USA less supportive for global OSS, Europe to pick up the slack?

November 26, 2019

Reading UK science/tech magazine The Register this evening I noticed the article RISC-V business: Tech foundation moving to Switzerland because of geopolitical concerns. The RISC-V open source CPU foundation decided to move from the USA to Switzerland.

Why?

Quoting from the article:

“Why move to Switzerland? “Incorporation in Switzerland has the effect of calming concerns of political disruption to the open collaboration model … the move reduces concern that a government would restrict the actions of an open source organization,” the group said.”

“From around the world, we’ve heard that ‘If the incorporation was not in the US, we would be a lot more comfortable’,”

‘Ha!’ I thought. These are exactly the types of issues me and s the people behind the FileSender open source initiative wanted to use a software conservancy in Europe. A managed solution for our legal/administrative needs yes, but closer to home please. In a more boring political-legal environment that we understand better. Like the EU.

That desire ultimately resulted in the establishment of The Commons Conservancy in 2016: a Netherlands-based foundation providing a legal/administrative home for open source projects, supporting bring-your-own-governance. TCC provides open source initiatives with a legal/administrative framework, without having to establish or run it. Through TCC the European open source commons has access to a software conservancy in a jurisdiction they’re more familiar with, and a jurisdiction that’s perhaps friendlier to a collaborative global efforts. Australian research network AARNet has a good overview article for those interested.

On the same day I read the article on the sale of the .org registry. Yes, that top level domain preferred by many open source projects and other non-profit intitiatives operating on a global level is being sold. By the Public Interest Registry (ISOC) to Ethos Capital. The article is worth a read if you care about the global internet commons:

https://www.theregister.co.uk/2019/11/26/org_selloff_internet/

It seems the US is becoming less supportive for global non-profit open source initiatives. Perhaps it’s time for Europe to pick up the slack? I’d like a top level domain for global non-profit initiatives that can’t be sold, isn’t under control of a single country, and has a looooong planning horizon.

 

Posted in in English, Open source | Leave a Comment »

3.6 billion plastic toothbrushes a year

November 24, 2019

Yesterday I purchased a wooden toothbrush. My first wooden toothbrush. A nice one, made by Humble Brush, with a rainbow coloured brush bit. Vegan. I guess that’s why the brush bit is still plastic.

On the packaging it says:

“Did you know that 3.6 billion plastic toothbrushes are produced every year? Shockingly, the majority of these will end up in oceans and landfills. Thanks to you, this won’t be one of them.

That’s good. It would have been burned in the municipal waste incinerator regardless, but less plastic is a good thing. Especially considering you’re recommended to replace a toothbrush every 3 months. Why make something to hang around for 300 years when after 3 months I’d like it to go poof.

But.

That’s not what struck me about the number 3.6 billion. There are currently 7.5 billion people on Earth. Even if we assume a fair number of them are too small to need a toothbrush, that leaves billions for whom a tooth brush is not produced. Which means there must be billions without tooth brushes.

I feel privileged.

Posted in General musings, in English | Leave a Comment »

Ingen anleggsveg gjennom Estenstadmarka til Øvre Steinaunet

September 3, 2019

Myndighetene i Norge informerer folk om ting som angår dem, men når det gjelder dispensasjoner fra reguleringsplaner, går det fort i svingene. Se f.eks. her:https://www.facebook.com/groups/528991594575587/

Posted in Uncategorized | Leave a Comment »

Increase TNC conference participation: video posters

March 31, 2017

One can actively participate in TNC to communicate a message in various   ways:

  • full length presentation
  • 5 minute lightning talk
  • poster

All have in common there are usually more offers than available slots. A poster has cost as an additional challenge for the individual: the money and time involved in creating a good poster is non-trivial, compared to a lightning talk. Poster presenters also have to be present to explain the poster.

Idea

Rolling podcasts of lightning talks can offer an extra out-of-program option.

A “lightning podcast” would probably need to be short. 2 minutes, perhaps even as short as one. It’s essentially a commercial for an idea. The author could add a link to for example a longer podcast.

This would effectively be a video poster.

Benefits

  • TNC organisation: this adds an option for TNC attendees to participate in the conference, at low cost.
  • TNC attendee: this adds an option to convey ideas, results etc. to other attendees in a flexible way. It gives an easy to use channel to convey ideas to a wider public that doesn’t have the limitations of the traditional conference channels.

Delivery

In its simplest form it could be streaming a play list of youtube videos. People interested could use their own device to join the playlist.

One could also set up a terminal in the mingling area to display the playlist there. Obviously that would have to be without audio.

With more effort, one could create a video poster booth with loudspeakers. Depending on the size, people could watch a poster together which may be good for discussions.

The simple booth would simply show the automatic playlist. One could imagine adding a control to the booth, for example a tablet on the outside where the playlist is shown, and the currently playing podcast is indicated, but visitor(s) can override it.

Social features

When someone watching a video poster finds it interesting it would be natural to want to contact the author who’d typically be at the conference. Various social features could be considered. As an interested conference attendee you’d typically want to be able to contact the author, perhaps now, perhaps afterwards.

An author has limited options to be physically present. So a virtual presence could be considered. In addition, one could try and make it easier for interested and author to find eachother.

Some ideas:

  • A location app pin-pointing where the poster author is (limited to mingle area, privacy alert)
  • Putting QR code with contact details for each author in the booth
  • Link / QR code to chat room with author, possibly with web-rtc videochat
  • If chat room linkage is done through a mobile app, app could warn user when someone wants contact
  • Link to meeting calender. Could probably be done with Doodle. Let author indicate availability and place and interested attendee pick a slot, or other way around.
  • A variant of the first idea: a “can we meet” button / app: facilitate physical meet-ups in the conference area. Easy functionality: interested party indicates interest to meet up, suggests location and perhaps time, author is buzzed, can say “OK” and/or can make counter suggestion. This would be a sort of a 3-way hand-shake to confirm agreement (and prevent loss of opportunity). The app would be fed with detailed maps of the conference area (mingling space, conference rooms) which are already produced for the conference. An extra feature could be to indicate logical meeting places: at each conference there are several logical meet-up places that are established in the population. Some of these are affiliation-dependent: Nordic participants typically use the NORDUnet booth as an easy to spot meeting place. The GEANT booth comes to mind, stair cases, etc. Anything that’s easily identifyable in a crowd, and where there’s a strong likelihood one see sthe other. Another additional feature could be to allow the attendee to send a picture to the poster author, for those cases where they haven’t met before. The challenge with this particular app would probably be to get a reliable way to alert either party there’s a new message, but that’s no different from the challenge to get other direct messages to people. So there would be a delay, nearly by necesity.
  • Having said all the above, one could also simply create a “call me” button with the video poster / the QR code. Gut feeling: that’s a higher threshold than a specialised IM app.

Some name alternatives

  • Lightning cast
  • Cast lightning
  • Video poster
  • Poster cast
  • Poster podcast

Possible name for a booth with video posters

  • Poster pod
  • Lightning booth

Posted in in English, Professional ideas for the NREN space | Leave a Comment »

Dutch cabinet’s view on encryption

April 22, 2016

After the recent terrorist attacks it’s now common knowledge terrorists use encryption to protect their communication. This lreignited the debate on restricting use of encryption or strength of encryption to guarantee national law enforcement and intelligence functions can get access to the information they need to do their jobs: preventing attacks and upholding law and order.

The Dutch government has published its view on the matter:

https://www.government.nl/documents/letters/2016/01/04/cabinet’s-view-on-encryption

The conclusion:

“It is the responsibility of the cabinet to guarantee the security of the Netherlands and to investigate criminal offences. The cabinet underlines the necessity of lawful access to information and communication in this respect. Additionally, government authorities, companies, and citizens benefit from maximum security of digital systems. The cabinet endorses the importance of strong encryption for internet security to support the protection of personal privacy of citizens, for confidential communication of the government and companies and for the Dutch economy.

The cabinet is therefore of the opinion that at this point in time it is not desirable to take restrictive legal measures as regards the development, availability and use of encryption in the Netherlands.”

 

My interpretation: restricting the use of cryptography or weakening its function ultimately destroys the digital infrastructure modern society depends on. That’s not a solution to the problem, without a functioning society the law enforcement and intelligence functions are not that useful. The Dutch government has chosen to make it the problem of the intelligence community to find a solution for its problems that doesn’t negatively impact the usefulness of the digital infrastructure. As the tools supporting our society become more complex, so do the tools and methods used by the immune system of our society become more complex: there are no simple “one solution solves it all” answers to this problem.

Posted in Uncategorized | Leave a Comment »

Proposal for Vietsch foundation: a student programme for very early stage technology scouting

March 5, 2015

A couple of days ago I had a conversation with John Dyer in his capacity as a trustee of the Vietsch Foundation which was established in memory of Karel .  I understand the foundation will do two things; issue an annual medal for contributions to research networking and contribute to small projects.  This post is about the latter.  In John’s words, it would be projects that contribute to research networking in the wider sense and that without a contribution like this wouldn’t happen. For over a decade I’ve been walking around with the idea to establish a continuous team of students to do very early stage technology scouting for NRENs.  I did my graduation work in an environment like that and found it both inspiring and worthwhile.   I believe it would give NRENs  a continuous influx of fresh ideas, a number of students an inspiring first encounter with the wonderful world of research networking and standardisation bodies and the people involved a great time. This idea to me seemed to fit the purpose and goals of the small project fund of the Vietsch foundation.  After talking it through with John he invited me to write it down and put it forward.  So here we go. You’re being missed Karel, I’m glad I can contribute to your legacy.

A proposal for a student programme for very early stage technology scouting. 

Introduction

In the early years of research networking European NRENs were active participants in the IETF both as participants and as active observers. This ensured early knowledge of the technologies that would become generally available some years down the line. Over the years the NREN participation has gone down, both in absolute terms and relative to the amount of technology developed the IETF and W3C. The relevance of the standards defined in the IETF and the W3C has gone in one direction only: through the roof. Current day research is impossible without the infrastructures built with these standards, education is rapidly going in the same direction. There are reasons why the NREN involvement has diminished but that doesn’t mean it’s a good idea.

Challenges

  • Many students and young professionals I’ve met over the years are unfamiliar with the processes by which standards are established. I don’t think that’s a good situation for a technologist to be in. Black magic has no place in building Internet infrastructure.
  • The IETF and W3C are responsible for most of the standards that make our research and education infrastructure tick. From IP-over-whatever to standardised ways to access a web camera, the entire stack is covered. The breadth of technology developed in both IETF and W3C has widened since I started working in this industry in 1998. Back then one could have the illusion to read all RFCs in use at that time. Very quickly it became apparent there was more development going on than one person could reasonably follow. From my observation there’s more technology development going on than the NRENs can reasonably be expected to keep track of. Most NRENs are business case driven these days. This means there’s limited resources to do R&D. That does not combine too well with an ever growing body of “stuff” to possibly do R&D on.
  • Timing is important. Invest too much too early and you’ve blown your resources on technology that wasn’t at the right maturity level yet. Invest too late and you’re in the dinosaur/laggard group and others will have defined what you and the HE&R (higher education and research) setor have to live with. Both have happened in the NREN world and are likely to happen again. How to deal with this reality where your resources will not map on the challenge?

Be creative 🙂

Proposal

I propose to establish a permanent systematic very early stage technology scouting capability manned with students and volunteer mentors to do systematic very early stage technology scouting for R&E networking.

Students are selected through a competition, based in proposals they sent in. We don’t provide any subjects, we only provide some boundary conditions. Proposals have to specify the relevance to the R&E community. The most promising proposals are selected. Students should come in a team of at least two.  This makes life easier on the mentors as they’ll reflect to themselves.  Students are paired with a volunteer mentor relevant for that particular project. The mentor is responsible for introducing the students to the right people, providing reflections and historical background end explaining the written and unwritten rules of the environment the student works in. The students get at least one funded trip to the standardisation body together with the mentor.

Such a project would typically be short term. Maybe 3 months is enough. Maybe 6 months. There might be pursuits that last a year. It could be thesis work, it could be a summer holiday project. If at any point in time we would have a couple of these projects going on, then after a couple of years you’d have an interesting portfolio of emerging technology that had been looked at and judged on for relevance to the R&E world. View it as shooting with hail. Not all of it will hit the mark but some will. In addition we’ll have introduced at least a number of promising young technologists to the value and values of open systems and open standards and the mechanisms producing them.

A setup like this would help us identify promising emerging technologies for the higher education and research world at an early stage.  Help us decide when to start investing, when we should start building more competence on that particular technology.  Should we maybe get involved in a particular standardisation effort to ensure the use cases of our sector are included in the requirements specification for those standareds?

A programme like this contributes to NREN involvement in standardisation processes and does so in a systematic way. It promotes our core values of open systems and open standards to fresh blood. It sustains our community.  Worst case scenario it will have introduced a number of promising and motivated students to the IETF.

Obviously how many of these types of projects you can have at any point in time depends on the amount of funding available. Once a programme is in place and has proven itself, it should be possible to expand funding if needed. Another limiting factor will be the number of available mentors. I guess you would need a pool of volunteer mentors together covering the different layers in the stack.   Assuming this programme is a longer term effort, a mentor doesn’t have to be available all the time to be part of the fun but could plan periods of availability.   I can’t imagine it would be problem to find enough people for mentoring, as long as travel expenses are covered the work sounds like fun!

With a number of student projects going on at any time after a few years you’d end up with an interesting number of emerging technologies that have been looked at at an early stage in the context of higher education and research applications.  The competition element helps to get the best & brightest in the programme and introduce them to the NREN world.  It glues NRENs, universities and standardisation bodies closer together.  The programme would provide a steady stream of early stage technology scouting input to the NREN world.  I think these would be good things.

Posted in Uncategorized | Leave a Comment »

User-friendly cryptograpic key transport using QR codes

March 3, 2014

The really difficult bit of any large scale crypto-deployment is the key management.  Adding encryption capability to FileSender is hard work but achievable.  Figuring out a way to do the key management with public key or symmetric key crypto is a different ballgame.  It’s been tried, by me and many others and it works.  In a nicely homogenous and controlled environment.  It also works for those relationships that typically last long and have a one-time big investment in key exchange.  You can use snailmail for those.  How to do this in a way that’s both adhoc-friendly, user-friendly, fully digital and scalable in an uncontrolled environment is a different ballgame.

We want a way to let user A encrypt a file, automatically generate a symmetric key and transport that to user B.  User B should be able to take that key, enter it in FileSender and decrypt the transported file.  All digital, no cheating by printing out on paper and forcing users to type in lengths of characters.  We can’t just send the key in plain text by email, that would defeat the purpose.

I had a discussion with Mark Dobrinic about two weeks ago and we came up with an idea for something that just might do the trick.

  • User A generates key K to do the encryption.  Key K is then shown as a QR code.
  • User A uses a smartphone to read the QR code
  • The QR code is now in the smartphone and -presumably- can be transported to user B in some safe-enough way
  • User B receives the QR code and displays it on his smartphone
  • User B clicks on the FileSender download link, FileSender comes up with a QR reading javascript library
  • The camera in User B’s laptop reads the QR code and uses the cryptographic key embedded in the QR code to decrypt the file

Coincidentally a couple of days later Google procured Israeli startup company SlickLogin which did something along these lines but then with sounds for user identification.

We’ll see if this QR method for shipping crypto keys works out.  Out-of-band channels are in development as well.  Sniffing of key material by way of QR telescopes sounds like an interesting future attack vector.  We’ll see.  The concept looks promising enough to invest some effort to investigate.

 

 

 

Posted in FileSender, Professional ideas for the NREN space | Leave a Comment »

Blåbærsyltetøy: how do we deal with strange characters?

August 29, 2012

After running into an issue in AdobeConnect which might be caused by character encoding (it isn’t) I decided it was time to freshen up my knowledge of the basics of internationalisation, character encoding and all of that: how do we deal with all the characters the world’s cultures use to write.  Joel Spolsky has an excellent article which describes it short and to the point:  http://www.joelonsoftware.com/articles/Unicode.html.

Joel is right to write this is the minimum one should know when coding.
In the FileSender project we’ve had to deal with this quite extensively and now finally all the pieces of the puzzle fell in place.  Thank you Xander, thank you Joel 🙂  Interesting to see how the learning process goes…

Posted in Uncategorized | Leave a Comment »

FileSender 1.1.1, ready for FireFox 13 :)

June 5, 2012

One of the projects I work on is FileSender, an open source software package that can be used to build an easy to use large file transfer service.

On May 31st Xander Jansen released a FileSender 1.1 bugfix, version 1.1.1.  The  main reason for this bugfix was the soon-to-be-released FireFox 13 which changed the semantics of a HTML5 File-API function crucial for FileSender: “blob.slice”.   We use that to do chunking of files sent using the HTML5 File-API, which is what allows us to transfer files larger than 2GB without any browser plugins.  About one year ago the people working on the File-API standard discovered they had an inconsistency in some of their semantics and unfortunately this was already implemented in Chrome and FireFox.  Both browsers implemented a fix for that, FileSender duly adapted but we knew it would change again “some time in the future”.  That some time turned out to be this week.

Yesterday evening I upgraded the Uninett FileSender instance, which went without any hitches.  Thank you Xander for doing a good job on FileSender release testing 🙂

Posted in FileSender | Leave a Comment »

My first podcast!

October 21, 2010

Lecture recording, distance learning and podcasting are all tools we try to democratise in the eCampus Norge project.  As part of “proof, pudding, eating” and “eat, dogfood, own” I now try to find out how I can use screencasting (record voice, output of your screen and optionally video) to easily explain how to do stuff in for example AdobeConnect.  Screencasts in that vision become an integral part of the community support mechanism to allow all of higher education and research in Norway to actually use web conferencing tools.  Yesterday I got the first opportunity, I had to answer a question of a colleague on how he could please make AdobeConnect use all of his screen and not just a small chunk.  Rather then making screenshots and then writing on what he needs to do I decided to look into making a screen cast.  After all, I did get my nice new Macbook Pro to “do video stuff” 😉

After some googling for “podcast, Mac” I found that most people were particularly happy with using a program called ScreenFlow.  Only available for the Mac though 😉  You can try it for free but all videos you export have the words “SCREENFLOW” in very big letters plastered over every frame.  It costs US$ 99.  And so far it was worth every øre.  Within 1.5 hours (and three takes 😉  I had produced my first screencast that I was happy enough with.  Recording was effortless.  I think it took me some 30 minutes to learn the functions for cutting off the end and for doing the zoom into the screen on exactly the moment I wanted it to to the level I needed it to zoom.  A significant chunk of this time was spent on finding the right export format and method, establishing a “professional” YouTube account (no YouTube EDU for Norway yet, grrr!), and finding that it looked better on my Mac then it did on YouTube and thus required additional editing.  All in all, with 3 takes and 2 hours of total work I was not unhappy with the end result:

Posted in in English, Podcast | Leave a Comment »

« Older Entries