National Projects Aim to Reboot the Internet

iron-kurton wrote with a link to an AP story about a national initiative to scrap the internet and start over. You may remember our discussion last month about Stanford's Clean Slate Design project; this article details similar projects across the country, all with the federal government's blessing and all with the end goal of revamping our current networking system. From the article: "No longer constrained by slow connections and computer processors and high costs for storage, researchers say the time has come to rethink the Internet's underlying architecture, a move that could mean replacing networking equipment and rewriting software on computers to better channel future traffic over the existing pipes. Even Vinton Cerf, one of the Internet's founding fathers as co-developer of the key communications techniques, said the exercise was 'generally healthy' because the current technology 'does not satisfy all needs.'"

My connection works just fine

[essence]

Is this one of those 'forced upgrade' things so hardware and software manufacturers can make a heap of money selling more stuff?

And get ready for a whole heap more IP claims and big corps attempting to own the internet.

Re:My connection works just fine

[nurb432]

Yep, thats exactally what its about. Money ( isnt everything ultimately? )

Its also about inserting more DRM'able protocols along the way.

Re:My connection works just fine

[melikamp]

Well, duh. The way the Internet is right now, there is no way to incorporate or monopolize any particular aspect of it, and that makes some folks very fidgety.

One challenge in any reconstruction, though, will be balancing the interests of various constituencies. The first time around, researchers were able to toil away in their labs quietly. Industry is playing a bigger role this time, and law enforcement is bound to make its needs for wiretapping known.

Yup, some "needs" are just impossible to meet with the Internet in its present state. Like the "need" for a single agency to monitor all Internet traffic. Or the "need" for some folks to control every physical traffic channel. Or the burning need of one familiar industry group to be able to decide unilaterally which computers are "trustworthy" enough to connect to the Web. As it stands, anyone can set up routers, anyone can lay cables and install WAPs, anyone can run a root DNS, an email server, a search portal, or simply host a universally accessible website, etc., etc... What a nightmarish world for a monopolist to live in.

Re:My connection works just fine

[vought]

Is this one of those 'forced upgrade' things so hardware and software manufacturers can make a heap of money selling more stuff?

Sure.

Let's just rip up the entirety of Interstates 10 and 80 from coast to coast, replacing them with automated super car-like systems because of all the traffic in Los Angeles and San Francisco.

Re:My connection works just fine

[The_Wilschon]

Fair enough. Scrolling down the comments, I see a good half dozen highly rated comments that say more or less the same thing as you: Watch out for the corporate and national "security" interests. But here's a different, and perhaps more interesting question:

If they were redoing the internet from scratch, what is wrong with it that ought to be fixed? Can we hear some new-internet wishlists?

The first things I can think of, off the top of my head, are things that are already talked about fairly often: bigger address space (ipv6), and revision to SMTP to make it more difficult to spoof addresses and easier to catch spam.

Re:My connection works just fine

[FrankSchwab]

It may say something about me, but the first thing I can think of off the top of my head is encrypted traffic. All hosts and all clients are expected to both support and use secure sessions. Sure, there might be a fallback for those underpowered devices that can't support RSA2048, and that's OK, but it should certainly be the exception rather than the rule. Next?

Re:My connection works just fine

[melikamp]

If they were redoing the internet from scratch, [...]

But that's the point. Why would anyone want to rebuild it from scratch, to "reboot" it? I can make a long list of wishes that could improve the Internet, like higher speeds, universal access, better email service, more addresses, better DNS, and so on. And the beauty of the Internet is just this: we can implement any of these changes whenever we want and however quickly we need them. We can do these things in a coordinated manner, over a single month, everywhere in the world, or we can do them host by host, on an opt-in basis, over a period of ten years. There is not a single reason to scrape the whole thing, unless there is a fundamental problem with the design. And, sure enough, there is such a problem, and I've outlined it above: no single aspect of the Internet can be effectively monopolized.

RIAA, for example, can start their own DRM-net tomorrow, no one is holding a gun to their head. Microsoft can patch Vista to refuse connections to non-Vista computers. We'll see if that very secure design catches on. As others have noted, anyone can start using their own non-SMTP email server, either in isolation or with a bridge to the SMTP world. Anyone who wants a better Internet can just start with their own server or router and then spread the word (and people do that already with IPv6 and email, afaik). Anything more than that is an attempt by a single party to extract more value at everyone else's expense.

Re:My connection works just fine

[maxwell+demon]

isnt everything ultimately?

No. There are many, and often even stronger, motives than money. Which starts with such motives like fun and pleasure (which most people are even willing to pay money for), then there's love, hate, the desire for power, and the dream of a better world (RMS surely didn't found the FSF in order to get rich!). I don't claim that list to be exhaustive.

Re:My connection works just fine

[jc42]

... configurable, guaranteed upper bounds for the latency and/or lower bounds for the throughput, and not just on the packet level, but throughout the lifetime of a connection.

Actually, we've had RTP for over a decade, and it's widely used inside the major carriers. And this illustrates the weakness in the argument: It's true that IP doesn't do lots of things. But it was designed to have other protocols layers on top of IP, and they can do such things. From the start, IP has had other protocols (ICMP, UDP, TCP, SMTP) layered on top to implement things that "IP can't do".

The only real problem with the current Internet is the 32-bit IPv4 address, and we've also had a solution to that (IPv6) for over a decade. Well, OK, there's a second major problem: regulatory systems that allow the IP "carriers" to play monopoly games with the traffic and cripple their part of the Internet. But that's a political and legal problem that can't be solved technologically. ... routers only know about IP and have no concept of connections, let alone required QoS properties of connections.

Oh, nonsense. Look inside just about any router, and you'll see lots of code that knows about connection-oriented protocols like TCP and RTP. Routers can and do implement various QoS schemes. There are a number of big companies that would love to sell you boxes that do such things. And if you can't find a router that implements exactly the stuff you want, buy yourself a linux or BSD box, install all the source code, and implement it yourself.

(Yes; I have done such things. And I've been paid by a few companies to do them. It's fun; everyone should try it. ;-)

Re:My connection works just fine

[kenb215]

No-one is being hurt, why get the law involved?

That depends on what you mean by hurt. Although I doubt that anybody is physically hurt by receiving spam, most people are hurt in terms of lost time or resources.

Most spam is sent by zombified computers. The people who use those computers probably don't like the fact that their computer or internet connection is slowed down by a spambot, even those who don't know the cause. The companies that provide access to the internet don't like having to use resources to allow significant amounts of traffic that will likely go completely unused, nor do they like receiving complaints from some of their customers who don't want to receive spam. Company email addresses receiving spam waste a large number of paid work hours each year having spam deleting from their inboxes. I would say that that is enough to justify stopping spam.

And for those people who want to receive spam there is still the ability to opt-in.

This is a bad idea

[astrashe]

The Internet is basically fair, because when it was designed no one knew how insanely profitable and important it would be. At the time, no one cared about the net except the people who designed it, so they could do it honestly.

Any new design will inevitably be corrupted by the interests of large companies, and of governments who would feel the need to have their ability to spy on and control traffic protected.

Re:This is a bad idea

[el+cisne]

Damn right. Corporates and governments are eating themselves up inside now for that mistake. They would never have allowed it to come to this. It is way too open and uncontrollable by those in power and this can't be allowed.

Re:This is a bad idea

[Idbar]

More than that, and it has been said already, is the "QoS", which is in part a hidden "Pay for better service". Internet is fair enough, differentiation of services will become the future social discrimination.

Other than that, if they plan to change for good reasons, nice. However, among all the protocols, what would prevail if is not a corporation based one? Would Vista come with SCTP or XCP support in the case they decide to change transport protocols?

Maybe technology will take part, but as usual money will take a larger one. So, it's hard to trust about what big companies want for their customers.

Re:This is a bad idea

[QuantumG]

That's one way to look at it.

Another way to look at it is historically accurate.

There were many "locked down" information networks available for people to connect to before the Internet got popular. Like Compuserve, AOL, and others. For a period, the Internet was in direct competition with these big online information services (as were smaller bulletin board systems).

The Internet won because it wasn't controlled.

So any new Internet that tries to compete with the now Internet surely must be as free.

Re:This is a bad idea

[TapeCutter]

Even having ipv6 installed can break applications, a lot of older C/C++ code (optomistically) used a pointer to a single element when querying the O/S for installed protocols. It has always been possible to have more than one protocol structure returned by the O/S but it was practicaly unheard of before ipv6, when it started appearing quite a few bugs came out of the woodwork.

Who's "Internet" are they talking about?

[LoudMusic]

I don't think any one group can say that we're going to scrap the internet and start over. Hell, the US government couldn't convert its citizens to the metric system and they're the ones that control the measurements. No entity controls the internet and that's what makes it so great. If someone thinks they have a better idea of how it should work let them create their own networks of computers and run their own protocols and standards and we'll see which one the consumers prefer. Probably the one they already have thousands of dollars invested in, are familiar with, and have *freedom* to navigate.

Can anyone reference a national system that was successfully replaced? I heard rumor that a very small country changed which side of the road they drove on in the past ten years. The Internet is a global system - fat chance of any cold turkey changes.

Besides which, lets assume that there is a massive change to the internet. There are plenty of geeks in the world with the knowledge and capabilities to set up their own networks and build an internet of their own. How many of us have wired and wireless internetworks between apartments, dorms, and neighboring houses already? It would just become even more prevalent.

Re:Who's "Internet" are they talking about?

Can anyone reference a national system that was successfully replaced?

The currency of 13 European nations.

It's like nobody has heard of research anymore...

[Schraegstrichpunkt]

The Internet won't be replaced this way, but it's still a useful exercise. You spend some money researching the "what if" scenario, get some results you didn't expect, and then you adapt the technology to the existing infrastructure.

Haven't we got something else we could spend $ on?

[BillGatesLoveChild]

What a huge waste of money. Sure they could build DRM and WGA and SonOfClipper in at the lowest level, but really, what's in it for the rest of us?

You never know. The guys raising money for this will beat the pr0nography and DRM drum enough that some politicians will be impressed and throw some of (your) money at it. But are they going to convince business and the public for massive retooling costs, when in the end, we'll have something very similar to what we have at the moment.

There are better uses for money. Try Cancer research or something else instead please.

Gradual transition

[suv4x4]

We're at a point where total reboot/scrapping of the Internet is as likely as waking up tommorow and finding all of IPv4 scrapped in favor of new shiny IPv6.

There's more loss in scrapping everything and starting over than it is to improve existing solutions in a compatible manner.

Another example: everybody knows the x86 instruction set and interface sucks. It so sucks, that for quite some time AMD and Intel don't produce x86 chips anymore. Have you felt any revolution or "scrapping" going on"? No because all modern chips will take the x86 instructions and translate them internally, so on the outside the chip works with x86 software.

This is how progress works: if something is used massively world-wide, and something sucks about it, expect slow gradual transition, where the offending problems will be tucked away in a compatibility, emulation, translation layer and earth keeps spinning.

Some 'needs' I can do without...

[Jah-Wren+Ryel]

Even Vinton Cerf, one of the Internet's founding fathers as co-developer of the key communications techniques, said the exercise was 'generally healthy' because the current technology 'does not satisfy all needs.'"

If the internet could get a brand new start from scratch, they would just fuck it up worse than it already is. We would get built in key escrow, built in DRM, built in centralized eavesdropping, built in censoring functions, etc.

And there would be unforeseen side-effects. I don't mean the easily foreseeable abuse-of-power kinds of side-effects, I mean the exploitation of such fascist features by the criminal element who today does things like spam and run bot-nets.

We would end up with a marginal improvement in performance, a huge loss of individual freedoms and equal or worse levels of personal risk and annoyance.

Your Attention Please: IPv6. That is All.

[aarmenaa]

I can see a lot of good coming out of something like this. It's like asking "what would I build assuming I had all the money in the world? Then you get as close as you can with the money you have, and that's the best you can do. We can do the same thing with this: "If I knew then what I know now, how would build it?" Then we can go out and shoot for the best can get out of what we have. It's basically goal-setting.

On the other hand IPv6 is kinda the result of this already. Read it very literally: Internet Protocol version 6. We've already revised the Internet in some big ways, and no one even cared. Most people are saying "what we have is good enough. I've even seen Slashdot comments that say "we don't need more IPs, NAT is fine, your computer doesn't need a public IP!" These comments actually get modded up.

At this point, I think a better question would be: "How do we convince people that IPv6 is worth it?" IPv6 may not be a silver bullet, but it's a start. And I like some of the "shortcomings" of the current internet. It's tough to be completely anonymous, but you can do it. That'll never happen again if we start redesigning it, and it's more valuable than many people realize.

Re:Haven't we got something else we could spend $

[melikamp]

On the contrary, it would be an awesome use of money for the folks like MS, **IA, and Bells who stand to benefit hundredfold if they assert complete control over some aspect of the Internet.

Re:Encompassing?

[Stormx2]

The proof here is definitely in the pudding. If they can offer some real alternative without making existing datacenters/other infrastructure redundant, they might be in with a chance. However, I put the chance of this at 0.

Something of a community-spread movement might gain success and momentum, for example an anonymity drive, organised by a central website that gives ISPs/websites stickers... etc. Yes, this is prior art.

Inevitability

[tymbow]

I wondered how long it would take before the topic of re-designing the Internet started making general rounds.

No one really owns it, and governments can't really control it. How long did we think that would last? I'm sure there are plenty of true benefits that would emerge, but we all know what we will really end up with is a DRM infested wiretap paradise that only serves the financial interests of corporations and the control aims of governments. Mind you, whether its an incremental upgrade or a complete replacement I think these aspects of the Internet will become inevitable - it's just a question of how long it will take.

It's an evolution thing...

[Kannaida]

There can't be a sudden "oh, here's something new" because of how strictly society is coupled with the current internet. It could, however, be part of a gradual evolution with the internet... something which I think we can all agree *has* been happening (think of the internet you were introduced to compared to the internet you know now).

And all of that "it needs to be more secure" sentiment really needs to be seen as "the current hackers are getting bored, let's make it interesting." It's the digital age and necessity is the mother of invention (or so they say, these days it's more like boredom is). You make a more secure internet, there is a plethora of people who are willing to adapt current money making schemes to adapt to said new internet. It's not like those guys are stupid... just morally deficient.

All one can hope to do is create measures to make it more secure with the knowledge that you have a year at best before someone comes along and breaks your security. We live in an age where people are breaking security protocols not because they have an ulterior motive, but because it's there... and it's what they do. Programmers find technology, read about the limits, and immediately find reasons and ways to push those limits in ways that nobody ever thought of before. The most successful programmers are the ones who learned to work with the current system and make it profitable, but the best programmers are the ones who need nothing more than a microwave, pop-tarts, an energy drink, and a fast connection.

Re:My ownership works just fine

[kakofb]

Well it might be a good opportunity to use IPv6 so IP hoarding won't be too much of a problem.

Re:Come on, be realistic

[kiddygrinder]

I think you're being a little optomistic in thinking that the US doesn't want to control what people can do. Given enough time i'd pretty much expect the internet to become the christianet if it was just up to the US.

Instead I think the entire thing should be organised by Yukoslavia, not because they'll be neutral about it, but because they never get a turn at having way too much power.

Re:Haven't we got something else we could spend $

[Osty]

You never know. The guys raising money for this will beat the pr0nography and DRM drum enough that some politicians will be impressed and throw some of (your) money at it.

Without pr0n, the "new" internet will go nowhere. Pr0n drives innovation!

proper management

[falconwolf]

The current internet is working well, and with proper management it will continue to do so.

That't the problem. The powers that be don't want the internet to work as well as it does. Instead they want to control it.

Falcon

Re:Come on, be realistic

[pedantic+bore]

That's exactly right.

IPv6 addresses many of the current problems. IPv6 is a standard, supported by many vendors. IPv6 plays nicely with IPv4, so you don't have to break the world in order to deploy it. IPv6 has been around for years...

... and IPv6 adoption is negligible.

Seriously, if we can't get people to adopt IPv6, what's the chance that people are going to adopt something more disruptive?

I've seen some of these proposals, and technically they're interesting. From the perspective of getting the market to move in a new direction, things will have to get a lot worse before they're even taken seriously.

Re:ISA Has Been Pitching This For Years

[grcumb]

The Internet Security Alliance has been talking openly about an overhaul of core protocols since 2004.

People have been talking about this since 1998. On Halloween of that year, Eric Raymond had several Microsoft internal emails forwarded anonymously to him. They outlined how Microsoft could respond to the Open Source Threat. The single most telling quote runs like this:

"OSS projects have been able to gain a foothold in many server applications because of the wide utility of highly commoditized, simple protocols. By extending these protocols and developing new protocols, we can deny OSS projects entry into the market."

At the World Wide Web conference in Amsterdam In 2000, Lawrence Lessig spoke clearly about the threat to the principle of the 'end to end' network (i.e. the Internet as designed). At that time he was speaking about the intent of the telcos to subvert it through WAP, but the prophetic nature of his comments are made visible by endeavours such as these.

Make no mistake, folks: the shiny new future that's being laid out for us here will have none of the freedoms that we enjoy today, where access to information is concerned. This is something that needs to be opposed early, loudly and without compromise.

Re:Complete Anonymity would be a great feature

[falconwolf]

The biggest shortcoming of the current internet (to me) is that anonymity wasn't designed in from the ground up.

Hopefully, this "next big thing" will be designed so there is no information (like IP address) that can be used to trace an internet persona to an actual person or geographic area.

More like they'll design it so no body can hide. All of your communications, whether political speach or not, will be kept in a file with your name on it. J. Edgar Hoover and COINTEL all over again. The NAZIs and KGB wouild of loved this.

Falcon

Re:Encompassing?

[Doctor+Memory]

the second paragraph makes a good point or two Yeah, and a bad point or several. "plague of security breaches and spread of worms"? I don't think the internet has had its security breached, or suffers from worms. Unprotected systems may suffer from this, but blaming the internet for it is like blaming the streets for drive-by shootings. And "fragile routing protocols"? IP is the canonical example of a robust routing protocol. If an intermediate node drops off the net, IP will find a new route. It may not always be the best route, but we're discussing fragility, not efficiency. A protocol that routes your packets from New York to Miami via Winnipeg when some backhoe operator takes out the bulk of the fiber between Philadelphia and Washington DC doesn't sounds too "fragile" to me. The fact that it may continue to do this even after the fiber has been restored is unfortunate, but hardly a sign that it is "fragile".

As to the rest of the paragraph, it's just as misguided. When was the last time you weren't able to connect to the internet due to "equipment failures" other than your own CPE? Or the last time you couldn't get to a site because there was no route to it? Personally (and I use the internet every day, and have for the last 7-8 years, just like almost everyone else on this site), I haven't seen it. The only time I get "Cannot connect to site" is when a page tries to access doubleclick, which I have routed to 127.0.0.1 in /etc/hosts. And the only time I couldn't get on due to equipment failure, all I had to do was power-cycle my DSL modem. Oh, and since I implemented a cacheing DNS server, my response time is quick enough that I don't notice if it's variable or "unpredictable" — whether a site responds in 0.1 or 0.6 seconds, it looks the same to me.

This article sounds like propaganda from the Committee for a More Profitable Internet.

Fine by me

[grasshoppa]

Truly. For years we've had governments and other special interests clamoring for change because they fear the digital age. In part due to this, we've lost more and more freedoms while the sheeple of the world are led by the ring in the nose ( which they are not even aware of ) into believing that everything is ok; Nothing going wrong here.

So let them redo the internet into a new corporate-friendly version. Let them rape us six ways from sunday. After working in the industry as I have, I could just as easily walk away and leave it to other more patient and gullible folks to handle.

Re:Of course the government wants it

[The+Master+Control+P]

The only reason that the Internet isn't a fascist's wet DRM dream presently is because when it started there was no need (only authorized personnel had access anyway, and the only media was ASCII porn) and by the time they (authoritarians, facists, and control freaks) first realized what was happenning, it was too late.

You better believe that if a new Internet were designed today, it would be another TV: You'd have your choice of ad-riddled corporate crap and nothing more. There would be no blogs, no personal servers, no freedom at all. Anything genuinely good would be a rare exception, not the rule. You would be locked out from doing what *you* want to do and forbidden from taking the initiative.

We're at the rising edge of a frightening tide. Governments are forcing federal spyware into the central offices and trunks of the Internet (see: AT&T installing signal splitters and roomfuls of NSA spy computers in main offices). Media corporations are perverting hardware into limiting rather than enabling you with DRM. Microsoft, Intel, and AMD are all playing along with it, putting in DRM at every level. If something isn't done, NOW, it's gonna get seriously bad. Now they want to do a ground-level rebuild of the software running the internet... You expect them not to install corporate and government control throughout if they succeed?

At any rate, this will never happen... There's far, FAR too much intertia behind the current internet. I hope.

Re:Complete Anonymity would be a great feature

[Kjella]

Hopefully, this "next big thing" will be designed so there is no information (like IP address) that can be used to trace an internet persona to an actual person or geographic area.

You probably wouldn't want what you're asking for. To my house there is exactly one line. I could of course be sharing it inside the house or running an open WiFi net, but beyond that it's quite limited who the traffic is for. Any serious attempt at anonymization I've seen have been based on relaying information, which means I'd have to use my upload as well. Since upload and download needs to be in balance across the network, you're already down to a 1:1 up/down ratio. I'd say a minimum number of bounces is two (because otherwise you're either the sender or requester of the info), which makes for a total of three connections. Congratulations, you've now slowed down the Internet to 1/3rd of your upload speed. Plus whatever fake traffic you need to fool traffic analysis.

That, and to speak nothing of latency. Bouncing something around the world adds a latency which would in all likelyhood make it impossible to do several things, like playing FPS/RTS games and VOIP. You're down to IRC-like response time, which aren't that great. Nevermind the incredibly annoyance of everything responding as if you were still on dial-up. And even if all that was fine, it still really only solves the client side, there are still limits to the protection a hidden service can offer you. Essentially, if the network can route to your service that very same information can be used to track it down. It might not be enough on its own, but it should certainly find you some suspects which can be traffic analyzed etc. The only completely safe "service" are the ones that are distributed across the network, which is typically limited to just file storage and by their nature can not be interactive.

And once you get right down to it, anonymous networks don't exist on fairie wings and pixie dust. No matter what you need to have a "real" routing layer between the physical hosts. What's on top of that is not really necessary to tie in to it, it'll all be application data in the OSI models (level 7). In thar data you basicly need to build up the OSI model again from level 3 (network, transport, session, presentation) until you get to the real application data. But it's all very nicely layered, and I haven't seen any reasons to mix them together particularly since we haven't actually agreed on any standard or even close. In short, it's neither ready nor would it be wise or even possible to try to make the entire Internet anonymous.