[Chapter-delegates] Reset the Net ... ?

Jordi Iparraguirre ipa at josoc.cat
Tue Jun 24 07:41:27 PDT 2014 

Chester,

we could not talk about it during the ISOC at ICANN but I'd like to propose
to organize a hands on workshop on security and proper configuration of
browsers, PGP, etc during ICANN51.
A kink of Cryptoparty if you want.

I volunteer to prepare content if there is some interest and other
people join this endeavour.

rgds
jordi
ISOC-CAT



El 19/06/14 03:45, Chester Soong ha escrit:
> *This message was transferred with a trial version of CommuniGate(r) Pro*
> Hi Olivier and Others,
> 
> I am afraid this is not a problem as simple as a logo can solve. I have
> been working on information security for the past 18 years and I have
> only been repeating a little less the same high level message to general
> users and technical people alike for being cautious and take potential
> risks seriously. Just being cautious and verify on things before you
> commit (clicking a link for example) can prevent over 50% of the problem
> if not more.
> 
> But to significantly (can't imagine it can ever be resolved really)
> improve the situation or effectiveness, we need a multilevel approach.
> We need to work both on the technical side in terms of enhancing our
> technical protection measures and the skills of our technical people,
> just like what Jordi is doing, and educate the general users about the
> threats is clear and present. But even without getting their hands dirty
> with the real technical configurations, they can protect themselves with
> a few simple tricks. Cost could be another issue though for SMEs (small
> and medium enterprises) and the disadvantaged with no resources to spend
> on security. Yes, we can bring it up in the discussion of ICANN 50.
> Don't wait till 51.
> 
> Regards,
> 
> 
> Chester
> 
> On 6/18/2014 8:59 PM, Olivier MJ Crepin-Leblond wrote:
>> Thanks for this reminder Evan.
>>
>> Another thing which should be considered is for all Mail exchangers to
>> use SSL/TLS. Way too many still don't, which means email goes end to end
>> in clear text. This is like using postcards where everybody along the
>> line can read the email sent.
>> I had an excellent discussion with a long-timer whilst meeting in Berlin
>> a couple of days ago. It appears that the Heartbleed weakness received
>> Press time and therefore overwhelming public pressure for something to
>> be done simply because it had a good, inspiring logo.
>>
>> So all we need really are inspiring logos. I suggest one for TLS/SSL and
>> another one for the use of PGP.
>>
>> These security weaknesses have been around for a very long time - it's
>> just nobody's bothered with fixing them and when techies look at them &
>> ask their managers for money to fix them, they're told it's not
>> important.
>>
>> Artists -- get drawing!
>>
>> Kind regards,
>>
>> Olivier
>>
>> On 07/05/2014 16:03, Evan Leibovitch wrote:
>>> Hello all,
>>>
>>> I notice a new initiative, "Reset the Net
>>> <https://www.resetthenet.org/>", being launched.
>>>
>>> Its aim is to get more websites to use HTTPS, and to encourage more
>>> end users to learn and use surveillance-resistant tools.
>>>
>>> Central to the campaign is to declare June 5, the one year anniversary
>>> of the first Snowden-derived news leak, as "reset the net day". On
>>> that day, participating sites would sport an appropriate banner. The
>>> site is also collecting signatures for a "pledge" to implement
>>> resistant tools.
>>>
>>> Current supporters include Greenpeace, the Free Software Foundation,
>>> Reddit, and about a dozen smaller orgs. Missing from the list is the
>>> EFF and especially ISOC and any chapters. I also have not heard
>>> mention of it here before,
>>>
>>> Exclusion can be for one of a number of reasons, I'd like to know if
>>> any of these apply:
>>>
>>>   * ISOC and/or chapters are not aware of the campaign (if so, now it
>>>     is :-) )
>>>
>>>   * ISOC and/or chapters are aware of the campaign but do not agree
>>>     with all its aims or tactics
>>>
>>>   * There are just too many of these unconnected campaigns (OpenStand,
>>>     Necessary and Proportionate, etc) and they are losing their power
>>>     because they all are starting to look the same
>>>
>>>   * ISOC is working on its own campaign along these lines
>>>
>>>   * Reset the Net is too US-specific (very NSA-specific, no
>>> translations)
>>>
>>>
>>> Comments?
>>>
>>> -- 
>>> Evan Leibovitch
>>> Canada Chapter
>>>
>>>
>>> _______________________________________________
>>> As an Internet Society Chapter Officer you are automatically subscribed
>>> to this list, which is regularly synchronized with the Internet Society
>>> Chapter Portal (AMS):https://portal.isoc.org
>>
>>
>>
>> _______________________________________________
>> As an Internet Society Chapter Officer you are automatically subscribed
>> to this list, which is regularly synchronized with the Internet Society
>> Chapter Portal (AMS): https://portal.isoc.org
>>
> _______________________________________________
> As an Internet Society Chapter Officer you are automatically subscribed
> to this list, which is regularly synchronized with the Internet Society
> Chapter Portal (AMS): https://portal.isoc.org
>

More information about the Chapter-delegates mailing list