About the Standards Blog
Is the Path to Secure Elections Paved With Open Source Code?John P. Mello Jr.
LinuxInsider –August 17, 2017 - Increased use of open source software could fortify U.S. election system security, according to a [recent] op-ed published in The New York Times.
Former CIA head R. James Woolsey and Bash creator Brian J. Fox made their case for open source elections software after security researchers demonstrated how easy it was to crack some election machines in the Voting Machine Hacking Village staged at the recent DefCon hacking conference in Las Vegas...
Open source software has proven to be so reliable and secure that it's being used by the U.S. Defense Department, NASA and the U.S. Air Force, noted Woolsey and Fox...
"The easiest way to hack an election machine is to poison the update on the update server at the manufacturer level before the election," Scott explained. "Then the manufacturer distributes your payload to all its machines for you.".. Full StoryNew Data Security Network Launches to Champion and Promote Data Sanitization Best PracticesPress Release
International Data Sanitization Consortium –August 16, 2017 - Nearly 12 million records have been exposed since the beginning of 2017, according to Identity Theft Resource Center (ITRC). Although data sanitization is an important step in preventing sensitive data from being accessed or breached, it's still relatively unknown and often misunderstood within the technology and IT security industry. Today, a new independent network, known as the International Data Sanitization Consortium (IDSC), has launched to champion and promote data sanitization best practices.
Founded in July 2017, the organization's mission is to eliminate ambiguity around data sanitization, including terminology, standards and guidelines. This is an area that requires serious attention, as a recent survey of IT professionals worldwide found. When asked to identify the correct definition of data sanitization, 64 percent failed to choose the correct answer. On top of this, media reports and data recovery studies have repeatedly proven just how easy, common and dangerous it is for data to be recovered â€“ all because devices had not been sanitized before they were discarded, recycled, traded in, resold or reused.
Data sanitization is defined as the process of deliberately, permanently and irreversibly removing or destroying the data stored on a memory device to make it unrecoverable...There are three methods to achieve data sanitization: physical destruction, cryptographic erasure and data erasure.
IDSC's members include influential technology and IT security experts across academic institutions, analyst firms, software providers, hardware manufacturers, IT Asset Disposition vendors and enterprise businesses... Full StoryLAUNCHING THE WEBASSEMBLY WORKING GROUPBradley Nelson
W3C.org –August 15, 2017 - For over two years the WebAssembly W3C Community Group has served as a forum for browser vendors and others to come together to develop an elegant and efficient compilation target for the Web. A first version is available in 4 browser engines and is on track to become a standard part of the Web. Weâ€™ve had several successful in-person CG meetings, while continuing our robust online collaboration on github. We also look forward to engaging the wider W3C community at the WebAssembly meeting at this yearâ€™s TPAC.
With the formation of this Working Group, we will soon be able to recommend an official version of the WebAssembly specification.
For those of you unfamiliar with WebAssembly, its initial goal is to provide a good way for C/C++ programs to compile to run on the Web, safely and at near-native speeds... Full StoryGrab a fork! Unravelling the Internet of Things' standards spaghettiDanny Bradbury
The Register –August 14, 2017 - The great thing about standards is that there are always so many to choose from. We've seen the standards forest grow countless times before. The Internet of Things is a vast digital petri dish for them, and they just keep growing.
Recently we've acquired another initiative to pull together vendors working in IoT. It's called EdgeX Foundry, and it's the latest effort from the Linux Foundation.
Just don't call EdgeX Foundry a standards initiative, though, or you'll disappoint Philip DesAutels, the foundation's senior director of IoT. "We don't do standards," he says. "We do open-source software that defines effectively a de facto standard." OK, then.
The foundation's modus operandi is to create open-source reference software that others can draw on for their own implementation. It has an automotive Linux for car vendors to work from, for example, and its own blockchain implementation, called HyperLedger.
The Linux Foundation doesn't have just one de facto not-standard for IoT, though â€“ it has several...
There are other efforts to harmonise connected components in the industrial space. AT&T, Cisco, General Electric, Intel and IBM founded the Industrial Internet Consortium (IIC)...
"The consumer side has been riddled with vendors trying to offer end-to-end solutions," says DesAutels. Vendors release their own frameworks and then muscle everyone else to join in. That's why Google released Works with Nest and why Apple has HomeKit...Consequently, the path to an interoperability layer in the consumer IoT world had been rocky...
Why is this space so cluttered? It's about vendor politics â€“ and it always has been...
Will we ever arrive at one IoT standard to rule them all? Wilder has identified at least 90 of them, but believes everything will one day just run over IP,.. Full StoryIndustry leaders to form consortium for network and computing infrastructure of automotive big dataPress Release
Toyota –August 11, 2017 - DENSO Corporation, Ericsson, Intel Corporation, Nippon Telegraph and Telephone Corporation (NTT), NTT DOCOMO, INC., Toyota InfoTechnology Center Co., Ltd. and Toyota Motor Corporation today announced that they have initiated the formation of the Automotive Edge Computing Consortium. The objective of the consortium is to develop an ecosystem for connected cars to support emerging services such as intelligent driving, the creation of maps with real-time data and driving assistance based on cloud computing.
It is estimated that the data volume between vehicles and the cloud will reach 10 exabytes per month around 2025, approximately 10,000 times larger than the present volume. This expected increase will trigger the need for new architectures of network and computing infrastructure to support distributed resources and topology-aware storage capacity. The architectures will be compliant with applicable standards, which requires collaboration on a local and global scale.
The consortium will focus on increasing network capacity to accommodate automotive big data in a reasonable fashion between vehicles and the cloud by means of edge computing and more efficient network design. It will define requirements and develop use cases for emerging mobile devices with a particular focus on the automotive industry, bringing them to standards bodies, industry consortiums and solution providers. The consortium will also encourage the development of best practices for the distributed and layered computing approach recommended by the members.
In the coming months, the aforementioned companies will initiate activities to invite relevant global technology leaders and expand the consortium. Full StoryOpenAPI 3.0 is here â€” Important milestone in the growth of the API economyGabriela Motroc
Jaxenter –August 10, 2017 - The Open API Initiative, a Linux Foundation project created to advance API technology has reached a new milestone. After nearly two years of work, version 3.0 finally saw the light of day. One of the highlights of this release is â€œits ability to drive the full API lifecycleâ€ but there are a lot of new updates and capabilities that deserve your attention...
â€œOAS 3.0, which is based on the original Swagger 2.0 specification, is meant to provide a standard format to unify how an industry defines and describes RESTful APIs..." Full StoryBeyond TCP: Meet the Next Generation of Transport ProtocolsTim Siglin
Streaming Media –August 10, 2017 - From plain old transmission control protocol (TCP) to newly conceived protocols, the variety of methods for delivering video across the internet is a key area of interest for the entire streaming media industry. After all, what good is the best-quality capture and compression if the delivery method can't keep pace?
Back in January, in an article called â€œLatency Sucks!â€ that dealt with lowering the overall delivery time of interactive or streaming video, we touched on a few newer transmission protocol derivatives: web real-time communication (WebRTC), reliable user datagram protocol (UDP), and plain old real-time protocol (RTP). Lower latency typically equates with lower-quality compression, based on the assumption that the longer the time given to processors to compress a video image, the better the quality. In this article, we will take a deeper look at the underlying protocols and discuss which ones make sense for particular applications...With an eye on lowering latency and increasing reliability, while playing nicely with the neighborsâ€” neighboring packets and networking gearâ€”letâ€™s now explore alternate transmission protocols that expand on or replace TCP as the reigning streaming transmission champ... Full StoryLibreOffice 5.4 released (free and open source office suite)Brad Linder
Liliputing –August 9, 2017 - ...LibreOffice 5.4 is now available for Windows, Mac, and Linux and it brings a new standard color palette and a number of improvements across the board.
Among other things, LibreOffice 5.4 should render imported PDF files better, file format compatibility has been improved, and thereâ€™s support for embedding videos in PDF files exported from Writer and Impress (the LibreOffice equivalents of Word and PowerPoint).
Other updates include support for pivot charts in Calc (the spreadsheet app), the ability to remember your last-used settings when exporting Calc files in CSV format, new context menu items for working with sections, footnotes, endnotes, and styles in Writer, and improved performance for LibreOffice Online (which is designed to be installed on a serverâ€¦)...LibreOffice 5.4 will be the last major 5.x release... the next major release is expected to be LibreOffice 6.0. Full StoryNIST Publishes NICE Cybersecurity Workforce Framework: Categorizing and Describing Cybersecurity Work for the Nation
NIST.org –August 9, 2017 - The National Initiative for Cybersecurity Education (NICE) is pleased to announce the release of Special Publication 800-181, the NICE Cybersecurity Workforce Framework. This publication serves as a fundamental reference to support a workforce capable of meeting an organizationâ€™s cybersecurity needs. It provides organizations with a common, consistent lexicon that categorizes and describes cybersecurity work by Category, Specialty Area, and Work Role. It is a resource from which organizations or sectors can develop additional publications or tools that meet their needs to define or provide guidance on different aspects of workforce development, planning, training, and education... Full StoryNew houses will have Alexa and Wi-Fi built into the wallsBrett Williams
Mashable –August 8, 2017 - The Wi-Fi Alliance, the non-profit organization that certifies Wi-Fi enabled products, is ready to usher in a new era of the smart homes.
Traditionally, there have been no set standards for integrating a wireless network directly into home blueprints, unlike other essential utilities, such as plumbing and electricity. But as our houses continue to be filled with IoT appliances that depend on the internet, a strong network signal is becoming increasingly important.
The org has issued a new set of guidelines for homebuilders to follow to include wireless networks in their designs, which were drafted with an eye to the needs of a connected future, according to the Wi-Fi Alliance announcement:
The requirements consider the increasing number of smart home devices expected in homes over the next decade, and the growing demand for data-intensive usages such as virtual reality and simultaneous 4K video streams. Wi-Fi Home Design will scale to accommodate both the growth in Wi-Fi devices and high-bandwidth applications....
The all-over coverage will come courtesy of strategically placed LAN access points (APs) throughout the floor plan based on the Wi-Fi alliance guidelines, which should provide a strong wireless network in the entire home and even outside of it, to patios and garages.... Full Story