ticket is created for the marketing design team
But—if the “Reject” button is pushed, colleagues will be alerted via Slack message
Join us to learn more about this new, human-in-the-loop capability, brought to you by Integration Service connectors.
And...
Speakers:
Akshay Agnihotri, Product Manager
Charlie Greenberg, Host
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...Jeffrey Haguewood
Sidekick Solutions uses Bonterra Impact Management (fka Social Solutions Apricot) and automation solutions to integrate data for business workflows.
We believe integration and automation are essential to user experience and the promise of efficient work through technology. Automation is the critical ingredient to realizing that full vision. We develop integration products and services for Bonterra Case Management software to support the deployment of automations for a variety of use cases.
This video focuses on the notifications, alerts, and approval requests using Slack for Bonterra Impact Management. The solutions covered in this webinar can also be deployed for Microsoft Teams.
Interested in deploying notification automations for Bonterra Impact Management? Contact us at sales@sidekicksolutionsllc.com to discuss next steps.
PHP Frameworks: I want to break free (IPC Berlin 2024)Ralf Eggert
In this presentation, we examine the challenges and limitations of relying too heavily on PHP frameworks in web development. We discuss the history of PHP and its frameworks to understand how this dependence has evolved. The focus will be on providing concrete tips and strategies to reduce reliance on these frameworks, based on real-world examples and practical considerations. The goal is to equip developers with the skills and knowledge to create more flexible and future-proof web applications. We'll explore the importance of maintaining autonomy in a rapidly changing tech landscape and how to make informed decisions in PHP development.
This talk is aimed at encouraging a more independent approach to using PHP frameworks, moving towards a more flexible and future-proof approach to PHP development.
JMeter webinar - integration with InfluxDB and GrafanaRTTS
Watch this recorded webinar about real-time monitoring of application performance. See how to integrate Apache JMeter, the open-source leader in performance testing, with InfluxDB, the open-source time-series database, and Grafana, the open-source analytics and visualization application.
In this webinar, we will review the benefits of leveraging InfluxDB and Grafana when executing load tests and demonstrate how these tools are used to visualize performance metrics.
Length: 30 minutes
Session Overview
-------------------------------------------
During this webinar, we will cover the following topics while demonstrating the integrations of JMeter, InfluxDB and Grafana:
- What out-of-the-box solutions are available for real-time monitoring JMeter tests?
- What are the benefits of integrating InfluxDB and Grafana into the load testing stack?
- Which features are provided by Grafana?
- Demonstration of InfluxDB and Grafana using a practice web application
To view the webinar recording, go to:
https://www.rttsweb.com/jmeter-integration-webinar
Epistemic Interaction - tuning interfaces to provide information for AI supportAlan Dix
Paper presented at SYNERGY workshop at AVI 2024, Genoa, Italy. 3rd June 2024
https://alandix.com/academic/papers/synergy2024-epistemic/
As machine learning integrates deeper into human-computer interactions, the concept of epistemic interaction emerges, aiming to refine these interactions to enhance system adaptability. This approach encourages minor, intentional adjustments in user behaviour to enrich the data available for system learning. This paper introduces epistemic interaction within the context of human-system communication, illustrating how deliberate interaction design can improve system understanding and adaptation. Through concrete examples, we demonstrate the potential of epistemic interaction to significantly advance human-computer interaction by leveraging intuitive human communication strategies to inform system design and functionality, offering a novel pathway for enriching user-system engagements.
Let's dive deeper into the world of ODC! Ricardo Alves (OutSystems) will join us to tell all about the new Data Fabric. After that, Sezen de Bruijn (OutSystems) will get into the details on how to best design a sturdy architecture within ODC.
UiPath Test Automation using UiPath Test Suite series, part 3DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 3. In this session, we will cover desktop automation along with UI automation.
Topics covered:
UI automation Introduction,
UI automation Sample
Desktop automation flow
Pradeep Chinnala, Senior Consultant Automation Developer @WonderBotz and UiPath MVP
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...
ION Malta - Seeweb Thoughts on IPv6 Transition
1. My thoughts on the transition to IPv6
How it is happening and how to join it
Marco d’Itri
<md@seeweb.it>
@rfc1036
Seeweb s.r.l.
ION Malta 2017 - 18 september 2017
1/13
2. 2/13
Marco, an IPv6 early adopter
IPv6 user since 2000.
Enabled IPv6 for 130000 web sites in 2007.
Manages the network of a cloud infrastructure provider.
My thoughts on the transition to IPv6 Marco d’Itri
3. 3/13
A few assumptions
Asymmetry
Using v4 NAT or IPv6 transition tecnologies is easy enough for access
networks, but almost impossible for servers.
There is plenty of content
Google (Youtube), Facebook, Netflix, Apple and others are
IPv6-enabled.
Over 50% of the traffic of typical access networks can use IPv6.
Inevitability
General adoption of IPv6 will happen, so you may as well join us
before it will be too late for your business.
My thoughts on the transition to IPv6 Marco d’Itri
4. 4/13
Transition steps
Before the transition (when we still had new IPv4 addresses).
The transition (now).
After the transition (when IPv4 connectivity will be optional).
There will be no flag days, and the transition is in progress!
My thoughts on the transition to IPv6 Marco d’Itri
5. 5/13
Before the transition
When we still had new IPv4 addresses
Anybody could get enough IPv4 addresses, just by asking nicely.
Some had IPv6 connectivity, but it was rarely actually needed.
Everybody had to have IPv4 connectivity.
In the RIPE region this stage ended on 14 September 2012.
My thoughts on the transition to IPv6 Marco d’Itri
6. 6/13
The transition
Now
Each LIR can have a single /22 from RIPE: if they need more IPv4
addresses then they must buy them on the market.
Adoption of IPv6 is growing.
Everybody still needs to reach the IPv4 Internet, but some can do
this only by using IPv6 transition tecnologies.
The large content providers use IPv6, the small ones often do not and
still do not have strong incentives to deploy it.
Cloud infrastructure providers are suffering.
My thoughts on the transition to IPv6 Marco d’Itri
7. 7/13
The transition (2)
How long will it last?
Years? Decades?
This depends on how much expensive it will be for ISPs to keep
buying new IPv4 addresses and manage gateways.
This depends on how much trouble gateways will cause to
customers.
Now adoption must be driven by the access networks.
My thoughts on the transition to IPv6 Marco d’Itri
8. 8/13
IPv6 adoption in the leading countries
How much is adoption growing, actually?
IPv6 enabled users by country
Belgium: 48.80%
USA: 33.73%
Greece: 33.18%
Germany: 30.11%
Switzerland: 27.31%
Luxembourg: 23.04%
India: 22.74%
Brazil: 21.16%
(Source: Google.)
My thoughts on the transition to IPv6 Marco d’Itri
9. 9/13
After the transition
The future
There will still be IPv4-only islands, but it will be up to them to
make themselves accessible from the IPv6 Internet.
v4-v4 traffic will be encapsulated in VPNs.
IPv6 connectivity will be enough: gradually the transition
technologies will be retired.
At some point there will be no incentives to keep maintaining the IPv6
to IPv4 gateways.
My thoughts on the transition to IPv6 Marco d’Itri
10. 10/13
How to start your transition
From the border, one thing at a time
Start with (parts of) your network core.
At least one IPv6 transit, then add peerings.
DNS servers.
Mail servers (but beware of SPF/DKIM requirements).
Web servers.
If you are a service provider then check your provisioning systems.
If you are an access network then this may be slightly more complex.
My thoughts on the transition to IPv6 Marco d’Itri
11. 11/13
A simple IPv6 addressing plan
This will work well as-is for small to medium networks.
From your /29:
Allocate a /32 (of 23 = 8) to each geographic location where you
will have independent transit.
Assign a /48 (of 8 · 216 = 524288) to colocation or business
access customer.
Assign a /56 (of 8 · 224 = 128M) to residential access customer.
Assign a /64 when subnetting is technically impossible (e.g.
dedicated servers, mobile phones...).
Bigger networks can get more addresses and should probably
aggregate internally, but there is no excuse to assign small networks to
customers.
My thoughts on the transition to IPv6 Marco d’Itri
12. 12/13
A simple IPv6 addressing plan (2)
Try to encode useful information in your network and host addresses.
E.g. use a /124 for PtP networks
The interface on each side can be named ::a and ::b.
Nibble-aligned for easy management of rDNS.
Leaves many bits available for aggregation and encoding
information.
You may encode information like the POP, router, interface, etc... This
makes addresses self-documenting and easy to assign automatically.
My thoughts on the transition to IPv6 Marco d’Itri