Shows
PINGGoing Dark: measurement when the Internet hides the detailIn the final podcast for 2025, APNIC Chief Scientist Geoff Huston discusses the problem of independent measurement in an Internet which is increasingly “going dark”.Communications has always included a risk of snooping, and a matching component of work to enhance privacy, from the simplest ciphers used in ancient times, techniques of hiding and discovering messages, attempts to prevent and detect intrusion of the mail, to adoption of telegraph codes, the cutting of telegraph wires in wartime (to force messages into radio where they could be listened to) and the development of modern encryption algorithms typica...
2025-12-1054 minPINGAdjusting for data source bias in Internet MeasurementsThis time PING features Emile Aben from the RIPE NCC R&D Department. Emile is a Senior Research Engineer, and for over a decade and a half has been looking at Internet Measurement at RIPE in the Atlas system, and in the RIPE RIS BGP data collection.Emile and a collaborator Romain Fontugne from IIJ Labs in Tokyo have been exploring a model of the influence and effect on global connectivity in BGP for different AS, based on the impact they have on other AS’s transit choices. They call this “AS Hegemony” and Emile has...
2025-11-2638 minPINGthe Realpolitik of undersea cablesIn this episode of PING, APNIC Chief Scientist Geoff Huston explores the complex landscape of undersea cables. They have always had a component of strategic interest, communications and snooping on communications has been a constant since writing was invented, and the act of connecting two independent nation states by a telegraph wire invokes questions of ownership and jurisdiction right from the start.After the initial physics of running a long distance wire to make an electric circuit was worked out, telegraph services became a vital part of a states economic and information gathering processes. Th...
2025-11-1252 minPINGGreasing the wheelsIn this episode of PING, Shumon Huque from Salesforce discusses how protocols with extensible flag fields can benefit from regular testing of the values possible in the packet structure. This technique is known as "greasing" and has a strong metaphorical meaning of "greasing the wheels" to ensure future uses aren't blocked by mistaken beliefs about the possible values.Intermediate systems (so-called "middleboxes") have to try and determine "risky" packetflows, and one of the mechanisms they use is to consider unexpected values in the known packetflows as possibly dangerous. This is an over-simplistic approach, and...
2025-10-2936 minPINGGeolocation and StarlinkIn this episode of PING, APNIC Chief Scientist Geoff Huston discusses a problem which cropped up recently with the location tagging of IP addresses seen in the APNIC Labs measurement system. For compiling national/economic and regional statistics, and to understand the experimental distribution into each market segment, Labs relies on the freely available geolocation databases from maxmind.com, and IPinfo.io -which in turn are constructed from a variety of sources such as BGP data, the RIR compiled resource distribution reports, Whois and RDAP declarations and the self-asserted RFC8805 format resource distribution statements that ISPs self publish....
2025-10-1550 minPINGMeasuring RSSAC047 ConformanceRSSAC047 - a document from the Root Server System Advisory Committee proposed a set of metrics to measure DNS root servers, and the DNS root server system as a whole. the document was approved in 2020, and ICANN worked on an implementation of the metrics as code, and a deployment into 20 points of measurement distributed worldwide.ISC and Verisign, two of the root server operators proposed a review of this measurement and retained SIDN Labs (who are part of the Dutch body operating .NL as a CountryCode Top-Level Domain or ccTLD) to look into how...
2025-10-0131 minPINGFaster Network design with simpler hardware: TCP Flow control and ECN.In this episode of PING, APNIC Chief Scientist Geoff Huston shares a story from the recent AusNOG in Melbourne and connects it to measurement work at APNIC Labs, exploring how modern IP flow control manages ‘fair shares’ of the network.At AusNOG 2025, Geoff attended a talk by Lincoln Dale of Amazon AWS titled “No Packet Left Behind: AWS’s Approach to Building and Operating Reliable Networks”. The presentation examined how AWS scales its data centre networks, highlighting massive investments in high-speed routers and switches to support both global internet services and the vast flows of traffic b...
2025-09-1752 minPINGWhats going on in bad traffic in 2025In this episode of PING, Adli Wahid, APNIC's Security Specialist discusses the APNIC honeypot network, an investment in over 400 collectors distributed throughout the Asia Pacific, collecting data on who is trying to break into systems online and use them for malware, destributed denial of service, and command-and-control systems in the bad traffic economy.Adli discusses how APNIC Members can get access to the results of honeynet traffic capture coming from their network address ranges, and originated from their AS in BGP using the DASH system. and explores some work planned for the APNIC Honeynet s...
2025-09-0327 min
Wenbin Fang's Podcast PlaylistThe Inevitability of Centrality Podcast: PING (LS 26 · TOP 10% what is this?)Episode: The Inevitability of CentralityPub date: 2025-08-20Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationIn this episode of PING, APNIC’s Chief Scientist, Geoff Huston, discusses the economic inevitability of centrality, in the modern Internet. Despite our best intentions, and a lot of long standing belief amongst the IETF technologists, no amount of open standards and end-to-end protocol design prevents large players at all levels of the network (from the physical infrastructure right up to the applications and th...
2025-08-201h 00PINGThe Inevitability of CentralityIn this episode of PING, APNIC’s Chief Scientist, Geoff Huston, discusses the economic inevitability of centrality, in the modern Internet. Despite our best intentions, and a lot of long standing belief amongst the IETF technologists, no amount of open standards and end-to-end protocol design prevents large players at all levels of the network (from the physical infrastructure right up to the applications and the data centres which house them) from seeking to acquire smaller competitors, and avoid sharing the space with anyone else.Some of this is a consequence of the drive for eff...
2025-08-201h 00PINGRob Kisteleki on RIPE AtlasIn this episode of PING, Robert Kisteleki from the RIPE NCC discusses the RIPE Atlas system -a network of over 13,000 measurement devices deployed worldwide in homes, exchange points, stub and transit AS, densely connected regions and sparse island states.Atlas began with a vision of the world at night -a powerful metaphor for where people are, and where technology reaches. Could a measurement system achieve sufficient density to "light up the internet" in a similar manner? Could network measurement be "democratized" to include internet citizens at large?From it's...
2025-08-0640 minPINGA Day in the Life of BGPIn this episode of PING, APNIC’s Chief Scientist, Geoff Huston, discusses "a day in the life of BGP" -Not an extraordinary day, not a special day, just the 8th of May.What happens inside the BGP system, from the point of view of AS4608, one ordinary BGP speaker on the edge of the network? What kinds of things are seen, and why are they seen?Geoff has been measuring BGP for almost it's entire life as the internet routing protocol, but this time looks at the dynamics at a m...
2025-07-231h 01PINGKentik's view of Secure BGP in 2025In this episode of PING, Doug Madory from Kentik discusses his rundown of the state of play in secure BGP across 2024 and 2025. Kentik has it’s own internal measurements of BGP behaviour and flow data across the surface of the internet, which combined with the Oregon University curated routeviews archive means Doug can analyse both the publicly visible state of BGP from archives, and Kentik’s own view of the dynamics of BGP change, along side other systems like the worldwide RPKI model, and the Internet Routing Registry systems.Doug has written about this before...
2025-07-0929 minPINGDownloading the rootIn this episode of PING, APNIC’s Chief Scientist, Geoff Huston, discusses the root zone of the DNS, and some emerging concerns in how much it costs to service query load at the root.In the absence of cacheing, all queries in the DNS (except ones the DNS system you ask is locally authoritative for anyway) have to be sent through the root of the DNS, to find the right nameserver to ask for the specific information. Thanks to cacheing, this system doesn't drown in the load of every worldwide query, all the time, goi...
2025-06-2557 minPINGGlobal Cyber Alliance and measuring the bad trafficIn this episode of PING, We’re talking to Leslie Daigle from the Global Cyber Alliance (GCA) again, discussing GCA’s honeynet project. Leslie spoke with PING back in January 2024, and in this episode we re-visit things. Honeynets (or Honey farms) are deliberately weakly protected systems put online, to see what kinds of bad traffic exist out in the global Internet, where they come from and what kinds of attack they are mounting.In the intervening period GCA has continued to develop its honeyfarm, building out it’s own systems images, and can now capture mo...
2025-06-1134 minPINGDELEG: Changing the DNS engine in flight againIn this episode of PING, APNIC’s Chief Scientist, Geoff Huston, revisits changes underway in how the Domain Name System (DNS) delegates authority over a given zone and how resolvers discover the new authoritative sources. We last explored this in March 2024.In DNS, the word ‘domain’ refers to a scope of authority. Within a domain, everything is governed by its delegated authority. While that authority may only directly manage its immediate subdomains (children), its control implicitly extends to all subordinate levels (grandchildren and beyond). If a parent domain withdraws delegation from a child, everything beneath that child...
2025-05-2859 minPINGDFOH,MVP & GILL: New ways of looking at BGPIn this episode of PING, Professor Cristel Pelsser who holds the chair of critical embedded systems at UCLouvain Discusses her work measuring BGP and in particular the system described in the 2024 SIGCOMM “best paper” award winning research: “The Next Generation of BGP Data Collection Platforms”Cristel and her collaborators Thomas Alfroy, Thomas Holterbach, Thomas Krenc and K. C. Claffy have built a system they call GILL, available on the web at https://bgproutes.io This work also features a new service called MVP, to help find the “most valuable vantage point” in the BGP collection system for yo...
2025-05-1437 minPINGThe multiple ways to do multiple pathsIn this episode of PING, APNIC’s Chief Scientist, Geoff Huston, discusses the history and emerging future of how Internet protocols get more than the apparent link bandwidth by using multiple links and multiple paths.Initially, the model was quite simple, capable of handling up to four links of equal cost and delay reasonably well, typically to connect two points together. At the time, the Internet was built on telecommunications services originally designed for voice networks, with cabling laid between exchanges, from exchanges to customers, or across continents. This straightforward technique allowed the Internet to...
2025-04-3045 minPINGPulse Internet Measurement Forum at APRICOT 2025: Part 2Last month, during APRICOT 2025 / APNIC 59, the Internet Society hosted its first Pulse Internet Measurement Forum (PIMF). PIMF brings together people interested in Internet measurement from a wide range of perspectives — from technical details to policy, governance, and social issues. The goal is to create a space for open discussion, uniting both technologists and policy experts.In this second special episode of PING, we continue our break from the usual one-on-one podcast format and present a recap of why the PIMF forum was held, and the last 3 short interviews from the workshop....
2025-04-1640 minPINGDNS Computer says "NO"In this episode of PING, APNIC’s Chief Scientist, Geoff Huston, discusses the surprisingly vexed question of how to say ‘no’ in the DNS. This conversation follows a presentation by Shumon Huque at the recent DNS OARC meeting, who will be on PING in a future episode talking about another aspect of the DNS protocol.You would hope this is a simple, straightforward answer to a question, but as usual with the DNS, there are more complexities under the surface. The DNS must indicate whether the labels in the requested name do not exist, whether t...
2025-04-0244 minPINGPulse Internet Measurement Forum at APRICOT Pt 1At the APRICOT/APNIC59 meeting held in Petaling Jaya in Malaysia last month, The internet society held it's first PIMF meeting. PIMF, or the Pulse Internet Measurement Forum is a gathering of people interested in Internet measurement in the widest possible sense, from technical information all the way to policy, governance and social questions. ISOC is interested in creating a space for the discussion to take place amongst the community, and bring both technologists and policy specialists into the same room.This time on PING, instead of the usual one-on-one format of podcast we've...
2025-03-1936 minPINGNight of the BGP ZombiesIn this episode of PING, APNIC’s Chief Scientist, Geoff Huston explores bgp "Zombies" which are routes which should have been removed, but are still there. They're the living dead of routes. How does this happen?Back in the early 2000s Gert Döring in the RIPE NCC region was collating a state of BGP for IPv6 report, and knew each of the 300 or so IPv6 announcements directly. He understood what should be seen, and what was not being routed. He discovered in this early stage of IPv6 that some routes he knew had been...
2025-03-0558 minPINGRPKi Views: The archive of RPKI stateIn this episode, Job Snijders discusses RPKIViews, his long term project to collect the "views" of RPKI state every day, and maintain an archive of BGP route validation states. The project is named to reflect route views, the long-standing archive of BGP state maintained by the University of Oregon, which has been discussed on PING.Job is based in the Netherlands, and has worked in BGP routing for large international ISPs and content distribution networks as well as being a board member of the RIPE NCC. He is known for his work producing the Op...
2025-02-1949 minPINGHow Many DNS Nameservers is enough?In his first episode of PING for 2025, APNIC’s Chief Scientist, Geoff Huston returns to the Domain Name System (DNS) and explores the many faces of name servers behind domains. Up at the root, (the very top of the namespace, where all top-level domains like .gov or .au or .com are defined to exist) there is a well established principle of 13 root nameservers. Does this mean only 13 hosts worldwide service this space? Nothing could be farther from the truth! literally thousands of hosts act as one of those 13 root server labels, in a highly distributed worldwide mesh known as "any...
2025-02-0559 minPINGRISKY BIZ-nessWelcome back to PING, at the start of 2025. In this episode, Gautam Akiwate, (now with Apple, but at the time of recording with Stanford University) talks about the 2021 Advanced Network Research Prize winning paper, co-authored with Stefan Savage, Geoffrey Voelker and Kimberly Claffy which was titled "Risky BIZness: Risks Derived from Registrar Name Management".The paper explores a situation which emerged inside the supply chain behind DNS name delegation, in the use of an IETF protocol called Extensible Provisioning Protocol or EPP. EPP is implemented in XML over the SOAP mechanism, and is how...
2025-01-2244 min
Connecting the DotsConnecting the Dots...with a non boring accountant (Nathan Harvey)Dive into the fascinating world of internet numbering with Nathan, a finance director at APNIC. Discover how they manage the essential IP addresses that connect devices across Asia-Pacific. Nathan's journey from auditing to managing internet resources shows just how exciting and crucial this field is. #APNIC #InternetNumbering #DigitalConnectivity
2024-12-2818 minPINGPost-Quantum CryptographyIn the last episode of PING for 2024, APNIC’s Chief Scientist Geoff Huston discusses the shift from existing public-private key cryptography using the RSA and ECC algorithms to the world of ‘Post Quantum Cryptography. These new algorithms are designed to withstand potential attacks from large-scale quantum computers and are capable of implementing Shor’s algorithm, a theoretical approach for using quantum computing to break the cryptographic keys of RSA and ECC.Standards agencies like NIST are pushing to develop algorithms that are both efficient on modern hardware and resistant to the potential threats posed by Shor’s A...
2024-12-111h 05PINGMeasuring DNSSEC keying "drift" between parent and childThis time on PING, Peter Thomassen from SSE and DEsec.io discusses his analysis of the failure modes of CDS and CDNSKEY records between parent and child in the DNS. These records are used to provide in-band signalling of the DS record, fundamental to the maintenance of a secure path from the trust anchor to the delegation through all the intermediate parent and grandparent domains. Many people use out-of-band methods to update this DS information, but the CDS and the CDNSKEY records are designed to signal this critical information inside the DNS, avoiding many of the pitfalls of passing t...
2024-11-2736 minPINGThe IPv6 TransitionIn his regular monthly spot on PING, APNIC’s Chief Scientist Geoff Huston discusses the slowdown in worldwide IPv6 uptake. Although within the Asia-Pacific footprint we have some truly remarkable national statistics, such as India which is now over 80% IPv6 enabled by APNIC Labs measurements, And Vietnam which is not far behind on 70% the problem is that worldwide, adjusted for population and considering levels of internet penetration in the developed economies, the pace of uptake overall has not improved and has been essentially linear since 2016. In some economies like the US, a natural peak of around 50% capability was reached in 2...
2024-11-1359 min
Die 2 Super S PodcastSven sagt der Podcast Ausgabe 321Hier die Shownotes:
Ich habe Claude.ai wieder Dinge tun lassen dieses Mal eine Podcast Ausgabe schreiben lassen im Stile des jüngeren Herman the German ja genau in dessen Stil hören wir doch mal rein
Und weil ich dann so richtig in Fahrt war hab ich mir auch noch eine Boshafte Anmoderation für einen Podcast über einen Radiopreis machen lassen aber hört selbst
https://svensagt.blogspot.com/2024/10/zur-podcast-ausgabe-321-wenn-claudeai.html
Nachdem Claude.ai nun nicht nur be...
2024-11-0118 minPINGA student-led IPv6 deployment at NITK KarnatakaIn this episode of PING, Vanessa Fernandez and Kavya Bhat, two students from the National Institute of Technology Karnataka (NITK) discuss the student led, multi-year project to deploy IPv6 at their campus. Kavya & Vanessa have just graduated, and are moving into their next stages of work and study in computer sciences and network engineering.Across 2023 and 2024 they were able to attend IETF118 and IETF119 and present on their project and it’s experiences to the IPv6 working groups and off-Working Group meetings, in part funded by the APNIC ISIF Project and the APNIC Foundation.
2024-10-3027 minPINGThe back of the class: looking at 240/4 reachabilityIn his regular monthly spot on PING, APNIC’s Chief Scientist, Geoff Huston, discusses a large pool of IPv4 addresses left in the IANA registry, from the classful allocation days back in the mid 1980s. This block, from 240.0.0.0 to 255.255.255.255 encompasses 268 million hosts, which is a significant chunk of address space: it's equivalent to 16 class-A blocks, each of 16 million hosts. Seems a shame to waste it, how about we get this back into use?Back in 2007 Geoff Paul and myself submitted An IETF Draft which would have removed these addresses from the "reserved" status in IANA and used to s...
2024-10-161h 09PINGFocusing purely on technology limits the understanding of Internet resilienceIn this episode of PING, Nowmay Opalinski from the French Institute of Geopolitics at Paris 8 University discusses his work on resilience, or rather the lack of it, confronting the Internet in Pakistan.As discussed in his blog post, Nowmay and his colleagues at the French Institute of Geopolitics (IFG), University Paris 8, and LUMS University Pakistan used a combination of technical measurement from sources such as RIPE Atlas, in a methodology devised by the GEODE project, combined with interviews in Pakistan, to explore the reasons behind Pakistan’s comparative fragility in the face of seaborne fibre opt...
2024-10-0234 minPINGPrivacy and DNS Client SubnetIn his regular monthly spot on PING, APNIC’s Chief Scientist, Geoff Huston, discusses another use of DNS Extensions: The EDNS0 Client Subnet option (RFC 7871). This feature, though flagged in its RFC as a security concern, can help route traffic based on the source of a DNS query. Without it, relying only on the IP address of the DNS resolver can lead to incorrect geolocation, especially when the resolver is outside your own ISP’s network.The EDNS Client Subnet (ECS) signal can help by encoding the client’s address through the resolver, improving accurac...
2024-09-1849 minPINGThe APNIC Labs Measurement SystemIn this episode of PING, Joao Damas from APNIC Labs explores the mechanics of the Labs measurement system. Commencing over a decade ago, with an "actionscript" (better known as flash) mechanism, backed by a static ISC Bind DNS configuration cycling through a namespace, the Labs advertising measurement system now samples over 15 million end users per day, using Javascript and a hand crafted DNS system which can synthesise DNS names on-the-fly and lead users to varying underlying Internet Protocol transport choices, packet sizes, DNS and DNSSEC parameters in general, along with a range of Internet Routing related experiments.
2024-09-0433 minPINGDNS and UDP truncationIn his regular monthly spot on PING, APNIC’s Chief Scientist Geoff Huston re-visits the question of DNS Extensions, in particular the EDNS0 option signalling maximum UDP packet size accepted, and it’s effect in the modern DNS.Through the APNIC Labs measurement system Geoff has visibility of the success rate for DNS events where EDNS0 signalling triggers DNS “truncation” and the consequent re-query in TCP as well as the impact of UDP fragmentation even inside the agreed limit, as well as the ability to handle the UDP packet sizes proffered in the settings.
2024-08-2154 minPINGThe SIDN Labs Post-Quantum DNSSEC testbedIn this episode of PING, Caspar Schutijser and Ralph Koning from SIDN Labs in the Netherlands discuss their post-quantum testbed project. As mentioned in the previous PING episode about Post Quantum Cryptography (PQC) in DNSSEC with Peter Thomassen from SSE and Jason Goertzen from Sandbox AQ it's vital we understand how this technology shift will affect real-world DNS systems in deployment.The SIDN Labs system has been designed to be a "one stop shop" for DNS operators to test configurations of DNSSEC for their domain management systems, with a complete virtualised environment to run inside...
2024-08-0730 minPINGCalling time on DNSSEC part 2 of 2In his regular monthly spot on PING, APNIC’s Chief Scientist Geoff Huston continues his examination of DNSSEC. In the first part of this two-part story, Geoff explored the problem space, with a review of the comparative failure of DNSSEC to be deployed by zone holders, and the lack of validation by the resolvers. This is visible to APNIC labs from carefully crafted DNS zones with validly and invalidly signed DNSSEC states, which are included in the Labs advertising method of user measurement.This second episode offers some hope for the future. It reviews the...
2024-07-2449 minPINGTesting post quantum cryptography in DNSSECThis time on PING, Peter Thomassen from deSEC and Jason Goertzen from Sandbox AQ discuss their research project on post quantum cryptography in DNSSEC, funded by NLNet Labs.Post Quantum cryptography is a response to the risk that a future quantum computer will be able to implement Shor's Algorithm -a mechanism to uncover the private key in the RSA public-private key cryptographic mechanism, as well as Diffie-Hellman and Elliptic Curve methods. This would render all existing public-private based security useless, because with knowledge of the private key by a third party, the ability to s...
2024-07-1035 minPINGCalling time on DNSSEC: Part 1 of 2In his regular monthly spot on PING, APNIC’s Chief Scientist Geoff Huston discusses DNSSEC and it's apparent failure to deploy at scale in the market after 30 years: Both as the state of signed zone uptake (the supply side) and the low levels of verification seen by DNS client users (the consumption side) there is a strong signal DNSSEC isn't making way, compared to the uptake of TLS which is now ubiquitous in connecting to websites. Geoff can see this by measurement of client DNSSEC use in the APNIC Labs measurement system, and from tests of the DNS behind the...
2024-06-2654 minPINGThe check is in the (e)Mail(s)This time on PING, Philip Paeps from the FreeBSD Cluster Administrators and Security teams discusses their approach to systems monitoring and measurement. Its eMail.“Short podcast” you say, but no, there’s a wealth of war-stories and “why” to explore in this episode.We caught up at the APNIC57/APRICOT meeting held in Bangkok in February of 2024. Philip has a wealth of experience in systems management and security and a long history of participation in the free software movement. So his ongoing of support of email as a fundamental measure of syst...
2024-06-1238 minPINGWe don't need subnets any moreIn his regular monthly spot on PING, APNIC’s Chief Scientist Geoff Huston discusses the question of subnet structure, looking into the APNIC Labs measurement data which collects around 8 million discrete IPv6 addresses per day, worldwide.Subnets are a concept which "came along for the ride" in the birth of Internet Protocol, and were baked into the address distribution model as the class-A, class-B and class-C subnet models (there are also class-D and class-E addresses we don't talk about much).The idea of a sub-net is distinct from a rout...
2024-05-291h 01PINGMeasuring RPKI and BGP with Oregon RouteViewsThis time on PING Doug Madory from Kentik discusses his recent measurements of the RPKI system worldwide, and it's visible impact on the stability and security of BGP.Doug makes significant use of the Oregon RouteViews repository of BGP data, a collection maintained continuously at the University of Oregon for decades. It includes data from back to 1997, originally collected by the NLANR/MOAT project and has archives of BGP Routing Information Base (RIB) dumps taken every two hours from a variety of sources, and made available in both human-readable and machine readable binary formats.
2024-05-1530 minPINGMeasuring Starlink TCP performanceIn this episode of PING, APNIC’s Chief Scientist Geoff Huston discusses Starlink again, and the ability of modern TCP flow control algorithms to cope with the highly variant loss and delay seen over this satellite network. Geoff has been doing more measurements using starlink terminals in Australia and the USA, at different times of day exploring the system behaviour.Starlink has broken new ground in Low Earth Orbit internet services. Unlike Geosynchronous satellite services which have a long delay but constant visibility of the satellite in stationary orbit above, Starlink requires the consumer to c...
2024-05-011h 02PINGUsing Fibre Optics to measure vehicle trafficThis time on PING, Dr Mona Jaber from Queen Mary University of London (QMUL), discusses her work exploring IoT, Digital Twins and Social Science led research in the field of networking and telecommunications.Dr Jaber is a senior lecturer in QMUL and is the founder and director of the Digital Twins for Sustainable Development Goals (DT4SDG) at QMUL. She was one of the invited Keynote speakers at the recent APRICOT/APNIC57 meeting held in Bangkok, and the podcast explores the three major themes explored in her keynote presentation.The role of deployed f...
2024-04-1727 minPINGDigital sovereignty and standardsIn this episode of PING, APNIC’s Chief Scientist Geoff Huston discusses the European Union's consideration of taking a role in the IETF, as itself. Network engineers, policy makers and scientists from all around the world have participated in IETF but this is the first time an entity like the EU has considered participation as itself in the process of standards development. What's lead to this outcome? What is driving the concern that the EU as a law setting and treaty body, an inter-governmental trade bloc needs to participate in the IETF process? Is this...
2024-04-031h 05PINGDNS OARC's many facesThis time on PING we have Phil Regnauld from DNS Operations Analysis & Resource Center (DNS-OARC) talking about the three distinct faces OARC presents to the community.Phil came to the OARC presidents role, replacing Keith Mitchell who was the founding president since 2008 through to this year. Phil previously has worked with the Network Startup Resource Centre (NSRC) and with AFNOG, and the Francophone Internet community at large.DNS OARC has at least 3 distinct faces. It is a community of DNS operators and researchers, who maintain an active ongoing dialogue fa...
2024-03-2040 minPINGDELEGIn this episode of PING, APNICs Chief Scientist Geoff Huston discusses a new proposed DNS resource record called DELEG. The record is being designed to aid in managing where a DNS zone is delegated.Delegation is the primary mechanism used in the DNS to separate responsibility between child and parent for a given domain name. The DELEG RR is designed to address several problems, including a goal of moving to new transports for the name resolution service the DNS provides to all other Internet protocols.Additionally, Geoff believes it...
2024-03-061h 01PINGTaking the PULSE of the InternetThis time on PING we have Amreesh Phokeer from the Internet Society (ISOC) talking about a system they operate called Pulse, available at https://pulse.internetsociety.org/. Pulse’s purpose is to assess the “resiliency” of the Internet in a given locality.Similar systems we have discussed before on Ping include APNIC’s DASH service, aimed at resource holding APNIC members, and the MANRS project. Both of these take underlying statistics like resource distribution data, or measurements of RPKI uptake or BGP behaviours and present them to the community, and in the case of MANRS there’s a formalised “sco...
2024-02-2135 minPINGDNS is the new BGPIn this episode of PING, APNIC’s Chief Scientist Geoff Huston discusses the role of DNS in directing where your applications connect to, and where content comes from. Although this more “steering” traffic than it “routing” in the strict sense of IP packet forwarding, (that’s still the function of the border gateway protocol or BGP) It does in fact represent a kind of routing decision, to select a content source or server logistically “best” or “closest” to you. So in the spirit of “Orange is the new Black” -DNS is the new BGP.As this change in delivery...
2024-02-0754 minPINGGlobal Cyber Alliance MeasurementsIn this episode of PING, Leslie Daigle from the Global Cyber Alliance (GCA) discusses their honeynet project, measuring bad traffic internet-wide. This was originally focussed on IoT devices with the AIDE project but is clearly more generally informative. Leslie also discusses the quad-nine DNS service, GCA’s domain trust work and the MANRS project. Launched in 2014 with support from ISOC, MANRS now has a continuing relationship with GCA and may represent a model for the routing community regarding the ‘bad traffic’ problem which the AIDE project explores.Leslie has a long history of work in the p...
2024-01-2438 minPINGIPv6 Fragmentation and the DNSIn this episode of PING, APNIC’s Chief Scientist Geoff Huston discusses the change in IP packet fragmentation behaviour adopted by IPv6, and the implications of a change in IETF “Normative Language” regarding use of IPv6 in the DNS.IPv4 arguably succeeds over so many variant underlying links and networks because it’s highly adaptable to fragmentation in the path. IPv6 has a proscriptive requirement that only the end hosts fragment, which limits how intermediate systems can handle IPv6 data in flight. In the DNS, increasing complexity from things like DNSSEC mean the the DNS packet sizes are gettin...
2024-01-1055 minPINGThe ICANN DNS stats collector systemIn this episode of PING, Sara Dickinson from Sinodun Internet Technologies and Terry Manderson, VP, Information Security and Network Engineering at ICANN discuss the ICANN DNS stats collector system which ICANN commissioned, and Sinodun wrote for them.This system consists of two parts, a DNS stats compactor framework which captures data in the C-DNS format, a specified set of data in CBOR format, and the DNS stats visualiser which is uses Grafana. The C-DNS format is not a complete packet capture but allows the recreation of all the DNS context of the query and response. It...
2023-12-0630 min
Tech Field Day News RundownUS-China Tech War now Focused on RISC-V chip Technology | Gestalt IT Rundown: October 11, 2023In the ongoing geopolitical battle between the United States and China, a new front has emerged, focusing on the open-source chip technology known as RISC-V. American lawmakers, citing national security concerns, are pressuring the Biden administration to place restrictions on U.S. companies' involvement in RISC-V, which is widely utilized in China. This technology competes with proprietary chip architectures from Arm and Intel and has applications ranging from smartphone chips to advanced artificial intelligence processors. The lawmakers fear that China is exploiting the culture of open collaboration among American companies to bolster its own semiconductor industry, potentially undermining the...
2023-10-1130 min
Stories of Infosec Journeys - Indian EditionStories of Infosec Journeys - In conversation with Swapneel PatnekarIn this episode, Swapneel talks about his infosec journey,about his current work, his experience of being a community trainer and some cool projects he worked on. He has some really nice advice for people starting out the infosec industry.
Tune in to this episode to learn more.
Speaker Intro
Swapneel is the CEO of Shreshta IT, who has worked in Information Security for 15+ years.
He is an APNIC Community Trainer and has delivered workshops in Myanmar, Papua New Guinea, and Bangladesh on Information Security, Network Security, and DNS/DNSSEC. He is...
2023-02-0933 min
The Data Radio Show - Bought to you by the Data Innovators ExchangeDVIC Data Dialogues: APNIC and Data VaultingRichard Harris from Certus Digital is joined by Gary Kennedy from APNIC, the regional internet registry for the Asia-Pacific region, to talk through his experiences building Data Vault through Manual Coding, and evolving that process through an automatic tooling programme to deploy Data Vault.Come join the conversation at the Data Vault Innovators Community for free at https://www.accelerate.world/dvinnovatorscommunity Join the Data Innovators Exchange for free at https://www.skool.com/data-management-innovators-4116/about Sign up for the free Data Pro Newsletter at https://www.datapro.news...
2022-12-1815 min
Cisco學習資訊分享IPv6協定在台灣用戶端連線數,超越IPv4我這幾天在「網路攻防戰」Facebook頁面看到文章「標題:台灣 IPv6 使用率已經超過 50%」,我順著找到了好多關於台灣IPv6發展現況的資訊。我這時候才驚覺到,原來在台灣,IPv6協定用戶端連線數,目前已經超越IPv4協定。APNIC從「用戶端」完成的成功工作連線數,來做為量測依據。因此,並不是IP地址空間中的可能地址數,而是有真實意義的使用人數、人次。台灣目前Internet上面的IPv6的使用連線數,已經超過台灣全部的IPv4連線數了。或者這樣看,假設您的用戶端只能支援IPv4,那麼您已經是屬於不到一半的少數了。我整理出我的三個觀察,跟大家分享。資料來源:https://stats.labs.apnic.net/ipv6/TW行動電話上面的網路活動,IPv6遠高於IPv4光從APNIC的圖表,我馬上注意到中華電信的數字。資料來源:https://stats.labs.apnic.net/ipv6/TW「IPv6 Capable」所指的是透過IPv6執行完畢完整的連線。「IPv6 Preferred」所指的是,雙協定用戶端,最後選擇IPv6執行完畢完整的連線。其中,EMOME代表的是中華電信來自於行動電話的樣本,HINET上面流量是來自於中華電信其他技術的使用者。APNIC量測到的數值來看,HINET上面的「IPv6 Capable」大約佔全部連線數的30%,但是EMOME行動電話IPv6 Capable竟然已經達到大約90%。因此可以看得出來,行動電話上面的IPv6普及性非常高。
2021-02-1800 min
Camada 8#4 - Rumo ao IPv6 Brasil!Neste episódio, a equipe do NIC.br analisa a evolução da adoção do IPv6 no Brasil, abordando temas como a escassez de endereços IPv4, a política de alocação gradativa, técnicas paliativas como NAT, a expansão da adoção do IPv6 com dispositivos móveis, estatísticas relacionadas e muito mais. Venha saber mais sobre esse protocolo tão importante para o futuro da Internet neste novo áudio do Camada 8.
Contato:
cursosceptro@nic.br
Links citados:
https://www.worldipv6launch.org/measurements/
https://labs.apni...
2020-08-1231 min
History of NetworkingThe History of APNIC and APRICOT with David Conrad
Each of the seven regional Network Internet Centers (NICs) has a unique origin story reflecting the time in which they were founded, and the operators and regions they represent. David Conrad joins the History of Networking podcast to discuss in the origins of the Asian-Pacific NIC (APNIC) and APRICOT.
2020-04-1436 min
Risky Business 2PRESENTATION: APNIC's Geoff Huston on routing system "lies"This podcast is a complete presentation by APNIC's Geoff Huston.
According to the official synopsis: This presentation will outline the role of addresses and routing and the potential attack vectors, and will also report on the progress to establish a secure framework for addresses and their use in the Internet, highlighting the progress in establishing a secure routing environment for the Internet.
As regular RB listeners would know, we've followed APNIC's work and papers in this area and they have a habit of pushing out good stuff... so this should be a decent talk. Enjoy!
2011-05-1933 minAPNIC Meetings Podcast(APNIC 30 - AMM) APNIC NRO election procedure and speeches from candidates, by Maemura Akinori
2010-08-2700 minAPNIC Meetings Podcast(APNIC 30 - Plenary - Expanding the Net: from IPv4 to IPv6) Lower minimum prefix size, by Elly Tawhai of APNIC
2010-08-2600 minAPNIC Meetings Podcast(APNIC 30 - Plenary - Expanding the Net: from IPv4 to IPv6) Final stages of IPv4 distribution, by Guangliang Pan of APNIC
2010-08-2600 minAPNIC Meetings Podcast(APNIC 30 - Plenary - Expanding the Net: from IPv4 to IPv6) A Closer Look at the Final /8 Policy, by Sam Dickinson of APNIC
2010-08-2600 minAPNIC Meetings Podcast(APNIC 30 - BoF) Proposal for Government Advisory Committee (GAC) for APNIC, by Rajesh Chharia
2010-08-2500 minAPNIC Meetings Podcast(APNIC 30 - APOPS) Measuring traffic in 1/8, 14/8, and 223/8, by George Michaelson of APNIC
2010-08-2500 minAPNIC Meetings Podcast(APNIC 30 - APOPS) A second look at measuring IPv6, by George Michaelson of APNIC
2010-08-2500 minAPNIC Meetings Podcast(APNIC 30 - BoF) Proposal for equal voting rights for all Members in APNIC, by Pavan Duggal
2010-08-2500 minAPNIC Meetings Podcast(APNIC 30 - Lightning talks) DNSSEC and packet sizes, by George Michaelson of APNIC
2010-08-2500 minAPNIC Meetings Podcast(APNIC 30 - APOPS) Route Filtering: Handle with Care, by Frank Salanitri and Tomoya Yoshida of APNIC and NTT Communications
2010-08-2500 minAPNIC Meetings Podcast(APNIC 29 - AMM) APNIC EC election procedure and speeches from candidates, by Paul Wilson
2010-03-0500 minAPNIC Meetings Podcast(APNIC 29 - APNIC Plenary) IPv6 Deployment Monitoring Survey outcome trailer, by Miwa Fujii of APNIC
2010-03-0400 minAPNIC Meetings Podcast(APNIC 29 - APNIC Plenary) Managing the Transition from IPv4 to IPv6: Interoperability is the Keyword, by Muhammad Kamal Zahari of TM Global
2010-03-0400 minAPNIC Meetings Podcast(APNIC 29 - APNIC Plenary) Google (and Youtube) over IPv6, by Lorenzo Colitti of Google
2010-03-0400 minAPNIC Meetings Podcast(APNIC 29 - APNIC Plenary) v6Home: Deploying Dual Stack E-mail, by Lawrence Hughes of Infoweapons
2010-03-0400 minAPNIC Meetings Podcast(APNIC 29 - APNIC Plenary) IPv6 based Emergency Rural Healthcare, by Srinivas Gudipudi of Tech Mahindra
2010-03-0400 minAPNIC Meetings Podcast(APNIC 29 - NIR SIG) Collaboration among the NIRs and the APNIC IPv6 Program, by Miwa Fujii of APNIC
2010-03-0300 minAPNIC Meetings Podcast(APNIC 29 - Policy SIG: setting the scene) Summary of proposals to be presented at APNIC 29 Policy SIG, by Randy Bush
2010-03-0300 minAPNIC Meetings Podcast(APNIC 28 - Lightning talks) What's DNSSEC going to cost APNIC to deploy?, by George Michaelson
2009-08-2700 minAPNIC Meetings Podcast(APNIC 28 - Policy SIG) Ensuring efficient use of historical AS numbers, by Guangliang Pan, APNIC
2009-08-2700 minAPNIC Meetings Podcast(APNIC 28 - Plenary - Expanding the Net: from IPv4 to IPv6) Announcement: IPv6 Deployment Monitoring Survey, by Miwa Fujii of APNIC
2009-08-2700 minAPNIC Meetings Podcast(APNIC 28 - Plenary - Expanding the Net: from IPv4 to IPv6) Implementing IPv6 in a small to medium ISP, by Christian Dwinantyo of D-NETThis presentation explains the reasons D-NET decided to adopt IPv6, their deployment plan, and the current status of their IPv6 network. The presentation will discuss the strategies that supported IPv6 deployment and the challenges D-NET had to overcome. The speaker is also interested in discussing with APNIC 28 participants how customers, including enterprise customers, can be encouraged to adopt IPv6.
2009-08-2700 minAPNIC Meetings Podcast(APNIC 28 - Policy SIG: setting the scene) Summary of proposals to be presented at APNIC 28 Policy SIG, by SIG Chair/Co-chair
2009-08-2600 minAPNIC Meetings Podcast(APNIC 28 - APOPS) DITL, by George Michaelson of APNICAn overview of the "Day in the Life of the Internet" (DITL) project, and some initial results from APNIC's participation, focusing on differences seen at our DNS services during the 2008 and 2009 collections. Emerging data from the review of APNIC's DITL contributions in 2008 and 2009 strongly suggest that "infrastructure" DNS use has more complex behaviours than previously understood, and requires further study. Initial results suggest that of a population of around 1,000,000 querying IP addresses, around 30 per cent are persisting year-on-year which is a far higher output than expected. The dynamics of how IP addresses are used to query infrastructure DNS are...
2009-08-2600 minAPNIC Meetings Podcast(APNIC 28 - APOPS) AS number report, by Geoff Huston of APNICThe final date in the RIR transition to making no distinction between 16 and 32-bit AS numbers is now only months away. This presentation looks at the current status of the remaining 16-bit AS number pool and a few BGP issues that have arisen in supporting 32-bit AS numbers.
(A combination of 32 bit ASNs and BGP in 2008.
On run-out rate of 2-byte ASNs
Vendor support (BGP issues))
2009-08-2600 min