The Internet has undergone a key upgrade that promises to stop cyber criminals from using fake Web sites that dupe people into downloading viruses or revealing personal data.
The agency in charge of managing Internet addresses teamed with online security services firm VeriSign and the US Department of Commerce to give Web sites encrypted identification to prove they are legitimate.
“This is, by any measure, an historic development,” Internet Corp for Assigned Names and Numbers (ICANN) chief executive Rod Beckstrom said at a premier Black Hat computer security conference in Las Vegas on Wednesday.
“This security upgrade matters to everyone who uses a computer, and that means most of us,” he said.
The Domain Name System Security Extensions (DNSSEC) basically adds a secret, identifying code to each Web site address.
The domain name system is where the world’s Internet addresses are registered and plays a key role in enabling computers around the world to speak with one another online.
Applications commonly used on the Internet can be tailored to essentially check the ID of a Web site to make certain it is what it claims to be, according to Dan Kaminsky, a hacker turned computer security specialist.
For example, Web browser software such as Google or Bing could be adapted to tell whether a bank log-in page is authentic.
“When a user receives an e-mail from a bank they should know it came from a bank,” Kaminsky said. “This is something we needed as engineers to make this a reality.”
A frightening structural flaw in the foundation of the Internet revealed by Kaminsky at Black Hat here two years earlier led to the “biggest structural” upgrade to the Web in decades, Beckstrom said.
“I can’t say I really knew what I was getting into when I broke that whole DNS thing,” Kaminsky quipped as he took part in a press conference announcing the Internet improvement.
Kaminsky is chief scientist at New York start-up Recursion Ventures and worked with ICANN and VeriSign on the upgrade.
Internet engineers have been toiling on DNSSEC for 18 years, but technical and political obstacles stalled progress, Internet Engineering Task Force chairman Russ Housely said in a video call from a meeting of the group in the Netherlands.
“It can be thought of as tamper-proof packaging for the domain name structure,” Housely said.
“The whole Internet engineering community is excited by this development,” he said.
IETF members at the meeting toasted the announcement with champagne, which “I assure you is not a common occurrence at a gathering of engineers,” he said.
It will take time for Internet firms to take advantage of DNSSEC and for it to be applied to local domains in every country, Kaminsky said.
“We are on Day One of a multi-year journey,” he said.
DNSSEC strips cyber criminals of being able to use attacks that involve manipulating code to redirect people from legitimate Web sites to fake pages rigged with malicious code or asking for passwords and other valuable data.
In the sweltering streets of Jakarta, buskers carry towering, hollow puppets and pass around a bucket for donations. Now, they fear becoming outlaws. City authorities said they would crack down on use of the sacred ondel-ondel puppets, which can stand as tall as a truck, and they are drafting legislation to remove what they view as a street nuisance. Performances featuring the puppets — originally used by Jakarta’s Betawi people to ward off evil spirits — would be allowed only at set events. The ban could leave many ondel-ondel buskers in Jakarta jobless. “I am confused and anxious. I fear getting raided or even
Kemal Ozdemir looked up at the bare peaks of Mount Cilo in Turkey’s Kurdish majority southeast. “There were glaciers 10 years ago,” he recalled under a cloudless sky. A mountain guide for 15 years, Ozdemir then turned toward the torrent carrying dozens of blocks of ice below a slope covered with grass and rocks — a sign of glacier loss being exacerbated by global warming. “You can see that there are quite a few pieces of glacier in the water right now ... the reason why the waterfalls flow lushly actually shows us how fast the ice is melting,” he said.
RISING RACISM: A Japanese group called on China to assure safety in the country, while the Chinese embassy in Tokyo urged action against a ‘surge in xenophobia’ A Japanese woman living in China was attacked and injured by a man in a subway station in Suzhou, China, Japanese media said, hours after two Chinese men were seriously injured in violence in Tokyo. The attacks on Thursday raised concern about xenophobic sentiment in China and Japan that have been blamed for assaults in both countries. It was the third attack involving Japanese living in China since last year. In the two previous cases in China, Chinese authorities have insisted they were isolated incidents. Japanese broadcaster NHK did not identify the woman injured in Suzhou by name, but, citing the Japanese
RESTRUCTURE: Myanmar’s military has ended emergency rule and announced plans for elections in December, but critics said the move aims to entrench junta control Myanmar’s military government announced on Thursday that it was ending the state of emergency declared after it seized power in 2021 and would restructure administrative bodies to prepare for the new election at the end of the year. However, the polls planned for an unspecified date in December face serious obstacles, including a civil war raging over most of the country and pledges by opponents of the military rule to derail the election because they believe it can be neither free nor fair. Under the restructuring, Myanmar’s junta chief Min Aung Hlaing is giving up two posts, but would stay at the
RSS