|
Tuesday, December 20, 2005 The Internet Is Broken -- Part 2We can't keep patching the Internet’s security holes. Now computer scientists are proposing an entirely new architecture. By David Talbot
This article -- the cover story in Technology Review’s December-January print issue -- has been divided into three parts for presentation online. This is part 2; part 1 appeared on December 19 and part 3 will appear on December 21. In part 1, TR Chief Correspondent David Talbot argued that the "Internet has no inherent security architecture -- nothing to stop viruses or spam or anything else. Protections like firewalls and antispam software are add-ons, security patches in a digital arms race." Jonathan Zittrain, cofounder of the Berkman Center for Internet and Society at Harvard Law School, told Talbot that the Internet functions as well as it does only because of "the forbearance of the virus authors themselves." Here's more about why -- and how -- we might start to fix the problem. Patchwork Problem The Internet's design was indifferent to whether the information packets added up to a malicious virus or a love letter; it had no provisions for doing much besides getting the data to its destination. Nor did it accommodate nodes that moved -- such as PDAs that could connect to the Internet at any of myriad locations. Over the years, a slew of patches arose: firewalls, antivirus software, spam filters, and the like. One patch assigns each mobile node a new IP address every time it moves to a new point in the network. [Click here to view graphic representations of David D. Clark’s four goals for a new Internet architecture.] Clearly, security patches aren't keeping pace. That's partly because different people use different patches and not everyone updates them religiously; some people don't have any installed. And the most common mobility patch -- the IP addresses that constantly change as you move around -- has downsides. When your mobile computer has a new identity every time it connects to the Internet, the websites you deal with regularly won't know it's you. This means, for example, that your favorite airline's Web page might not cough up a reservation form with your name and frequent-flyer number already filled out. The constantly changing address also means you can expect breaks in service if you are using the Internet to, say, listen to a streaming radio broadcast on your PDA. It also means that someone who commits a crime online using a mobile device will be harder to track down. In the view of many experts in the field, there are even more fundamental reasons to be concerned. Patches create an ever more complicated system, one that becomes harder to manage, understand, and improve upon. "We've been on a track for 30 years of incrementally making improvements to the Internet and fixing problems that we see," says Larry Peterson, a computer scientist at Princeton University. "We see vulnerability, we try to patch it. That approach is one that has worked for 30 years. But there is reason to be concerned. Without a long-term plan, if you are just patching the next problem you see, you end up with an increasingly complex and brittle system. It makes new services difficult to employ. It makes it much harder to manage because of the added complexity of all these point solutions that have been added. At the same time, there is concern that we will hit a dead end at some point. There will be problems we can't sufficiently patch."
|
|
Share »
Digg this
Add to del.icio.us
Add to Reddit
Add to Facebook
Slashdot It!
Stumble It!
Add to Newsvine
Add to Connotea
Add to CiteUlike
Add to Furl
Googlize this
Add to Rojo
Add to MyWeb
Favorite
Print
E-mail
Massachusetts Institute of Technology
Comments
Guest (Ted Vollers) on 12/20/2005 at 4:45 AM
1
Guest (Adrian Lopez) on 12/20/2005 at 5:17 AM
1
Something really bothers me about this proposed future for the Internet.
Guest (Kerry Bowser) on 12/20/2005 at 8:42 AM
1
Guest (Kerry Bowser) on 12/20/2005 at 8:42 AM
1
Guest (Jim Hayes) on 12/20/2005 at 12:51 PM
1
Spam can be cured on the current Internet by charging per email - I think a penny a msg while Bill Gates promotes a tenth as much, but either will kill off the economics of Spam.
The problem is the suppliers of equipment for the Internet are probably scared Spam will go away, because it will open up massive amounts of bandwidth and squash sales of new equipment needed to expand Internet capacity. Thus they have little incentive to stop Spam. However, killing Spam will more than double the capacity of the Internet and allow new options like IPTV to take over.
Maybe thats the solution - create a secure Internet2 for communications and leave the current infrastructure for IPTC broadcasting, with hardware designed to only accept and display video. Would that make everybody happy?
But to make it truly successful, it should be internatioal in scope.
Guest (webfrog) on 01/11/2006 at 12:00 AM
1
1. Charging for e-mail - talk about an administrative and technological nightmare. With international boundaries blurred or invisible it would be impossible to implement under the current structure of the internet. Anyway the spammers already use off shore systems to send it to try to avoid the U.S. legislation on spam.
2. Keep patching and worry about it later. Sorry but the longer we do that the more disruptive the re-build becomes and I guarantee you it will be disruptive no matter what.
3. The internet is already run by big companies, they provide the very backbone of the internet and are the reason we even have it, without them there would not be an internet.
Guest (wsebfrog) on 01/12/2006 at 12:00 AM
1
One road to improving the internet would be the adoption of IPV6, that would provide over 281 trillion addresses, more than enought for every device that wants to access the internet it's own IP address.
Guest (Bill Priff) on 12/21/2005 at 1:41 PM
1
There is a choice to be made. There will either be a dumb network, and open network protocols - which will spur innovation and some chaos and uncertainty, or there will be a network run by big companies that cant shake the bellhead mindset - which will lead to less freedom and innovation.
Guest (C R Muthukrishnan) on 12/22/2005 at 12:30 AM
1
Guest (muthu) on 03/27/2006 at 12:00 AM
1
Guest (C R Muthukrishnan) on 12/22/2005 at 12:30 AM
1
Guest (Bill Rosenfeld) on 12/22/2005 at 10:59 AM
1
Guest (Ted Vollers) on 12/20/2005 at 4:45 AM
1
Guest (Adrian Lopez) on 12/20/2005 at 5:17 AM
1
Something really bothers me about this proposed future for the Internet.
Guest (Jim Hayes) on 12/20/2005 at 12:51 PM
1
Spam can be cured on the current Internet by charging per email - I think a penny a msg while Bill Gates promotes a tenth as much, but either will kill off the economics of Spam.
The problem is the suppliers of equipment for the Internet are probably scared Spam will go away, because it will open up massive amounts of bandwidth and squash sales of new equipment needed to expand Internet capacity. Thus they have little incentive to stop Spam. However, killing Spam will more than double the capacity of the Internet and allow new options like IPTV to take over.
Maybe thats the solution - create a secure Internet2 for communications and leave the current infrastructure for IPTC broadcasting, with hardware designed to only accept and display video. Would that make everybody happy?
But to make it truly successful, it should be internatioal in scope.
Guest (Bill Priff) on 12/21/2005 at 1:41 PM
1
There is a choice to be made. There will either be a dumb network, and open network protocols - which will spur innovation and some chaos and uncertainty, or there will be a network run by big companies that cant shake the bellhead mindset - which will lead to less freedom and innovation.
Guest (Bill Rosenfeld) on 12/22/2005 at 10:59 AM
1
Guest (Adam) on 02/04/2006 at 12:00 AM
1
Guest (Kevin) on 03/07/2006 at 12:00 AM
1
The people and companies cited in this article have a lot to gain by a massive change to the Internet. Akami, Microsoft, Internet2, etc. would get to charge everyone for new products. Computer scientists are always dieing to scrap the status-quo in order to design and put their name on the next new thing. Scrutinize every word they say.