Solved Has the Internet changed for the worse before?

Hi.

According to this article

China wants to introduce a "new ip protocol" that includes potentially a kill switch. I don't see how it'll happen, I mean IPV6 still hasn't fully been implemented everywhere.

Can anybody that's been around longer then I have please tell me if anything similar to this, has changed the Internet before?

I thought the Internet has largely remained unchanged since the 1980s?

Thanks for your time.
 
They may implement that for their own country but not for the rest of the world. Too much commerce depends on the Internet to just cut it off. At least RIPE sees it for what it is: a veiled attempt at censorship.
 
<tinfoilhat>

A bit higher on the network stack but I feel that making everyone pine for SSL certificates is control enough.

The idea of central authorities doesn't quite sit right with me. Sure we have "free" and anonymous ones like LetsEncrypt (for now) but surely a more SSH approach could have been taken.

I am pretty sure in the early days it was just a way of linking a hosts bank account (to pay for the certificate) with the certificate to provide some tracability.

I am also pretty sure one day web browsers will only allow for most web features if using a https only address. You can already see it with things like SharedArrays for html5 "threads" etc.

</tinfoilhat>
 
kpedersen I'm completely confused by your <tinfoilhat> tags. Are they part of your argumentation? What's your point if any? There is a diff between feel safe and be safe. Some say there is no safety at all, but majority exactly does want that. Great business opportunity.
 
Thank you for sharing your thoughts. :)
What makes you think that?
BTW: Did you ever made it reading RFCs?
You do not need to start with https://tools.ietf.org/html/rfc1
After glancing through just the outline of the rfc. I was mistaken as there has been huge amounts of change in regards to computer networking over the years. I don't think I used the clearest title to describe my question.

I worry when I see news like what I linked to. Since I picture lots of people losing freedoms of free speech and the things that make the Internet as amazing as it is.

Even if the protocols become implemented not every network operator will use them correct similar to the 90s appletalk vs decnet etc?
 
I worry when I see news like what I linked to. Since I picture lots of people losing freedoms of free speech and the things that make the Internet as amazing as it is.
Don't worry. Be happy! :)

There is a lot of politics around the Internet as it has become globally ubiquitous. What is amazing to me is a misunderstanding of what the term freedom of speech means in the law context of different countries even in the US. And that is one reason among others why the Internet is no more amazing like it has been in the past (edu era, before the commercial wave took over). Another reason is that western countries fear loosing their monopoly tapping Internet communications while not being able to tap chinese G5 communication. Now talking bad about chinese G5 has the purpose making people feel bad (see above) when using it in the future. It's all about by whom you feel better being tapped.

After all being amazed is a highly subjective emotion if not an idiosyncratic arousal.
 
Probably a bit of back scratching going on between cert authorities and someone else but I don't mind at all that entitles have to be vetted before getting certs. I don't want some rogue organization/individual posing as my bank. Trust is the main reason there is a process and $ to get a cert. If you can't trust the end organization, then it all falls apart.

I know this doesn't take into consideration DNS attacks and man-in-the-middle attacks.
 
I don't mind at all that entitles have to be vetted before getting certs.

I certainly see that angle but I do also like the idea of anyone being free to get a certificate without disclosing personal information.
I wonder if in 100 years they will allow people to still get personal certificates? Perhaps only corporations will be allowed to host websites?

All it takes for something like this to happen is browsers like Chrome to enforce the usage of HTTPS and central authorities to close doors to individuals.

... That said, I am sure we will overcome it with the (re)rise of Gopher to power! ;)
 
I understand the freedom aspects. I do everything online and really want to ensure my transactions are secure. It is certainly an interesting topic because you are right: corporations will always strive to make $ so have no qualms about doing what they need to do to accomplish this. Even embedding themselves in governmental decisions; oh wait, they are already doing that :oops:
 
They may implement that for their own country but not for the rest of the world. Too much commerce depends on the Internet to just cut it off.

You hit the nail. This is not about intended censorship versus the freedom of the users, this is about chinese totalitarians versus capitalist totalitarians (where the neo-socialist totalitarians are used as a cover up).

For the user it just means: behave properly (china), consume properly (FAANG), function properly (p.c.).
 
If you ever are in need to increase your trust potential you may try this

I always assumed it was the other way round. If I trusted everyone and everything, I can live in a happy world full of people and corporations striving to help make my life better. Surely that must feel nice! XD
 
I always assumed it was the other way round. If I trusted everyone and everything, I can live in a happy world full of people and corporations striving to help make my life better.

Well actually they do. The way *they* think your life would better suit *them*.
 
If you ever are in need to increase your trust potential you may try this:

Also interesting if you wonder how women are ticking.

Yes, this is exactly why it is so important to keep at least 2 meter distance to any other person.
It is also why one should believe that men are naturally evil and only interested in abusing women.
Because, doing anything else migt trust happen to appear.
 
Reading about Thompson's hack left me staring at a Matrix(1)-like pit of solipsism. To prevent going insane, I settled on a position based on my freshman-year understanding of Descartes' provisional morality. I will trust what I think I know until I have time to examine everything for myself in depth. I expect I'll have time soon after never.

(1) The movie, not the Linear Algebra construct
 
... based on my freshman-year understanding of Descartes' provisional morality. I will trust what I think I know until I have time to examine ...
Hmm. after reading this ...

my provisional conclusion is: Descartes was well before Snake Oil and Operation Rubicon (Crypto AG) ...
While perception and constructing a representation of the outer world is tricky, communicating our constructed models is really difficult. It is nearly impossible without agreeing on some trustworthiness. We approach the 7th anniversary "post Snowden" when trust was deconstructed as a risky illusion.
 
I wonder if in 100 years they will allow people to still get personal certificates? Perhaps only corporations will be allowed to host websites?
Back in days of yore, anyone could set up their own broadcast radio and TV station. You'd have all kinds of crazy content by radio crazies, all interfering with each other on the dial until regulation set in and we have what we have today. I feel the internet, and all its crazies, will one day work out the same way. In the US, we have NBC, CBS, ABC and Fox. On the internet we have Google, Facebook, Twitter and Amazon.
 
China wants to introduce a "new ip protocol" that includes potentially a kill switch. I don't see how it'll happen, I mean IPV6 still hasn't fully been implemented everywhere.
Yes, China (and Russia and a few other totalitarian states) want to have the ability to perform censorship and espionage at the protocol level. That has been making the round for months now. And in view of their political stance, this is completely not surprising. There is a reason that one shouldn't buy networking gear from Huawei. By the way, many other governments also like to perform espionage, all I need to say is Clipper chip. The difference is that the Chinese government and its commercial arm Huawei are totally open about it: We want the low-level protocols to be make censorship easier, and if the IETF doesn't give it to us, we'll go somewhere else. They're not the slightest bit ashamed of being a totalitarian regime, nor do they have to be.

And: IPv6 is pretty universally installed. I've seen quite a few IPv6-only installation.

Can anybody that's been around longer then I have please tell me if anything similar to this, has changed the Internet before?
It has undergone many changes. Not at the basic protocol level so much, but in questions of governance, commercialization, and such. Example is the sale of the .us domain; the move of the root servers. A lot was brought on by the fact that the IANA died; it is at times like this that I think how much we all miss Jon Postel. Alas, he couldn't have stopped the flow of money and power by himself; today the internet is the most important industry in the world (more than oil or transportation), so it is not surprising that it also has to respond to political and economic pressure.

They may implement that for their own country but not for the rest of the world. Too much commerce depends on the Internet to just cut it off.
Two comments. Russia and China could easily legislate that the internet within their countries only use protocols that are allowable to them. Then they could route content from the outside. That's exactly what the great firewall does today; all you'd be adding would be a protocol translation.
The idea of central authorities doesn't quite sit right with me. Sure we have "free" and anonymous ones like LetsEncrypt (for now) but surely a more SSH approach could have been taken.

I am pretty sure in the early days it was just a way of linking a hosts bank account (to pay for the certificate) with the certificate to provide some tracability.
No, not really. There are two things that are being conflated here. First, we need SSL (meaning https) to security in transit, so packets don't get spied on or modified along the way. In the normal encryption scheme we use today, that means we need keys. SSH also uses keys. Ever noticed that when you first ssh to a host, it asks you whether you want to trust that host? That's because of the second function of https: authentication. When I look at the web site www·ibm·com, I want to be 100% sure that I'm looking at the real thing (the web site of Itsy Bitsy Machines, a local chainsaw repair place that my son and me operate out of our basement), and not some impostor like Irish Business Machines or Immense Bowel Movement. So when a certificate authoritity issues a SSL certificate to my son and me, they really need to check that (a) we hold the trademark or copyright on the term "IBM", (b) we really are authorized representatives of Itsy Bitsy Machines. That probably requires my passport, matching my picture against what I look like, a certified copy of the articles of incorporation of IBM, Inc., a statement signed in ink by the lawyer that this really is a truthful copy and that User RalphBSz with Elbonian passport number 12345 is indeed the chairman of the board of IBM. To really authenticate, you need a "web of trust", and that trust has to go back to entities such as courts and professions such as lawyers (please don't laugh now, you might cough and catch a virus). Today's certificate issuance doesn't do all of it, but it tries to get as close as practical (which isn't very).

Authentication is exactly the opposite of anonymity: To get an SSL certificate that demonstrates that this packet you got from server www.ibm.com is really an expression of my son's and my opinion, the two of us can not possibly be anonymous, on the contrary: to verify that the web of trust isn't lying, you need to be able to go to the local courthouse and demand to inspect the paperwork for our company, and there you will see a photocopy of the same ugly picture of me, holding my trusty chainsaw.

Now, you say that there should also be a way to have anonymous but authenticated and encryption web service. For example, you might want to publish your opinions on the best way to tune up string trimmer engines on the web, but because you fear retaliation from me, you don't want to who kpedersen really is. I respect that, and being a champion of free speech, I'm also in favor of you being able to post your opinions (whether right or wrong is irrelevant) anonymously. But you need authentication: If someone comes back a week later to recheck your revolutionary carburetor adjustment instructions, you need to ensure that they really see your page; not a harmless looking page of bambi munching the flowers on a mountain meadow, which the most evil government of Elbonia has placed their after silencing you (silencer is a pun ... 2-stroke engines do have mufflers). Alas, today's https protocol and certificate issuance mechanism isn't designed to provide for anonymous but authenticated secure communications. Diffie and Hellman were not present in the room when it was designed. You lose.

But the important thing is this: Authentication is vitally necessary for 99% of all internet traffic, and I'm super happy that it is in widespread use now. Even though I had to spend countless evenings setting up the SSL certificates for my own personal stuff (even with LetsEncrypt it was painful).

And if you think, just for a moment, that real anonymity exists, you need to get a clue. With relatively little effort, an adversary can trace back where and who you are.

Anything that I cannot control makes failure possible and security impossible.
That is a common view in ultra-libertarian circles: Trust nothing, except oneself. Doesn't work and leads to complete nonsense. Very few people have the skills and knowledge to design and implement secure systems. Matter-of-fact, with today's complexity, I bet no single person can do it at all, and it requires teams. If you try to secure your own systems (or if I did), the result would be a security hole the size of a barn door. The reality is that you have to make informed decisions about what you can trust and what you can't.

Here's my favorite funny story about anonymity. A few years ago, I was running a political campaign in a local election, for a certain local issue that involved our schools. We were the "Yes on X" campaign, and measure X was something that was nearly universally popular in our local district, and eventually proposition X won at the election with 85% yes at over 55% turnout. But to make sure we would really win, we campaigned for it, we put up posters, we mailed out letters and postcards, and called voters. And we did that all very officially, with a campaign finance registration, keeping track of all donations and expenses, and all that.

Well, like all political issues, we had opponents. Let's call them Adam, Bob and Charlie. They wanted to campaign against measure X, but they knew that the community opinion was going to be overwhelmingly against them. To protect themselves, they wanted to campaign anonymously. So they sent a letter to the state campaign law and finance commission, asking whether it would be legal for them to anonymously put up posters saying "vote NO on X". The commission sent them a very nice letter, telling them that it is indeed legal to campaign anonymously and without disclosing where the money comes from, but only within very narrow limits (I think it was something like 20 posters, 200 letters and $2000 in expenditures). What these idiots forgot is that government is by its nature public: The campaign commission listed their case on the agenda of a public meeting, they discussed the case at the meeting (with journalists in attendance, although this question was so small it didn't get into the newspaper), and the letters were duly published in the record of the campaign's decision making on the web. Where I promptly found them. So when the posters "No on X" showed up by the road side (without any note on them: "paid for by campaign number 54321"), we immediately knew who had done it: Adam, Bob and Charlie. What's even funnier is that many of our volunteers had seen the three of them, driving around in a burgundy-colored Volvo station wagon, and putting up posters at street corners. What do we learn from this? If you want to do something anonymously, then (a) don't officially ask for permission from a public agency, and (b) don't wear your own faces and drive your own car when doing something anonymous on a public road.
 
Yes, China (and Russia and a few other totalitarian states) want to have the ability to perform censorship and espionage at the protocol level.

You mean, other totalitarian, openly totalitarian and crypto totalitarian, want to do it at a higher level?
 
Back
Top