[Chapter-delegates] Reset the Net ... ?

Chester Soong chester at soong.net
Wed Jun 18 18:45:47 PDT 2014 

*This message was transferred with a trial version of CommuniGate(r) Pro*
Hi Olivier and Others,

I am afraid this is not a problem as simple as a logo can solve. I have 
been working on information security for the past 18 years and I have 
only been repeating a little less the same high level message to general 
users and technical people alike for being cautious and take potential 
risks seriously. Just being cautious and verify on things before you 
commit (clicking a link for example) can prevent over 50% of the problem 
if not more.

But to significantly (can't imagine it can ever be resolved really) 
improve the situation or effectiveness, we need a multilevel approach. 
We need to work both on the technical side in terms of enhancing our 
technical protection measures and the skills of our technical people, 
just like what Jordi is doing, and educate the general users about the 
threats is clear and present. But even without getting their hands dirty 
with the real technical configurations, they can protect themselves with 
a few simple tricks. Cost could be another issue though for SMEs (small 
and medium enterprises) and the disadvantaged with no resources to spend 
on security. Yes, we can bring it up in the discussion of ICANN 50. 
Don't wait till 51.

Regards,


Chester

On 6/18/2014 8:59 PM, Olivier MJ Crepin-Leblond wrote:
> Thanks for this reminder Evan.
>
> Another thing which should be considered is for all Mail exchangers to
> use SSL/TLS. Way too many still don't, which means email goes end to end
> in clear text. This is like using postcards where everybody along the
> line can read the email sent.
> I had an excellent discussion with a long-timer whilst meeting in Berlin
> a couple of days ago. It appears that the Heartbleed weakness received
> Press time and therefore overwhelming public pressure for something to
> be done simply because it had a good, inspiring logo.
>
> So all we need really are inspiring logos. I suggest one for TLS/SSL and
> another one for the use of PGP.
>
> These security weaknesses have been around for a very long time - it's
> just nobody's bothered with fixing them and when techies look at them &
> ask their managers for money to fix them, they're told it's not important.
>
> Artists -- get drawing!
>
> Kind regards,
>
> Olivier
>
> On 07/05/2014 16:03, Evan Leibovitch wrote:
>> Hello all,
>>
>> I notice a new initiative, "Reset the Net
>> <https://www.resetthenet.org/>", being launched.
>>
>> Its aim is to get more websites to use HTTPS, and to encourage more
>> end users to learn and use surveillance-resistant tools.
>>
>> Central to the campaign is to declare June 5, the one year anniversary
>> of the first Snowden-derived news leak, as "reset the net day". On
>> that day, participating sites would sport an appropriate banner. The
>> site is also collecting signatures for a "pledge" to implement
>> resistant tools.
>>
>> Current supporters include Greenpeace, the Free Software Foundation,
>> Reddit, and about a dozen smaller orgs. Missing from the list is the
>> EFF and especially ISOC and any chapters. I also have not heard
>> mention of it here before,
>>
>> Exclusion can be for one of a number of reasons, I'd like to know if
>> any of these apply:
>>
>>   * ISOC and/or chapters are not aware of the campaign (if so, now it
>>     is :-) )
>>
>>   * ISOC and/or chapters are aware of the campaign but do not agree
>>     with all its aims or tactics
>>
>>   * There are just too many of these unconnected campaigns (OpenStand,
>>     Necessary and Proportionate, etc) and they are losing their power
>>     because they all are starting to look the same
>>
>>   * ISOC is working on its own campaign along these lines
>>
>>   * Reset the Net is too US-specific (very NSA-specific, no translations)
>>
>>
>> Comments?
>>
>> --
>> Evan Leibovitch
>> Canada Chapter
>>
>>
>> _______________________________________________
>> As an Internet Society Chapter Officer you are automatically subscribed
>> to this list, which is regularly synchronized with the Internet Society
>> Chapter Portal (AMS):https://portal.isoc.org
>
>
>
> _______________________________________________
> As an Internet Society Chapter Officer you are automatically subscribed
> to this list, which is regularly synchronized with the Internet Society
> Chapter Portal (AMS): https://portal.isoc.org
>

More information about the Chapter-delegates mailing list