network impact of web access to device apis
play

Network impact of Web access to device APIs W3C Workshop on - PowerPoint PPT Presentation

Nov 18, 2022 •375 likes •512 views

Network impact of Web access to device APIs W3C Workshop on Security for Access to Device APIs from the Web December 10-11, 2008 Mat Ford http://www.isoc.org Background ISOC is focused on continued operation of the global Internet

  1. Network impact of Web access to device APIs W3C Workshop on Security for Access to Device APIs from the Web December 10-11, 2008 Mat Ford http://www.isoc.org

  2. Background • ISOC is focused on continued operation of the global Internet – Taking a holistic approach to identify issues and opportunities – Many network growth issues and opportunities cross boundaries and cut into competing interests • Our purposes are to: – Identify and help elaborate such cross-boundary network issues – Promote resolution through open dialogue and collaboration in appropriate fora – Promote and validate the open, collaborative Internet development model 10th - 11th December 2 http://www.isoc.org 2008

  3. Background • Concerned with identifying forces pushing towards – islands of networking – emergence of multiple networked realities • Looking to drive a modern understanding and consistent implementation of the end-to-end principle of the Internet • We also aim to support development and deployment of key technologies for stable and secure Internet infrastructure 10th - 11th December 3 http://www.isoc.org 2008

  4. Interest areas • These motivations and concerns lead us to an interest in the topic of this workshop in at least three areas: – Network impact – Open interfaces – Layering 10th - 11th December 4 http://www.isoc.org 2008

  5. Network impact • What are potential impacts on network layer? • What are potential side-effects on network usage? • Web apps inherently more secure as potentially more regularly updated? • Exposing device APIs to the web may increase potential for remote exploit – New generations of network worms and bots 10th - 11th December 5 http://www.isoc.org 2008

  6. Network impact • New patterns of network usage – IP nets typically dimensioned based upon assumptions about end-host behaviour that are increasingly invalid – More M2M and background bulk transfers (P2P) create new pressures on operators – Is there potential for increasingly sophisticated web applications to drive disruptive patterns of network usage? 10th - 11th December 6 http://www.isoc.org 2008

  7. Open interfaces • Open interfaces are the bedrock of the Internet’s success • Gross functionality of the network should not depend on use of proprietary equipment • Open interfaces maximise the potential for innovative applications to emerge, thereby increasing the value of the network to all 10th - 11th December 7 http://www.isoc.org 2008

  8. Layering • Internet != Web • Minimise potential for undesirable interactions between layers • Maximise potential to change properties of one layer without negatively impacting other layers 10th - 11th December 8 http://www.isoc.org 2008

  9. Some examples • Strong(er) coupling between app layer and net layer is generally undesirable: – Optimising app performance by requiring network support – Sharing IP addresses across subscribers will require apps to know more about the net 10th - 11th December 9 http://www.isoc.org 2008

  10. Some (mobile specific) examples • Does the amount of glue needed to provide a seamless user experience work to balkanize services by device/provider/etc? • User expectations of consistent service and behaviour when roaming? • Potentially a lot of middlebox interactions required • Potential conflicts caused by fairly atomic widgets accessing hardware features on a handset (like geo-location data) without any kind of unified version of user preferences at the local level • Lots of questions re: conflicts in policy, data portability, service mismatches while roaming, etc. • And then there’re the security and privacy concerns 10th - 11th December 10 http://www.isoc.org 2008

  11. Concluding remarks • Need for a strong and consistent security model when allowing web apps access to device APIs is obvious – This workshop is valuable, thanks organisers! • Please try to keep the concerns and principles raised here in mind when developing in this space • Increasingly sophisticated web apps are enriching the Internet and exposing device APIs has potential to do the same • Need to be vigilant against harming some fundamental properties that have brought us to where we are today 10th - 11th December 11 http://www.isoc.org 2008

  12. Thanks for your attention! 10th - 11th December 12 http://www.isoc.org 2008

Recommend

A New Approach to Online Location Privacy W3C Workshop: Security for Access to Device APIs from

A New Approach to Online Location Privacy W3C Workshop: Security for Access to Device APIs from

A New Approach to Online Location Privacy W3C Workshop: Security for Access to Device APIs from the Web December 10, 2008 John Morris Center for Democracy & Technology 1 Need for New Approach Current failed model for privacy on the web

227 views • 7 slides
Security for access to device APIs Stewart Brodie ANT Galio Browser Software Team Leader ANT

Security for access to device APIs Stewart Brodie ANT Galio Browser Software Team Leader ANT

Security for access to device APIs Stewart Brodie ANT Galio Browser Software Team Leader ANT Software Ltd. WAFERs: Overview An application model for HTML + JavaScript content Requires no changes to an existing HTML document Only

233 views • 7 slides
Security Assurance for Web Device APIs Maritza Johnson and Steven M. Bellovin

Security Assurance for Web Device APIs Maritza Johnson and Steven M. Bellovin

Security Assurance for Web Device APIs Maritza Johnson and Steven M. Bellovin http://www.cs.columbia.edu/~ { maritzaj,smb } Columbia University December 9, 2008 1 / 7 The Problem Web servers want access to very sensitive The Problem

260 views • 12 slides
InfiniBand Network Block Device Overview IBNBD: InfiniBand Network Block device Transfer

InfiniBand Network Block Device Overview IBNBD: InfiniBand Network Block device Transfer

InfiniBand Network Block Device Overview IBNBD: InfiniBand Network Block device Transfer block IO using InfiniBand RDMA Map a remote block device and access it locally Client side registers as a block device, i.e.

474 views • 25 slides
iCellular: Device-Customized Cellular Network Access on Commodity Smartphones Yuanjie Li 1 ,

iCellular: Device-Customized Cellular Network Access on Commodity Smartphones Yuanjie Li 1 ,

iCellular: Device-Customized Cellular Network Access on Commodity Smartphones Yuanjie Li 1 , Haotian Deng 2 , ChunyiPeng 2 , Zengwen Yuan 1 , Guan-Hua Tu 1 , Jiayao Li 1 , Songwu Lu 1 1 University of California, Los Angeles 2 The Ohio State

802 views • 31 slides
Access Network Access Network Access network: local loop infrastructure It is the last

Access Network Access Network Access network: local loop infrastructure It is the last

Access network and access service Access Network Access Network Access network: local loop infrastructure It is the last mile of the network Connects the user with the first network POP Can use different technologies

369 views • 11 slides
Authorizing network access for IoT devices Mohit Sethi Tuomas Aura Outline Authorizing

Authorizing network access for IoT devices Mohit Sethi Tuomas Aura Outline Authorizing

Authorizing network access for IoT devices Mohit Sethi Tuomas Aura Outline Authorizing local network and Internet access for IoT devices Cloud-managed network-access authoriza=on Bootstrapping security between device and cloud

328 views • 20 slides
Impact of Requirements on Iden3ty Management Solu3ons Frederick

Impact of Requirements on Iden3ty Management Solu3ons Frederick

Impact of Requirements on Iden3ty Management Solu3ons Frederick Hirsch, 24 May 2011 Nokia, Co-Chair W3C Device APIs WG* @Nhirsch *Disclaimer: These

309 views • 7 slides
Hardware and Device Drivers Device virtualization Device drivers and security Bjrn

Hardware and Device Drivers Device virtualization Device drivers and security Bjrn

Outline Faculty of Computer Science Institute for System Architecture, Operating Systems Group What's so different about device drivers? Hardware access Writing device drivers on L4 Reuse of legacy drivers Hardware and Device

619 views • 12 slides
Provisioning IoT with Web NFC Zoltan Kis (@zolkis), Intel Background JavaScript APIs for

Provisioning IoT with Web NFC Zoltan Kis (@zolkis), Intel Background JavaScript APIs for

Provisioning IoT with Web NFC Zoltan Kis (@zolkis), Intel Background JavaScript APIs for IoTivity, Soletta W3C Web NFC editor Web access to hardware Earlier: Network management (DSL) Mesh radio networks DSP (AI applied in

908 views • 39 slides
APIs and Mobile and Online Privacy Scene-setting, Regulations and Controversies W3C Device API

APIs and Mobile and Online Privacy Scene-setting, Regulations and Controversies W3C Device API

APIs and Mobile and Online Privacy Scene-setting, Regulations and Controversies W3C Device API Privacy Kasey Chappelle, Global Privacy Counsel July 2010 Vodafone C2 Vast rates of societal change, increasing all the time TECHNOLOGIC SOCIAL

213 views • 6 slides
From Privacy To Opacity - Digital Me Management W3C Workshop - Privacy for Advanced Web APIs I

From Privacy To Opacity - Digital Me Management W3C Workshop - Privacy for Advanced Web APIs I

From Privacy To Opacity - Digital Me Management W3C Workshop - Privacy for Advanced Web APIs I am ? Karl Dubost Network Global Instantaneous Replicated Permanent ACCESS AND Traces lead to Patterns Privacy is cultural Robots.txt

287 views • 12 slides
Welcome BYOx 2018 @ BPSSC What is BYOx BYOx (Bring Your Own Device) Students bring their

Welcome BYOx 2018 @ BPSSC What is BYOx BYOx (Bring Your Own Device) Students bring their

Welcome BYOx 2018 @ BPSSC What is BYOx BYOx (Bring Your Own Device) Students bring their personal device from home to access our EQ network We are offering BYOx to all students in 2018 Our Network Safe Filtered Internet

749 views • 13 slides
Use cases and Requirements of Device API and UI/UX W3C Web on TV Workshop Jinhong Yang,

Use cases and Requirements of Device API and UI/UX W3C Web on TV Workshop Jinhong Yang,

Use cases and Requirements of Device API and UI/UX W3C Web on TV Workshop Jinhong Yang, Sanghong An 2010.09 KAIST 1 Use cases of Device APIs for Web on TV Watching the television channels on the browser with channel changing Checking

339 views • 7 slides
Network Interfaces & ifconfig what is a network interface? Associated with a hardware

Network Interfaces & ifconfig what is a network interface? Associated with a hardware

Network Interfaces & ifconfig what is a network interface? Associated with a hardware device device fxp0 - Intel EtherExpress Pro Practical Networking Sometimes not loopback interface lo0 - pseudo-device Interfaces

154 views • 3 slides
PBMs and Impact on Access and Affordability Amy Killelea, JD Senior Director, Health Systems

PBMs and Impact on Access and Affordability Amy Killelea, JD Senior Director, Health Systems

PBMs and Impact on Access and Affordability Amy Killelea, JD Senior Director, Health Systems & Policy NASTAD 1) Formulary Inclusion, UM, and Pharmacy Network Design PBMs play an outsized role in prescription drug access, including

495 views • 10 slides
Impact Hub Introducing our Network and Role in the project IMPACT HUB NETWORK |

Impact Hub Introducing our Network and Role in the project IMPACT HUB NETWORK |

Thematic Partner in MedUP Impact Hub Introducing our Network and Role in the project IMPACT HUB NETWORK | CONNECT@IMPACTHUB.NET | WWW.IMPACTHUB.NET Everyone has ideas for making the world a better place. But where does one go to make

696 views • 22 slides
Web on TV with Canon Devices Canon, Inc. Jun Fujisawa Canon Imaging Device Company SVG

Web on TV with Canon Devices Canon, Inc. Jun Fujisawa Canon Imaging Device Company SVG

Web on TV with Canon Devices Canon, Inc. Jun Fujisawa Canon Imaging Device Company SVG Canon cares Image Quality Scalability is the Key to support Higher Resolution W3C SVG Working Group Member since 2000 Device APIs Canon

158 views • 5 slides
BANDANA Body Area Network Device-to-device Authentication using Natural gAit Dominik Schrmann *

BANDANA Body Area Network Device-to-device Authentication using Natural gAit Dominik Schrmann *

BANDANA Body Area Network Device-to-device Authentication using Natural gAit Dominik Schrmann * , Arne Brsch * , Stephan Sigg , Lars Wolf * , 2017-03-15 * Institute of Operating Systems and Computer Networks, TU Braunschweig Ambient

987 views • 25 slides
Software Performance Modeling of a Frame Relay Access Device ADRIAN CONWAY GTE Internetworking

Software Performance Modeling of a Frame Relay Access Device ADRIAN CONWAY GTE Internetworking

Software Performance Modeling of a Frame Relay Access Device ADRIAN CONWAY GTE Internetworking (work carried out at Racal-Datacom ) First International Workshop on Software and Performance Santa Fe, New Mexico Oct. 1998 Frame Relay Network

268 views • 14 slides
Setting Time On A Cisco Device (Manually) Why Set The Time On A Cisco Device? Probably the

Setting Time On A Cisco Device (Manually) Why Set The Time On A Cisco Device? Probably the

Setting Time On A Cisco Device (Manually) Why Set The Time On A Cisco Device? Probably the biggest reason is to be able to correlate events, especially log messages, across a network. If your customers tell you that the network dropped at 5 pm

463 views • 21 slides
Wireless monitoring device Goal Wireless monitoring device monitors existing wireless network

Wireless monitoring device Goal Wireless monitoring device monitors existing wireless network

Wireless monitoring device Goal Wireless monitoring device monitors existing wireless network using independent network to report status. Logical parts Communication Monitoring unit unit Storage Central Unique unit processing unit unit

154 views • 4 slides
$ CURRENT STATE FUTURE: STATE DIGITAL ENTERPRISE Access layer (APIs) SECURITY INTEGRATION

$ CURRENT STATE FUTURE: STATE DIGITAL ENTERPRISE Access layer (APIs) SECURITY INTEGRATION

$ CURRENT STATE FUTURE: STATE DIGITAL ENTERPRISE Access layer (APIs) SECURITY INTEGRATION PERF/SCALE STANDARDS HOW: DIGITAL TRANSFORMATION WEB SERVICES REST MICROSERVICES TASKS (PROCESSES) DECISIONS IF IF (RULES) BUSINESS ON

488 views • 30 slides
Statistical Device Variability and Statistical Device Variability and its Impact on Design its

Statistical Device Variability and Statistical Device Variability and its Impact on Design its

Statistical Device Variability and Statistical Device Variability and its Impact on Design its Impact on Design Asen Asenov Asen Asenov Device Modelling Group Device Modelling Group University of Glasgow University of Glasgow Summary

857 views • 39 slides

More recommend