The Internet today has major flaws. What can AMS-IX do to overcome them?

It is impossible to re-engineer the existing Internet. Too many companies are relying on the Internet Protocol and it still adds value for the common user to make all the security and privacy risks worthwhile. We can see this for example, in the way companies handle the problem of address space. The Internet originally used 32-bit addresses, which means that there is a limited amount of address space. This problem was already flagged at the end of the 90s, and it was addressed with the introduction of new 128-bit IPv6 addresses. However, most of the internet organisations have not, or are still in the progress of, migrating to IPv6. With the exhaustion of IPv4 address space all kind of issues start to occur, one of which is the barrier it creates to new service providers on the Internet.

One way to go about this, is to build internets that operate parallel to the current Internet. These new networks connect companies with similar or common goals. They use the networks for specific applications. And, most importantly, they make and abide to their own set of networking rules. This way they can ensure security and trust within their community.

The idea of building new networks that operate next to the current Internet is not as revolutionary as it sounds. In many areas, companies and organisations are working along similar lines. The Dutch government for example, has its own Diginetwork that operates next to the Internet. It is basically a collection of interconnected governmental networks operating under their own rules for privacy and security. Another example can be found with the GRX, AMS-IX’s interconnection platform for exchange of roaming GPRS traffic between mobile operators. The traffic is based on guidelines set by the GSMA.

But there are a lot of possibilities. A great use case for building such a network can be done in the financial sector, especially when it comes to the communication between banks and their users. Momentarily, banks deliver all their services as IP traffic on their network. As a result, if the customer portal of the bank is hit by a DDoS attack, users can be blocked out. It is, however, also possible that the banks organize their network traffic with their users via a separate network thus ensuring the continuity of their services.

AMS-IX is positioned to help, initiate and build these new networking communities. We have been operating at the core of the Internet for more than 25 years. Our interconnection platform in Amsterdam connects more than 875 networks and it is neutral ground for all these organisations. We already have a lot of experience with measures to secure the Internet’s routing infrastructure, like the use of RPKI (Resource Public Key Infrastructure) and the implementation of MANRS (Mutually Agreed Norms for Routing Security). We operate with no commercial goals and for the good of all internet companies, which puts us in the position to address some of the general problems of the Internet. Next to that, we have excellent ties with academic organisations, universities and other associations like RIPE, NLnet Lab and ISOC, some of which have initiatives of their own addressing some of the problems of the functioning of the Internet.

AMS-IX can, first and foremost, assist in the development of new technical standards that can help building these new networks. In its most simple form, it means playing a role as neutral intermediary in the development of these new networking communities, facilitating rules on which the networks are to operate. Additionally, it can also mean participating in the development of new alternatives for the Internet Protocols like RINA, SCION and NDN. AMS-IX is already participating in the 2STiC program, a joint research program, where AMS-IX together with NLnet Labs, SIDN Labs, SURFnet, TU Delft, the University of Amsterdam and the University of Twente, aim to test some of these new protocols. But there are fields of technological testing and engineering where AMS-IX can play a role as well, like testing and developing new encryption technologies to be used in a networking environment.

AMS-IX can also play a role in safeguarding the neutrality of infrastructure to be used for the common good. An interesting use case could be the 5G roll-out in the Netherlands. Many enterprises want to operate their own 5G networks that operate next to networks of telecom operators. AMS-IX can be used as a neutral Exchange point and facilitator of interconnection.

Of course, there is also a lot that needs to be done outside the scope of AMS-IX. Governments for example, need to adapt their legislation so that it is more suited to the current workings of the Internet. The GDPR is an excellent first step to give civilians more control over their personal data. Next to that, quality standards need to be developed around internet technology. For example, currently, poorly secured IoT devices can be sold without any restrictions. A new CE marking for IoT devices would be very welcome.

For 25 years, AMS-IX is playing a leading role in developing and growing the Internet. It brought much good, but we can now clearly see that the Internet also has some flaws which should be the focus of our attention in the future.