Archive

Archive for June, 2012

World IPv6 Launch (worldipv6launch.org/), taking place June 6 at 12am GMT

June 5, 2012 2 comments

Major Internet service providers (ISPs), home networking equipment manufacturers, and web companies around the world are coming together to permanently enable IPv6 for their products and services by 6 June 2012.

We’re proud to be one of the founding participants in World IPv6 Launch (worldipv6launch.org/), taking place June 6 at 12am GMT. The current Internet is running out of room and IPv6 is crucial to keeping the Internet growing and sustainable.

In advance of the launch, we’re holding a Hangout on Air tomorrow, June 5, at 12pm PT / 3pm ET / 7pm GMT. Join Vint Cerf, Chief Internet Evangelist at Google and one of the Internet’s “founding fathers,” Google IPv6 engineers +Lorenzo Colitti and +Erik Kline, Comcast IPv6 architect +John Jason Brzozowski and Cisco fellow +Mark Townsley to discuss IPv6, why we need it and how it benefits the Internet. Tune in tomorrow to watch, and get ready for the next version of the Internet!

Advertisements
Categories: IPv6 Tags:

IPv6 Launch Day: ISOC-DC Panel Event : June 6 5:30 – 8:30 – See you at the event!

June 5, 2012 Leave a comment

IPv6 Launch Day: ISOC-DC Panel Event
When: Wed, Jun 6, 2012 5:30 PM – Wed, Jun 6, 2012 8:30 PM

Where: Verisign’s DC Conference Room 1666 K Street NW Fourth floor, Suite 410 Washington, DC
Map
Free EventBrite Registration Required: http://www.eventbrite.com/event/3654332206 Hosted by Verisign (near the Farragut North and Farragut West Metro stations)
5:30 – 6:30 reception/networking 6:30 – 8:00 program 8:00 – 8:30 networking
More than ten years ago, the Internet Engineering Task Force (IETF) developed the IPv6 protocol to dramatically expand the number of Internet Protocol addresses available with the IPv4 protocol and provide new features in the key standard that encodes the packets of data that carry everything transmitted over the Internet. Despite the fact that we are running out of IPv4 addresses, which is complicating operations of the Internet, many computer companies, Web companies, and Internet Service Providers have not embraced the IPv6. What’s holding them back? Why are only about 10 percent of networks using IPv6 today? What does IPv6 mean for the average Internet user? The new protocol is essential for development of the Internet of Things, ad hoc networks, and other exciting new uses of the Internet. What are the early adopters doing with the new capabilities offered by IPv6? Help us celebrate IPv6 Launch Day on June 6 and learn about efforts to realize the full benefits of the next version of the Internet (http://www.worldipv6launch.org/).
Moderator: Michael R. Nelson – Research Associate, Leading Edge Forum, and Adjunct Professor, Georgetown University
Discussion leaders:
Richard Jimmerson, Internet Society http://www.internetsociety.org/who-we-are/staff/mr-richard-jimmerson
Joe Klein, Security Researcher at IPv6 Cyber Security Forum and Cyber Security Principal Architect at QinetiQ North America http://www.linkedin.com/pub/joe-klein/1/744/3a9
Michael Gibbs – Network Architect at VeriSign http://www.linkedin.com/pub/mike-gibbs/6/538/777 Location: Verisign’ DC Conference Room 1666 K Street NW, 4th Fl, Suite 410 Washington, DC

Categories: IPv6 Tags:

IPv6 support for Cisco/Linksys, D-link is currently in the lead!

June 3, 2012 Leave a comment

After my posting “Cisco / Linksys leave their current customers behind”, I received a facebook post from John Brzozowski, Chief Architect (1), IPv6 and Distinguished Engineer, Comcast Corporation, and friend. He reminded me that Ming-Han Liu Hans (2), IPv6 Evangelist at D-Link(3), has been working hard to upgrade the product line, receiving the IPv6 Ready Certification (4) on many of the D-Link products.

Never heard of the IPv6 Ready Program (4)?  It was created by the IPv6 Forum for the purpose of conformance and interoperability testing to increase user confidence by demonstrating that IPv6 is available now and is ready to be used. The program provides product vendors methods and tools to test their products. In addition they offer certified laboratories, which provide third party validation of a product’s conformance and interoperability.

The reason advantage to consumers and businesses to use the IPv6 Ready Program database is to avoid vendors who claim support for IPv6, but do not do so.  A good example is the company ‘Billion’, which claims IPv6 support on the Wikipedia “Comparison of IPv6 support in routers”, makes a claim of support in their “Product Guide”(5), and even has an “IPv6 Support” logo (6) to convince everyone that it supports IPv6. But when looking up the IPv6 Ready Program page (7), only three products are listed, none of which are products listed in the current Billion Product Guide.

Now back to my original story. Based on the IPv6 Ready Logo Program, D-Link has over 69 IPv6 Ready Certified (8) products including:

  • DIR-652 – Gigabit Home Router (Hardware Revision B1)
  • DIR-653 – Wireless N300 Gigabit Home Router
  • DIR-645 – Whole Home Router 1000
  • DIR-655 – Xtreme N Gigabit Router (Hardware Revision B1)
  • DIR-825 – Xtreme N Dual Band Gigabit Router (Hardware Revision C1)
  • DIR-835 – Wireless N750 Dual-Band Router
  • DHP-1565 – Wireless N PowerLine Gigabit Router

In contrast, Linksys (Cisco Consumer Products LLC) has only 11 IPv6 Ready Certified (9) on new products.

Here is the kicker; D-Link offers upgrade firmware for most existing routers (10), but Cisco does not.  Here is hoping Cisco does the same.

Thank you John and Liu Hans for the information.

———————————–

(1) John Brzozowski Blog: http://blog.comcast.com/author/john-brzozowski/

(2) Hans Liu: https://www.facebook.com/hanhanliu

(3) D-Link,  http://www.dlink.com/

(4) IPv6 Ready Log Program: http://www.ipv6ready.org/

(5) Wikipedia, Comparison of IPv6 support in routers, http://en.wikipedia.org/wiki/Comparison_of_IPv6_support_in_routers

(6) Billion Product Guide, http://www.billion.com/product/2011-Billion-Product-Guide.pdf

(7) IPv6 Ready Logo list of Billion products, https://www.ipv6ready.org/db/index.php/public/search/?l=&c=&ds=&de=&pc=&ap=&oem=&etc=&fw=&vn=Billion&do=1&o=6

(8) Dlink – IPv6 Ready Logo Program Approved List: https://www.ipv6ready.org/db/index.php/public/search/?l=&c=&ds=&de=&pc=&ap=&oem=&etc=&fw=&vn=D-Link&do=1&o=6

(9) Cisco – IPv6 Ready Logo Program Approved List: https://www.ipv6ready.org/db/index.php/public/search/?l=&c=&ds=&de=&pc=&ap=&oem=&etc=&fw=&vn=Cisco+Consumer&do=1&o=6

(10) Dlink IPv6 support for existing products, http://www.dlink.com/ipv6

“I’m an IPv6 PC”

June 2, 2012 3 comments

Just this week, I ran in to an old friend and IPv6 colleague Sean Siler, the IPv6 lead for Microsoft.  You may have seen Sean play “PC” on the Microsoft parody (1) of the Apple advertisement  “I’m a Mac” and “I’m a PC” (2).

During our discussion, we covered which products Microsoft considers as supporting IPv6 and which ones just don’t meet minimal requirements.  Here is the list of Microsoft products he provided me as supporting IPv6:

And if your favorite product or operations system is on the following list, it is time to upgrade before you start supporting IPv6. To repeat, these products WILL NOT support IPv6:

  • Windows 1.x to 3.x
  • Windows NT 3.1 to 4.0
  • Windows 2000, Professional, Server, Advanced Server and Data Server
  • Windows XP, all productrs
  • Windows Server 2003 products
  • Windows Vista, all
  • Windows CE, Mobile, Windows Mobile all
  • MS OS/2
  • Internet Information Services (IIS)
    • Windows Server 2003 or earlier
  • Exchange
    • Microsoft Exchange 2007 SP0 (or earlier) AND
    • Windows Server 2003 and earlier
  • Domain Name Servers
    • Windows Server 2003 and earlier

Products not listed have a good probability of not working, so I would strongly suggest contacting Microsoft for the current status.

Microsoft has done much work to bring IPv6 into parity with their core products, but not for every product. As Sean put it to me, if a customer requests help, Microsoft will prioritize product capability, features and upgraded schedules.  In short, contact Microsoft today to ensure the product you depend on supports IPv6.

Sadly we did not have more time to talk, as Sean had a meeting with a customer on the topic of IPv6 implementation.  In my eyes, Sean is  “IPv6 PC”.  This blog post is complete… now where is my copy of the South Park Mac vs. PC vs. Linux parody (4)?

 ——————————————

(1) I’M A PC [I am a PC]: Full Ad, http://www.youtube.com/watch?v=9V7NoRjI0H0

(2) All Apple “I’m a Mac I’m a PC” Ads,  http://www.youtube.com/watch?NR=1&feature=endscreen&v=BwzLrqehjKs

(3) Microsoft Common Engineering Criteria, http://www.microsoft.com/cec/en/us/cec-overview.aspx#data-ipv6

(4) South Park Mac vs. PC vs. Linux, http://www.youtube.com/watch?v=0-22EpQOm8c&feature=related

——————————————

Microsoft IPv6 Resources:

Apple ignores IPv6 Security in recent guide?

June 1, 2012 Leave a comment

I was perusing the news today, and discovered that Apple produced a security guide for iOS (1).  Excited by the idea that Apple would disclose technical details on the security and features for their products, I grabbed a copy of the document and read it.  I was hoping Apple would discuss how IPv6 was implemented and which security controls could be applied to create a more secure system. I was wrong.

Then I typed ‘Apple security guide’ and reviewed a group of links sorted by versions of Apple firewalls, thinking they would have security features for IPv6. Reviewing the guide for Snow Leopard I discovered the best IPv6 on Apple products is a disabled IPv6.

Lastly, I reviewed the IPv6 Ready Logo Program – a list of products which have been tested for their compliance and interoperability with IPv6 – and discovered that it recommends disabling IPv6 on the Apple Operating system and IOS.

Wonder if Apple customers joining the IPv6 World Launch Day on June 6th will understand that a secure Mac is one which IPv6 should be disabled.

——————-

(1) iOS Security Guide, https://threatpost.com/en_us/blogs/apple-details-ios-security-features-new-guide-053112

(2) Mac OS X Security Guide, http://www.apple.com/support/security/guides/

(3) IPv6 World Launch Day, http://www.worldipv6launch.org/

(4) IPv6 Ready guides, https://www.ipv6ready.org/db/index.php/public/?o=6

Wireless Telegraph Vulnerability

June 1, 2012 Leave a comment

I am constantly amazed at the things I find on the Internet. One example of this is the two vulnerabilities in the Marconi Wireless Telegraph that were posted to the Open Source Vulnerability Database (OSVDB), which is a place to find security vulnerabilities in vendor’s products.

The first was OSVDB ID: 79399, Marconi Wireless Telegraph, “Transmitted Message Remote Disclosure”, published 06/01/1903 and acknowledged by the vendor a day later, but not posted on the OSVDB until 12/27/2011. The other was the OSVDB ID: 79400 Marconi Wireless Telegraph, “Crafted Transmission Message Spoofing” with the same publication date as the one prior.

If you have read my blog post in the past, these vulnerabilities are the reason I call myself and this blog Scientific Hooliganism. Thanks to whoever posted these, it made my day!