Interview with Sun's Tim Bray and Radia Perlman

ReadWriteWeb writes "To celebrate the 15th anniversary of the World Wide Web, Richard MacManus interviewed two senior engineers from Sun Microsystems - Tim Bray (Director of Web Technologies) and Radia Perlman (Distinguished Engineer). The interview discusses the past and future of the Web, including the impact that Sun's servers have had over the years. Also discussed is the reason why Tim and Radia believe that P2P won't be a driving force on the Web going forward. Radia thinks that having central sites where people can register is key to making the Web scalable and more secure."

P2P

[Rob+T+Firefly]

Tim and Radia believe that P2P won't be a driving force on the Web going forward. Radia thinks that having central sites where people can register is key to making the Web scalable and more secure.

I'll say. Nothing feels more scalable and secure than when I register and login to all my favorite P2P trackers.

Re:P2P

[morgan_greywolf]

P2P is a dead technology, plain and simple. It can't work in a secure network, for several reasons.

Who said anything about the Internet being a secure network?

Look, the Internet, by its very nature, is inherently insecure. It cannot be secure. Only networks where resources can be controlled and managed can be considered secure. You can only secure your own private network, and if that network is connected to the Internet, even via a firewall, its security must be considered at least compromiseable, if not already compromised (this depends on how important security is to your network -- U.S. military and civillian intellegence consider air gap security to be the only security that is acceptable in relation to the Internet and their classified systems). P2P or no P2P.

As for holes in the firewall -- any service your network provides to the public internet requires holes in your firewall. If you don't like that, then don't run services on your public facing connections. *shrug*

Re:And I thought...

[mrogers]

There's a difference between decentralising the infrastructure and decentralising the control. Radia Perlman's thesis is a good example: a robust, decentralised routing protocol made possible by a centralised PKI.

Re:Oh I get it

[OakDragon]

To make the internet more reliable and secure, maybe we could have a whole bunch of centralized servers, all spread out.

Re:Oh I get it

[dc.wander]

I wouldn't be so condescending about the suggestion... Radia Perlman has accomplished more for modern networking and the internet that you probably will in your lifetime. She is more than just a "sun employee." She is inteventer of the Spanning Tree Protocol amoung other things http://en.wikipedia.org/wiki/Spanning_tree_protoco l.

Maybe check out her book, Interconnections, on Amazon to get a feel for the type of work she does.

Need a new interviewer

[buffoverflow]

This was a disappointment. I was really hoping for a lot more out of this interview. Two brilliant interviewees, (one of which is arguably the most influential and groundbreaking female engineer to ever work in this industry, the other is the creator of one of the most prevalent markup languages used); an interesting topic, (I'd like to know what these two think of the past 15 years, and more importantly, what they see to come); finally a simpering imp of an interviewer.
Let the two with the IQ's & overly impressive resumes do the talking. MacManus, I'm really hoping you're leaving all the good stuff for part 2. I didn't see much in the way of a single worthwhile question or topic. The writing was dry and elementary.
Mr. MacManus.. When you get people of this caliber to speak to you, don't treat it like a freshman project for the campus paper. Please do something before you release part 2... Or just toss that page into the fire before you embarrass yourself any more.

(P.S. It never hurts to plug your interviewees work either... "Interconnections" kicks ass...)

Central Server vs. P2P

[nascarguy27]

IMHO, The central server stucture is the way to go. The entity that owns the central server(s) can concentrate security on those server(s) and thus provide verification that you download what you wanted. You can also track payments and such easier with a central server structure. With P2P, you never know what you are going to get until you run the file, and it's harder to track for liscensing purposes and the like. P2P has been shown to be faster in some applications, but with people getting faster and faster connections to the internet, the speed advantage is going to be less in the future.

You have no privacy, get over it.

[Zigurd]

"You have no privacy, get over it." - Scott McNealy

Although McNealy spent a lot of time and ink explaining his point of view, and claiming he was taken out of context, he never backed off that statement. In fact, he clarifies this way "If there were no audit trails and no fingerprints, there would be a lot more crime in this world. Audit trails deter lots of criminal activity. So all I'm suggesting, given that we all have ID cards anyhow, is to use the biometric and other forms of authentication that are way more powerful and way more accurate than the garbage we use today."

The part that is wrong about this is that audit trails are for government and corporate operations, to make sure they are honest and within the law, and within the bounds of their investors' and constituents contracts. Applying the same controls to individuals is oppressive, and McNealy should not have been surprised to find out many people objected to his view.