[kictanet] Kenya IGF 2010, Discussions :Day 4 of 8 Theme : Critical Internet Resources

Judy Okite judyokite at gmail.com
Thu Jul 8 12:06:48 EAT 2010 

Dear All

thanx McTim, Mwas, Walu, Barrack.....

for your comments, thus far.....

clearly, there are those things that we cannot explain in nontechnical
terms....:-) and i understand that this a passion for some of us and hence
we could use some very strong language....

my question is how can we change that?

who should be worried about DNNSEC? and why are they not?

IPV6- .we are not read or is it we are far from ready? who and what can we
do?

AfriNIC in Africa and KENIC in Kenya have had capacity building sessions on
IPV6 have they yielded any results?


queries, comments 'fires' -:) are welcome.

Kind Regards,



On Thu, Jul 8, 2010 at 10:30 AM, Barrack Otieno <otieno.barrack at gmail.com>wrote:

> Thanks Judy for bringing up an exciting discussion at least you brought on
> board the consumers albeit through friendly fire :-), @ Alex, even in
> Lancaster very few went but the benefits are there for all i am sure we are
> on the right track. @ Walu i suppose i agree with your sentiments the
> problem is the mentality, we are a copy paste society even though we are
> slowly moving out of this, i suppose the only way we can change is for the
> governmnet to recognize and reward innovation, we have made some attempts in
> this direction but the have not been very successfull, as a country we might
> need to review our strategy is so far as technologically inspired R&D is
> concerned, i had an opportunity to visit the University of Nairobi Labs one
> day and i was amazed at what was going on inside that building unfortunately
> brilliant ideas end in the lab since there is no one to expose them, i
> suppose we might need to review our approach towards technology incubators @
> Mich you couldnt have put it in a better way, it will take a few daring
> organisations to help us cross over, as you have rightly mentioned all that
> Mwanainchi wants is stable secure and efficient Internet, however we need a
> people who will ensure that this is the case and congratulations for doing
> that alongside McTim, the KIXP team, Walu at Afrinic, CCK and Kenic, on
> another note i suppose CCK should include some of this terms in its consumer
> outreach programs to educate Mwanainchi starting at school level.
>
> On Thu, Jul 8, 2010 at 9:06 AM, Michuki Mwangi <michuki at swiftkenya.com>wrote:
>
>> Hi Judy, et al,
>>
>> McTim wrote:
>> >> 1)  DNSSEC
>> >>
>> >> Definition:  introduces security at the infrastructure level through a
>> >> hierarchy of cryptographic signatures attached to the DNS records.
>>
>> DNSSEC is Security Extensions of the DNS system (DNS protocol). Am not
>> particularly in favor of using the terms infrastructure level since
>> being a techie it means at layer 2.
>>
>>
>> >> The stability, reliability and security of DNS data is paramount to any
>> Top
>> >> level domain (TLD)
>> >>
>> >> In non- technical terms, what is in it for Kenya? why should we discuss
>> it?
>> >
>> > There is nothing in it for Kenya that does not hold true for Internet
>> > users from other nations. I really don't understand why we try to use
>> > a nation state POV in Internet Governance, it is not at all helpful
>> > IMHO.
>> >
>> > We should discuss it to make folk aware that it is there if they
>> > should choose to use it, but also to make them aware that if it is not
>> > implemented, then we are just using the current "vanilla" DNS.  Some
>> > have thought that if the root zone is signed AND we do NOT implement
>> > DNSSEC, then we will be "offline".
>> >
>>
>> With a significant push for online services mainly banks and e-Govt, i
>> would want to believe that the recent phishing scams experienced by some
>>  of the local banks would be sufficient enough for this to be considered.
>>
>> Well if you may, let me indulge you with my personal experience with my
>> bank regarding online transactions.
>>
>> My bank approached me with a new service called email authorization.
>> Which means that i can send an email to authorize transactions from my
>> account. Well as exciting as this may sound, i asked how would they be
>> in a position to validate that am the sender. At that point the bank had
>> no way to do so.
>>
>> All the same, i went ahead and said, i have a PGP key, would you be
>> willing to exchange keys with me so that you have a way of validating
>> that am the sender i.e encrypt my messages or digitally sign them for
>> security purposes. At that point it was clear that such a feature did
>> not exist.
>>
>> I have to give credit to my bank for taking the bold step of introducing
>> such a service. I would however have been even more glad if they
>> supported digital email signatures or PGP for email authorizations. But
>> then again, how many people actually use this?.
>>
>> >> 2)      IPV6 –
>> >>
>> >>
>> >> a)      Regulatory-
>> >>
>> >> Last year, there was a suggestion that KEBS or KRA should ensure that
>> no
>> >> hardware or software should be allowed into the country that is not
>> IPV6
>> >> compliant.
>> >>
>> >> Any updates on that? Who should be in-charge?
>> >
>> > I am of the opinion that if a person or org wants to live in a v4
>> > world, then a nation state sholdn't preclude them from doing that.
>> > Having said that, I think it would be useful to point out that most
>> > (if not all) kit imported (new and used) is either v6 ready or with a
>> > few software changes, can be made v6 ready.
>> >
>>
>> My concerns is if a majority is buying from ISP lists (used hardware)
>> the upgrade path to V6 is non-existent for some (because the are end of
>> life products) or far too expensive to make a business case.
>>
>>
>> >> b)      How prepared are we (Kenya) any statistics?
>> >
>> >
>> > I challenge all listers to ask for native v6 service from their
>> provider.
>> >
>> > Milestone:
>> >
>> > When everyone on this list has turned on Ipv6 on their Windows
>> > machines AND gotten a (free) IPv6 tunnel from a tunnel broker service,
>> > that will be a real Milestone.  I did both of those things ~7 years
>> > ago.  It's really not rocket science.
>> >
>> >
>>
>> Maybe its a high time we changed the perception here. All users want is
>> the "Internet" v4 or v6 thats not for them to care about. All i want is
>> my internet to work period. If you think about it a significant number
>> of us have one time or another used a USB Dongle for IP connectivity.
>> This service often assigns IPs dynamically hence a significant
>> percentage of subscribers will not have the interest to change the IP's
>> if the "internet is working". Unless they are technically inclined and
>> know what they need to do (read awareness).
>>
>> As such, making the providers understand the pros and cons of early
>> adoption would be IMHO a more significant approach. The following are
>> some of my opinions as to why early adoption maybe valuable to service
>> providers.
>>
>> 1) Gain operational experience. - There's limited operational experience
>> in the v6 world. As such the earlier you can get involved with it the
>> better. This recent event titled Google IPv6 Implementors conference
>> shed some light on what the early implementors experiences -
>> http://sites.google.com/site/ipv6implementors/2010/agenda
>>
>>
>> 2) With IPv6 resources currently free to all AfriNIC members, it
>> probably worth acquiring the resources now to build that operational
>> experience. There's a growing amount of content available on IPv6 and
>> going forward building transition mechanisms (IPv4 to access IPv6 only
>> content) will be adding significant costs and complexities on the
>> network than having native IPv6 running. As such a phased adoption
>> strategy/plan is more financially friendly than one thats driven by
>> demand - as things cost alot more then.
>>
>> my 2 cents.
>>
>> Michuki.
>>
>>
>>
>> _______________________________________________
>> kictanet mailing list
>> kictanet at lists.kictanet.or.ke
>> http://lists.kictanet.or.ke/mailman/listinfo/kictanet
>>
>> This message was sent to: otieno.barrack at gmail.com
>> Unsubscribe or change your options at
>> http://lists.kictanet.or.ke/mailman/options/kictanet/otieno.barrack%40gmail.com
>>
>
>
>
> --
> Barrack O. Otieno
> +41767892272
> Skype: barrack.otieno
>
> _______________________________________________
> kictanet mailing list
> kictanet at lists.kictanet.or.ke
> http://lists.kictanet.or.ke/mailman/listinfo/kictanet
>
> This message was sent to: judyokite at gmail.com
> Unsubscribe or change your options at
> http://lists.kictanet.or.ke/mailman/options/kictanet/judyokite%40gmail.com
>
>


-- 
“To live is to choose. But to choose well, you must know who you are and
what you stand for, where you want to go and why you want to get there.”
Kofi Annan
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.kictanet.or.ke/pipermail/kictanet/attachments/20100708/e0631ef6/attachment.htm>

More information about the KICTANet mailing list