Quite exciting to see another step in remote measurement systems at USENIX Security in August. This particular piece is on how to recover DPI policies at scale.
Asides
It’s great to see that Research into Human Rights Protocol Considerations has been published as an RFC. An interesting document exploring how the technical protocols of the Internet interact with our real-world values.
I’ll be talking at Linux Fest Northwest in a couple weeks.
Video from my CCC talk last week is here.
Another year, another dive into what’s changed in running a web server. This VM is now basically up-to-date, and supports most of the shiny new web transport improvements, like HTTP/2 and OCSP stapling. Hopefully nothing broke too badly in the process.
Excited to see Satellite chosen as best student paper this year at USENIX ATC. Slides and audio from the talk should be online shortly.
The CS department, as always, is on top of its news releases.
I’m scheduled to give a talk at toorcamp next month about packet spoofing and SP^3.
I’ve begun to transition this site to use Lets Encrypt! for signing of SSL. Because the site has specified an HPKP previously, a transition period is needed where clients can see the old certification signing the intention to transition to the new certification.
That process has started, and the full transition will happen in a couple months. The good news is that the letsencrypt setup process was otherwise painless.
It’s shaping up to be a busy summer. Lessig’s film opens tomorrow, along with the monthly Code for Seattle @ Socrata meetup. This Saturday is Discover Technology, a showcase of civic tech in Seattle.
I’ve updated this domain to include the new HPKP mechanism and a stronger intermediate cert. HPKP supplements the previous HSTS mechanism to define a specific signing key that must be present on subsequent HTTPS interactions with the server, helping to mitigate one class of man in the middle attacks.