On Fri, Apr 8, 2016 at 8:35 AM, Harry Halpin <[email protected]> wrote: > FYI, > > I'm speaking to the European Commission at their NetFutures conference on > this very subject in 2 weeks, where I will try to convince them to focus on > funding security, privacy, funding open-source, and working with standards > bodies such as the IETF. If you know any particular efforts that need to be > highlighted, just ping me and I'll highlight them. Otherwise, I was going to > focus on success stories of TLS 1.3, CertTrans, OAuth, WebCrypto and future > work like Humans Rights Protocol Consideration IRTF task force, CFRG + > postquantum, and WebAuth/FIDO/Token-Binding. Rather than say, attempting to > invent a new network stack ran by a proprietary company, which is what some > in the EC would due if left to its own devices.
I don't think any of these are "success stories", especially WebCrypto (theoretically useless) and the CFRG (only success was in wasting 2 years of my life). $750 million to stop people writing in C would have a much bigger impact. A fraction of that to build distributed systems where all actions are tied to user identities, instead of the current mishmash of technologies on the web which opens the door to all sorts of attacks, would have a big impact. There are fundamental architectural issues with Internet and Web security that cannot be fixed, only patched around. > > cheers, > harry > > > > > On 04/08/2016 10:18 AM, Michiel Leenaars wrote: > > Hi all, > > I just wanted to flag this very interesting opportunity to decide on the > fate of 750 million euro to be spent on the 'future of the internet', > which might be interested to the folks in perpass because this is such a > hard topic to get funding for. The source of this money is the European > Commission's Net Futures directorate which was established to pioneer > and coordinate research, innovation, and policy initiatives on what lies > beyond the current Internet architecture, software and services. > > In its own words: it is now "updating its vision for the area, > identifying key technological challenges and research priorities, and > establishing a research and innovation agenda for the coming years". But > it doesn't mention the whole surveillance crisis which seems like > something that should be the number one priority. > > The fact that they put up an open consultation is the opportunity to > change that lack of awareness. Any input can have a noticeable impact, > because (as astounding as it is) for that huge budget only a few dozen > responses are expected. Any response pointing to the need to invest in > fixing the broken parts of the internet and its accumulated technical > debt first, therefore makes a *real* difference. > > I've written up some background at the NLnet foundation website: > > https://nlnet.nl/people/leenaars/ec > > The deadline is April 10th, which is insanely fast. But then again, > responses need not be too long - a few lines will do as long as the > submission flags somewhere that there can be only one real priority, > which is to harden the internet and repair the fundamental design issues > of the core of the internet in the post-Snowden era. > > Thanks for your help, and have a great weekend! > > Best, > Michiel Leenaars > > (and apologies I've you've already received mail through some other > channel, it is just such a unique opportunity that it touches many > different issues) > > > > > > > > > > > _______________________________________________ > perpass mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/perpass > > > > _______________________________________________ > perpass mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/perpass > -- "Man is born free, but everywhere he is in chains". --Rousseau. _______________________________________________ perpass mailing list [email protected] https://www.ietf.org/mailman/listinfo/perpass
