NSF Tags $30M For Game-Changing Internet Research 119
coondoggie writes "So you want to build a better Internet? The National Science Foundation today said it would spread $30 million over 2-4 projects that radically transform the Internet 'through new security, reliability and collaborative applications. The NSF said its Future Internet Architectures (FIA) program wants: "Technological innovations and the requirements of emerging and yet to be discovered applications, the Internet of the future is likely to be different from that of today. Proposals should not focus on making the existing Internet better through incremental changes, but rather should focus on designing comprehensive architectures that can meet the challenges and opportunities of the 21st century."'"
Likely to be different? (Score:5, Insightful)
So, the internet of the future isn't going to be a general-purpose protocol-agnostic world-wide data network for sharing and communication of information?
Uh, can I opt-out of the future?
Step 1: (Score:5, Insightful)
I can solve this easy (Score:3, Insightful)
No need to create new tech to do that, I can increase the security, reliability, and the collaborative potential of the internet easily, just get rid of Windows. There, can I have my $30 mil now?
Best to keep doing patches (Score:4, Insightful)
Re:Likely to be different? (Score:1, Insightful)
That'd be a shitty system. Just wait until some spammers steal your private key, and send out billions of spam emails as if from you. You won't be able to yell, "Disregard! I suck dicks!" fast enough. And even if you do, people will still think you did it, since the system is so "secure".
Re:I can solve this easy (Score:3, Insightful)
Not to mention the numbers speak for themselves, despite having over 90% of the pc market share, Microsoft has less than half that [pcworld.com] and that share is continuing to decline. Why is that? Because cracking Windows is pretty trivial, and if a company has important data they want to protect, they sure as hell aren't going to go Windows.
Microsoft has never paid anything but lip service to security, and I suspect they never will. Oh well, the sooner the world is rid of Windows Server, the better.
Re:I can solve this easy (Score:3, Insightful)
I don't know if you are an arrogant Mac user or a Pompous Linux Guru, but you have to realize that the vulnerabilties in Windows do not make the FUNDAMENTAL vulnerabilities in other systems go away.
If Microsoft folded up shop tomorrow and the only Machine you could get at a big store was a Mac, one of two things would happen. Either A) More and more viruses would pop up for Macintoshes. And yes, there are some, so don't try and deny that. Or B) Macs, being locked into a very specific hardware set would have to adopt a more open policy (opening more holes) or It would cause some serious stagnation in the producers of other computer parts - completely ruining all competition and slowing all progress.
And if everyone were using Linux, it would be just the same as before. Everyone would be Sudo'ing this and that and hackers will exploit any setup the user uses to make their PC Easier.
You need someone like Microsoft to be the scapegoat for the idiot masses so that more secure systems can even exist.
Microsoft is just catering to a need. The "need" is that people want to use technologies and networks without understanding what they are using or at least learning about their correct use. So long as people think this is a great idea and refuse to invest a little time learning about the tools they use every day, the security situation is not going to improve. I'm actually fine with this; people who fall for phishing attempts and the like are merely getting out of the system what they were willing to put into it. It concerns me that this is not a technological problem but technical solutions are being proposed for it. Those can only have the effect of restricting the free and open network that is available today for anyone who wants to learn how to use it.
Adoption (Score:5, Insightful)
The folks who generally engineered the internet had decent enough foresight from a technical standpoint. It is the BIG Telco's and all their 'peering', 'filtering', 'throttling', and combined unwillingness to invest in new infrastructure that puts the choke hold on our tubes (pun intended). Do you expect the major Tier 1's to drop billions of $$$ to adopt, 'cuz I sure as hell don't.
Re:Likely to be different? (Score:4, Insightful)
If only the future had opted into the past.
Quote from TFA:
From the Network World article: The NSF says it won't make the same mistake today as was made when the Internet was invented, with security bolted on to the Internet architecture after-the-fact instead of being designed in from the beginning.
"We are not going to fund any proposals that don't have security expertise on their teams because we think security is so important," says Darleen Fisher, program director
And this really is the crux of the problem isn't it?
Rampant SPAM (95% of all email), deep packet inspection, attacks, bot nets, the list goes on. Almost all the abuses we suffer daily on the internet are due to the security-as-an-afterthought model.
There will be those (there always are) who insist that this is nothing more than a government take over and the installation ob yet more back doors. There is nothing that can be done to appease that viewpoint, even open standards and open source will not suffice.
But I am not prepared to believe we can not improve upon what was done 40 years ago given the number of minds and the level of technology we have to apply to the problem today.
We defend the status quo because we know it, not because it is optimal, not because it is even close to being fully functional, and certainly not because it is fair.
Deal with political problems in the political arena. But in the mean time, lets fix our tools.
Re:Likely to be different? (Score:4, Insightful)
Rampant SPAM (95% of all email), deep packet inspection, attacks, bot nets, the list goes on. Almost all the abuses we suffer daily on the internet are due to the security-as-an-afterthought model.
Not really.
Bot nets exist because you can never stop people from installing software no matter how scary your warning dialogues about untrusted sources are (and in fact throwing up too many is counter-productive).
Spam and DOS attacks are because you can't prevent the bot nets.
Most of the real security problems are at the OS/application level. Not the underlying internet.
Re:Likely to be different? (Score:2, Insightful)
"Most of the real security problems are at the OS/application level. Not the underlying internet."
Sure. The Internet design avoids any security problems by officially assigning the problem to somebody else.
Re:Likely to be different? (Score:3, Insightful)
No, it's because there aren't many security problems to solve at the IP layer or below.
You can't stop botnets or spam by putting security into the internet itself. Not without breaking what the internet *is*.
Re:Likely to be different? (Score:3, Insightful)
Who says a new design has to use IP?
So... you're planning on introducing a bunch of security problems below the transport layer?
You'll still have to solve all the problems again at the application layer!
Remember, at the time it was designed, there was no "is".
Yeah instead there was a "designed to be", and it was designed to be what I described in my first post. You can break that if you want. I like it.
Re:Likely to be different? (Score:3, Insightful)
We can, quite easily (on the technical front), but it doesn't take any stunning new transformative technology, just the kind of incrementalism that the effort here disdains. Its not like the problems of SPAM and other similar problems haven't already spawned technologies designed from the ground up as complete "super-replacements" (that is, replacements with broader general applicability than the replaced system) that are also designed to avoid the problems with the replaced systems. For email and the problem of SPAM, AMQP (a generalized messaging protocol which subsumes, but goes far beyond, the function of email) is designed from the ground up to avoid the possibility of recipients being spammed.
The problems with replacing existing technologies with more secure ones is more of a social problem than a technical one. Putting money into technical research that specifically requires that it go only into things that are radically different than what exists now -- and thus a bigger social problem to get people to transition to -- don't help at all.