Slashdot Mirror

← Back to Stories (view on slashdot.org)

O'Reilly Media Asks: Is It Time To Build A New Internet? (oreilly.com)

Posted by EditorDavid on from the so-ubiquitous-it-will-disappear dept.

An anonymous reader shares an article from O'Reilly Media's VP of content strategy: It's high time to build the internet that we wanted all along: a network designed to respect privacy, a network designed to be secure, and a network designed to impose reasonable controls on behavior. And a network with few barriers to entry -- in particular, the certainty of ISP extortion as new services pay to get into the "fast lane." Is it time to start over from scratch, with new protocols that were designed with security, privacy, and maybe even accountability in mind? Is it time to pull the plug on the abusive old internet, with its entrenched monopolistic carriers, its pervasive advertising, and its spam? Could we start over again?

That would be painful, but not impossible... In his deliciously weird novel Someone Comes To Town, Someone Leaves Town, Cory Doctorow writes about an alternative network built from open WiFi access points. It sounds similar to Google's Project Fi, but built and maintained by a hacker underground. Could Doctorow's vision be our future backboneless backbone? A network of completely distributed municipal networks, with long haul segments over some public network, but with low-level protocols designed for security? We'd have to invent some new technology to build that new network, but that's already started.
The article cites the increasing popularity of peer-to-peer functionality everywhere from Bitcoin and Blockchain to the Beaker browser, the Federated Wiki, and even proposals for new file-sharing protocols like IPFS and Upspin. "Can we build a network that can't be monopolized by monopolists? Yes, we can..."

"It's time to build the network we want, and not just curse the network we have."

30 of 305 comments (clear)

  1. With.., by Anonymous Coward · · Score: 4, Funny

    With blackjack and hookers!

    1. Re:With.., by freeze128 · · Score: 4, Funny

      ...and IPV6!

  2. Confusing wording/philosophy? by Anonymous Coward · · Score: 5, Insightful

    "a network designed to respect privacy, a network designed to be secure, and a network designed to impose reasonable controls on behavior."

    Privacy, secure and... "controls on behavior"?

    "designed with security, privacy, and maybe even accountability in mind?"

    Again, it speaks of security, privacy and... accountability?

    I'm not arguing against this as I don't understand what is meant. I simply want to understand how privacy can work together with that last thing they keep bringing up.

    1. Re:Confusing wording/philosophy? by hord · · Score: 4, Interesting

      Privacy doesn't mean anonymity. With encrypted protocols it's possible to share pieces of data or perform collective actions without revealing personal information. There is still a worry of data accumulation (logging) but ideally you can identify bad actors and remove them from the system with minimal damage rather than the wild west of identity we have today.

    2. Re: Confusing wording/philosophy? by Anonymous Coward · · Score: 4, Interesting

      Can't speak for that guy but here is one example - let's say we want to build in defense against DDoS. It seems possible to have some network rules about respecting the destination and refusing to forward packets along a route where the destination has replied saying "stop sending me packets so fast" , the routers in between don't need to know anyone's identity in order to slow down that stream, and if everyone did this then eventually attacker can only get packets across one hop from each zombie , stopping the DDOS without breaching privacy.

      Yes, service to that destination will be degraded for real folks who own the zombie machined , but that's either irrelevant (they're not accessing that site anyway) or even good (they can be notified they were asked to slow down, and coupled with fact they didnt try to access it should tip them to fact they are owned and maybe they can recover their PC).

    3. Re: Confusing wording/philosophy? by Anonymous Coward · · Score: 4, Interesting

      It's not all or nothing.

      I have a family , I have friends, I have coworkers... If I can speak to them privately it means nobody knows what we are saying. It doesn't ALWAYS mean that nobody even knows we are talking. It's like taking someone to the side at a party - everyone can see you talking but doesn't know what you are saying. That's a limited form of privacy and it is adequate for many personal communications.

      The absolute privacy you're talking about is either anonymity (someone can see you talking but doesn't know who you are) or secrecy (nobody even knows you are communicating).

      That last one is what worries the NSA because it's what enemies of the state need.

      Everyone else , including paranoid business folks workong on confidential projects , usually is fine with regular privacy or anonymity. Maybe some aren't but the point is that there ARE shades of this that are acceptable to many without saying it's ok for state to spy on everyone.

    4. Re:Confusing wording/philosophy? by skids · · Score: 5, Insightful

      Make your own wires and leave all the spies and rent seekers and thought police behind.

      ...and when you try to control the flood of criminal sploit traffic making those wires useless, you become the spy. ...and when you cannot afford to keep that wire working, you become the rent seeker. ...and when you decide you don't want your pipe used for something you find morally unconscionable, you become the thought police.

      All I can say is, if the idea of a "new Internet" gets tried yet fucking again, there are plenty of technologies already available to implement it. Some of them are really well designed. Ignore them, because whoever implements it will select the worst of the bunch and/or roll their own amateur crap.

      --
      Someone had to do it.
    5. Re: Confusing wording/philosophy? by skids · · Score: 3, Informative

      As a term of art "privacy" was getting to be too much of a polyseme, so it was downgraded to a "reason for rather than a kind of security" in RFC4949.

      "Anonymity" as a term of art does not exclude an unmasking ability... the loosest form of the word may be used to describe a system that only protects association of an alias with an identity by uninvolved third parties (termed "identity protection" in some protocols), and the involved third parties are allowed to include, for example, a court that may ask for an unmasking. Just saying "anonymous" is rarely going to be specific enough... an actual explanation of the parameters is needed.

      So for example, if you communicate with a website "anonymously" but the website can tell you are the same person that communicated with them yesterday, that is technically "anonymous." You cannot have any meaningful form of authentication if you are using a definition of "anonymous" that prevents communicating parties from knowing they are talking to who they intend to be talking to. About all you can do in that case is provide completely public services.

      "Accountability" is an essential component of a lot of services we take for granted, especially "non-repudiation" which is essential for securing business and legal transactions. Accountability involves agreeing to some rules of behavior, which are specific to the service in question.

      TFA is pretty meaningless to throw such terms out there without defining the terms and parameters, and shouting about what they mean is meaningless as a result.

      --
      Someone had to do it.
    6. Re: Confusing wording/philosophy? by skids · · Score: 3, Interesting

      Meant to add before my itchy submit finger, some of those do require a sender identity. If you have a DoS stream incoming that is not DDoS, (or a DDoS using your network as a reflector), you need to have an identifiable source to tell the ISP to blackhole. Lacking this ability, anyone with a fatter pipe than yours can prevent other people on the network from reaching your service. This is one example where a network identity is required to maintain network sanity.

      Your proposal to "stop forwarding along routes" from which a backpressure message has been received would either require backbone routers to be magically connection-aware without a source identity (ATM could do so, but IP core routers mostly are not up to this task, and ATM is AFAIK still well behind IP in scaling and not getting much investment), or some sort of mechanism by which routers closer to the victim stop blocking traffic sooner than ones closer to the attacker, which would require additional state, and would be pretty slow to converge and probably subject to relapses. Not impossible, but a whole lot of technical trouble just to forgo using a source address.

      --
      Someone had to do it.
    7. Re:Confusing wording/philosophy? by AmiMoJo · · Score: 3

      ...and when you try to control the flood of criminal sploit traffic making those wires useless, you become the spy. ...and when you cannot afford to keep that wire working, you become the rent seeker. ...and when you decide you don't want your pipe used for something you find morally unconscionable, you become the thought police.

      All those issues can be overcome. Encryption and anonymization makes it impossible to be the thought police, for example. Imagine operating a node on an onion routed network - you can't determine packet content, or source, or destination, or infer anything about the identity of anyone involved with it. You have a binary choice: route everything, or route nothing.

      If properly designed DDOS attacks should become ineffective anyway.

      As for paying for it, the backbones are not the problem with the current model, ISPs are. However, with a mesh wireless option we might finally be able to break the stranglehold that ISPs have on last mile infrastructure. That's probably the hardest part to do. Effective and proven technology exists for all the other stuff.

      --
      const int one = 65536; (Silvermoon, Texture.cs)
      SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
    8. Re: Confusing wording/philosophy? by hawkeyeMI · · Score: 3, Interesting

      Wireless is hard. I run a wireless ISP in a rural area. Every time I see these "independent mesh network" pipe dreams come up, all I can do is shake my head and laugh.
      Good luck, it's not going to happen. A much more reasonable idea is to run an encrypted meta-network on top of the existing infrastructure. That's been tried too (freenet, Tor hidden services) and it's not easy but it's at least feasible.

      --
      Error 404 - Sig Not Found
  3. Reasonable to whom? by BitterOak · · Score: 5, Insightful

    and a network designed to impose reasonable controls on behavior.

    Who gets to decide what controls are "reasonable"? What kind of "behavior" is to be controlled, and how?

    --
    If I can be modded down for being a troll, can I be modded up for being an orc, or a balrog?
    1. Re:Reasonable to whom? by Anonymous Coward · · Score: 5, Interesting

      Basically IPV6 and end to end encryption. Sorry ISPs you do not get a say anymore.

      Needs more than just that.

      A new internet needs to be decentralized and anonymous to the point that nobody except participants can tell who had a conversation with whom. If the government decides A is bad and they know you talked to A or did a DNS lookup for A's website, then it doesn't matter if the channel was encrypted - they can beat whatever info they want out of you.

      At the same time, a new internet needs to be able to absolutely prove (if and only if you want) that you are you and whoever you are talking to is who they say they are.

      Maybe there are protocols out there right now that can do these things without too much hassle?

    2. Re:Reasonable to whom? by martinX · · Score: 4, Interesting

      That's not shitty Orwellian wording. It is not some semantic mistake. It says exactly what they mean it to say, and the implications are as bad as it sounds.

      Imagine, for a moment, the results of China having a say on "a network designed to impose reasonable controls on behavior". China has about a fifth of the world's population. Why shouldn't they get a proportionally large say?

      --
      When they came for the communists, I said "He's next door. Take him away. Goddam commies."
  4. It's definately time by Maxo-Texas · · Score: 4, Insightful

    The current internet has almost become worthless.

    Festering with ads and malware.

    Tracking everything you search for and selling that data to the highest bidder.

    --
    She was like chocolate when she drank... semi-sweet at first and then increasingly bitter.
    1. Re:It's definately time by TheDarkener · · Score: 3, Funny

      Seriously. I never get ads on my ssh sessions (well, maybe if I'm logging into an Ubuntu box and see it's MOTD)

      --
      It is pitch black. You are likely to be eaten by a grue.
    2. Re: It's definately time by PoopJuggler · · Score: 3, Insightful

      Depends on how we build it. The real morons are the ones who accept the status quo and their enslavement to the corporations.

  5. Sure we can, but will it be different? by Todd+Knarr · · Score: 3, Insightful

    Sure we can build a new Internet. Where are the long-haul links that connect cities going to come from, though? Let alone the intercontinental links. Or local distribution when you want aggregate bandwidth greater than WiFi provides? The logistical problems with those things are what the current control issues stem from.

    And do we really need a new Internet? IPv6 itself seems pretty sane, and it's possible to build new protocols on top of it (in fact if you look for a file named "protocols" (even Windows machines have it) you'll find tons of them listed). Or even just start building application protocols that require the use of IPSec encryption/authentication.

    1. Re:Sure we can, but will it be different? by rmdingler · · Score: 4, Interesting

      Every swinging internet user has a vote on how things work. How you browse the internet, which sites attract the volume of your time, where you shop... you're either the customer or the product, so depending on how you vote with your time & wallet, some of this shit is your fault.

      Don't like Facebook or twitter? Me neither, but the voters have spoken and we're in the minority.

      --
      Happiness in intelligent people is the rarest thing I know.

      Ernest Hemingway

  6. Unfortunately a little naive by Anonymous Coward · · Score: 5, Informative

    Building new infrastructure doesn't fix the trolling/abuse issues: those are governance and I'm not sure how you fix that kind of issue without adding MORE oversight instead of reducing it as the article suggests.

    The other issue is that infrastructure costs big bucks.
    - Think interstate haulage, inter-country haulage.
    - Wifi uses shared spectrum and just won't scale to the size we need for the most common applications these days. You see this in local free nets now & even in over-subscribed public networks.
    - Additionally security requires additional bandwidth and compute. The compute is inexpensive these days, but the article is suggesting lower bandwidth infrastructure: there's going to be a collision of requirements.

    The last line of the article shows the depth of ignorance: 56K modems require serious telco infrastructure to terminate the calls: a 56K modem essentially can't be used by hackers unless they terminate to a telco. the best non-telco analogue speed you can expect is 33K.

    1. Re:Unfortunately a little naive by swb · · Score: 3, Insightful

      I can't decide if TFA is just an example of people pining for what they've lost, like old people wishing it was the 1950s again, or if its just wishful thinking.

      I think the new network they wanted was the pre-web internet and even with big bucks from government and universities and a handful of private companies who essentially weren't paying attention to the resources being given away, it was kind of barely held together. Its small and cohesive user base gave it the shared values that made it congenial.

      Sadly you kind of have to face the fact that its the commercialization of the Internet is whats allowed it to grow, and interconnecting more users is both a blessing and a curse, as the loss of cohesion leads to the loss in shared values.

      There's no way to rebuild it from the ground up with wifi and ad-hoc technology. You might be able to build a new network on top of the old one, but I'm skeptical it can be done.

  7. DECnet should be considered by Tjp($)pjT · · Score: 5, Interesting

    DECnet lost out to IP. It should be reconsidered. The network was fairly easily expanded indefinitely where addresses were only bounded by specific specs for the implementation phases. The routing as to first of 1024 addresses where the next 1024 addresses under one of the first 1024, etc. Each node learned some basic weights to give its interfaces based on dynamic results of traffic passing. Could be improved over the last Phase V DECnet spec, based on modern knowledge. The architecture was not limited to address space. Any node could have 1024 sub-nodes to extend it. So no dynamic IP allocation issues. Then redo all the protocols used considering modern processors are very very fast and that human readable traffic is not required. So encrypt everything with very strong encryption. Make everything traceable to its source. If you have the keys. Lots of ways to revamp the Internet with an eye to the future. And instead of tunneling DECnet under IP, have an IP tunnel under DECnet. Or UNnet if you want to be politically correct. Done correctly I can have worldwide satellite offices and netboot a machine in Sweden from a server in Switzerland and do it in a secure encrypted manner. Can't spoof email if it is always signed and can be verified ... Can't spoof domain resolution if everything is verified and secure. Redoing the Internet? Make it secure from the start.

    --
    - Tjp

    I am in wallow with my inner money grubbing capitalistic pig. ... Oink!

  8. First World Problems by Kohath · · Score: 5, Insightful

    I have instant access to the world's people and knowledge. But there are ads and Netflix might have to write a check to Comcast (or something equally dire).

    So yeah, let's scrap it in favor of a bunch of stuff that's barely more than an idea.

  9. You can't have privacy & accountability by rsilvergun · · Score: 4, Insightful

    the two are fundamentally incompatible. Privacy only matters when powerful organizations (basically government & mega corps) are abusing it. Accountability requires consequences that are enforced. Meaning no anonymity since if you're anonymous punishment can't be enforced.

    Sorry O'Reilly, but there are no simple answers to the complex problems caused by global telecom network open to all commers. It's either going to be a hodge podge of solutions tailored to solve specific problems, a broken chaotic mess or locked down by the ruling class. I'm for the first option.

    --
    Hi! I make Firefox Plug-ins. Check 'em out @ https://addons.mozilla.org/en-US/firefox/addon/youtube-mp3-podcaster/
    1. Re:You can't have privacy & accountability by guruevi · · Score: 4, Interesting

      You don't have to "know" everything about a person in order to make them accountable, especially not on the Internet, it's how Bitcoin works.

      There is also no need to punish anyone for what they do on the Internet, anything "bad" that can be done on the Internet is easily resolved by some form of censorship whether it's firewalling, blocking or removing the content.

      The main reason why this idea won't float is because the Internet or it's protocols inherently aren't broken. Sure there is a lot of old cruft in eg. TCP/IP or FTP but modern implementations scale very well and can be done securely.

      The main "problem" with the Internet sits not between Layer 1 and Layer 5, it sits with Layer 6 and 7, and most of the trouble there is owned by Microsoft and to a lesser extent Google & co (ad companies) and a bunch of shovelware (both in hardware and software) vendors. Moving to another network of any kind will not resolve it since anyone will be able to couple the two networks and it still doesn't resolve the layers causing trouble.

      --
      Custom electronics and digital signage for your business: www.evcircuits.com
  10. Re:Never going to Happen! by oldgraybeard · · Score: 3, Insightful

    Ah forgot something, "With Darpa Money" ;)

  11. ObBetteridge by Anonymous Coward · · Score: 3, Insightful

    No.

  12. It's called IPv6 by WaffleMonster · · Score: 4, Informative

    The Internet is almost perfect. Restoring the Internet to a network of PEERS would make it perfect. Currently most credible path forward is continued deployment of IPv6.

    Remainder of authors concerns can be fully addressed by a robust implementation of RFC3514.

  13. This isn't about a physical network by MobyDisk · · Score: 4, Insightful

    Half of the trouble we face today with the internet doesn't require a new *physical* network. We need instead to prefer standard protocols, and stop centralizing information with big companies. That means run your email address from your own domain instead of using gmail for everything. Don't use Facebook to login to everything. Share pictures with friends over email. Put your public thoughts on your own blog instead of tweeting them. If people are interested in following you, they will use your RSS or Atom feed.

    Everything these big companies are doing to mine your data and overwhelm you with useless information are inferior (but more convenient!) replacements for the standard decentralized protocols we already had.

    Unfortunately, having a few monopolies control the wires is the cheapest most efficient way to build a network. Mesh networks are just not enough to span planet earth. We are only going to address the neutrality issue with appropriate regulation. As-is, the regulation stifles competition rather than promoting it.

  14. Yes. DNS and services redo desperately needed. by Qbertino · · Score: 3, Insightful

    I think we can all agree that most of what we use today is historically grown and more than just a little messy/haphazard. I don't know if we need to rebuild the entire internet - TCP/IP seems to be doing fine AFAICT - but a larger portion of its key services need a redo IMHO.

    - DNS needs a redo, that's for sure. Whom am I paying 2 Euros a month just for an entry anyway? Namecoin uses the blockchain for naming, and that is the way to go. A state-of-the-art DNS replacement would use that and some central registration authority where you can get a batch of tokens to register/claim the domains of your choosing and be done with it once and for all.

    - E-Mail. Well, being just about the oldest service ever and still in existance. It shows at every corner. Replacement desperately needed. Default built-in hard crypto signing, enveloping, all on top of a new DNS (see above). That would make spam go away in an instant and finally make E-Mail private. Add in referer prohibition, proper threading, echo-pooling and standardized non-prorpietary attachments and rendering standards and add everything else that Usenet offers that might be useful and Facebook would finally be obsolete. Facebook only exists because E-Mail is shite and FB actually is a better version of E-Mail for most people. I can't really blame them.

    - Web needs a redo. True thing. The Web has outgrown HTML roughly 20 years ago. HTML / CSS today are just about unmanagable and have grown into humongous monsters and still fall short in building a neat current-day Web experience. Well-built Flash apps from 1999 still outpace and outperform websites from today - this is a problem, as it causes significant bloat in the HTML/CSS/JS department with no real performance gains. To the contrary, sites continue to bloat and ever increase in demand with no real improvement for the user. Not good.

    - Offline. We need a net that takes offline into account more. This is IMHO the internets biggest downfall alltogether. Fidonet and the likes had and still have the advantage here. It would have to be something on top of TCP/IP but below the application protocols and services, AFAICT. But it's desperately needed. Especially with todays webpages clocking in at above 2MB in size on average. Insane. This allways-online thing was crazy back then and it still is today. Bandwidth is scarce and nobody needs to be online all the time. Why don't we have services that take this into account? Ok, we have (had) Usenet and E-Mail, but Web? Not really. A web replacement should take offline into account right from the get-go.

    My 2 eurocents.

    --
    We suffer more in our imagination than in reality. - Seneca