Convergence
From Blindside
Contents |
[edit] What is it
Convergence
Convergence (converged environments/networks) defines a multi-media environment and/or network where signals regardless of type (i.e. voice, quality audio, video, data, etc.) and encoding methodology may be seamlessly exchanged between independent endpoints with similar characteristics. Convergence in this case requires the overall environment have two primary characteristics: 1) the intelligence to provide translation between disparate signal types and multipoint routing to establish connectivity between requested endpoints 2) The ability to dynamically allocate required bandwidth to support endpoint requirements for each requested session. Convergence as defined by this is independent of signal format and transport media. (Source: Wikipedia)
Media Convergence
Media convergence is a theory in communications where every mass medium eventually merges to the point where they become one medium due to the advent of new communication technologies. According to the theory of media convergence, very soon, there will be no more need for having a television and a computer separate from each other, since both would be able to do the job of the other, ultimately making both extinct and creating a new medium from the synthesis. As a communication theory, media convergence aims to bring together all forms of media into one single device. Media convergence really refers to the merging of capabilities of each individual media channel. Technology is aiding the deletion of individual devices, but this is not what is referred to here. Media convergence is the ability for an increasingly diverse range of content to be delivered through a range of media channels. Unlike the traditional delivery of TV programs through TV, we can now receive TV programs not only on a TV, but also a mobile phone, a computer, an Ipod etc. Convergence is not the reduction of devices but the expansion of channels to content combinations. (Source: Wikipedia)
IP Convergence
IP convergence is the migration of multiple legacy networks of data, voice, images and video into a singe integrated IP based network which facilitates higher efficiency in operational management and utilization of a network.
Technological Convergence
Technological convergence is the modern presence of a vast array of different types of technology to perform very similar tasks. Also included in this topic is the basis of computer networks, wherein many different operating systems are able to communicate via different protocols. This could be a prelude to artificial intelligence networks on the internet and eventually to Technological singularity. Technological Convergence can also refer to the phenomena of a group of technologies developed for one use being utilized in many different contexts. This often happens to military technology as well as most types of machine tools and now silicon chips. (Source: Wikipedia)
Fixed Mobile Convergence
Fixed and mobile telephony convergence aims to provide both services with a single phone, which could switch between networks ad hoc. The Generic Access Network is a standard roaming system between WLANs and WWANs. Among the first handsets capable of this switching are the Nokia E series, which will be used by the British operator Truphone starting its service in May 2006. (Source: Wikipedia)
So... Whats Converging?
Voice over IP, Circuit and Packet, Voicemail and email, Enterprise and Service Provider, Enterprise and Consumer, Optical and Ethernet, Voice and Data, Collaboration, Voice, Video and Data, Device Independence, Wireline and Wireless (Source: Lucent Technologies)
[edit] Impact & Maturity assessment
We estimate the Impact Level at 3, the highest level, based on the number of telecommunications systems involved, the number of commercial operators affected, and the probable increased responsibilities to be transferred to government.
We estimate the Maturity Level at 2 (somewhat surprisingly), as despite rapid progress in convergence as shown below, there is so much more to be done to achieve what technologists argue is possible from convergence.
[edit] Information Assurance issues
Major Threats perceived by businesses with regard to implementing convergence are:
- Network Security – largely with relation to “VoIP Phreaking” or Phone hacking
- The pace of technology evolution and change – and the possible lack of skills and experience to manage change
- Costs & Complexities of implementation
- Business risks associated with dependence on a single network for all ICT needs
Richard Hale, the Chief Information Assurance Executive Defense Information Systems Agency, in an interview on the Military Information Technology - Online Addition is asked:
One trend in the IT world is the convergence of voice, video and every other service onto Internet Protocol networks, such as Voice over IP. A second trend is the broad use of commercial products and globalization. How do these trends affect how you do your job?
He Answers:
The convergence of voice, video and other services onto IP networks means that attacks against the availability of the IP network have the potential to affect the phones as well as the computers. As a consequence, the robustness of the network in the face of cyber attacks has become one of the central information assurance challenges facing DoD. Since DISA is the designer and operator of the department’s core network, we have a wide variety of efforts to harden the devices, the signaling, the infrastructure services, the remote management and the netops centers of the department.
Secondly, regarding globalization and the use of commercial products, DoD uses commercial technology throughout the information infrastructure. I believe this use is necessary if the department is to keep up with the military innovations the technology enables. Since the same commercial technologies are also available to potential adversaries, we believe some adversaries, in addition to employing the technologies in their information infrastructures, will look for vulnerability in the technologies and develop exploits against these. Globalization has moved the design and manufacture of much of the hardware and software used in the commercial products off-shore. This adds risk in that the provenance of certain components may be very difficult to determine.
The department is addressing these challenges through policies about supplier and software assurance, through the judicious use of government-developed technology, through the use of product evaluation, and via our defense-in-depth vulnerability exposure limitation strategy. We must also improve our strategies for maneuvering the infrastructure so the exposure of a given vulnerability becomes more unpredictable, and we must have very agile processes to continuously refresh technology so latent vulnerabilities are flushed out of the infrastructure regularly.
[edit] Implications for UK Government
Our recommendations regarding convergence might seem schizophrenic, on the one hand urging a bunker mentality towards information security, and on the other hand recommending greater openness and flexibility in insuring government’s ability to deliver services capable of meeting users’ needs. However, convergence issues will present a significant challenge to government, and will likely require cross-departmental co-operation to manage. The key will be to keep services open and flexible, but information secure and redundant.
• Mothball programme. Preparations should begin now for the preservation of non-electronic service delivery mechanisms that might be abandoned by public and private sector organisations, including:
o Broadcasting capabilities
o Physical connections to home and business (or transition to utility companies)
o Switching networks for telephony
• Agreement amongst all network users on prioritized cut-out list in case of emergency, with automatic cascading cut-offs with pre-agreed triggers and a named individual or organisation responsible for initiating a cut-off sequence and notification of affected parties when cut-off occurs.
• Security protocols should be strengthened in advance of the introduction of converged devices with new capabilities:
o Suppression of wireless communications capabilities in locations with access to sensitive data or systems
o Disabling access to internal networks from unauthorized devices
o Disabling auxiliary ports on computing devices with access to sensitive information, including floppy disc drives, CD-ROM, DVD and USB ports.
o Removing Bluetooth and other low-power radio access capabilities from devices with access to sensitive information
o Packet-sniffing on utility connections
[edit] Blindside Report on Convergence to CSIA
Overview
The subject is discussed in more detail here: http://www.blindside.org.uk/wiki/Convergence Convergence represents both the greatest opportunity for service delivery and the greatest potential threat to information assurance in our broad basket of subject areas. Our information gathering exercise identified five different areas of convergence. Broadly, they include: • General: Convergence (converged environments/networks) defines a multi-media environment and/or network where signals regardless of type (i.e. voice, quality audio, video, data, etc.) and encoding methodology may be seamlessly exchanged between independent endpoints with similar characteristics. • Media: A theory in communications where every mass medium eventually merges to the point where they become one medium due to the advent of new communication technologies • IP: The migration of multiple legacy networks of data, voice, images and video into a singe integrated IP based network which facilitates higher efficiency in operational management and utilization of a network. • Technological: The modern presence of a vast array of different types of technology to perform very similar tasks. Also included in this topic is the basis of computer networks, wherein many different operating systems are able to communicate via different protocols. • Fixed Mobile: Fixed and mobile telephony convergence aims to provide both services with a single phone, which could switch between networks ad hoc. Each of these different areas are moving quickly and several impact upon each other. Key Findings Each of the above contributes to a broadly similar set of issues relating to information assurance 1. Physical security of information: The increasing capabilities and smaller size of devices with access to networks and sensitive information (miniaturization is discussed elsewhere) makes theft, hacking or corruption easier and hence more likely. 2. Non-physical security issues: Attacks against one network using IP may degrade performance of other networks sharing the same infrastructure, due to: 3. Network dependence: The Internet was famously designed as a back-up communications system for use in case of catastrophic failure of traditional communications via telephone and radio. As more information flows migrate to the Internet, capacity issues are already evident. In future, if satellite broadcasting is abandoned for IPTV or wireless access to telecommunications services makes copper connection to homes redundant, an over-reliance on the infrastructure of the Internet introduces vulnerability to attack. What will be the back-up for the Internet? 4. As services converge, some of them will be life-critical to citizens: IP 999 services, telemetrics for those with chronic diseases, etc. As more devices converge around a single physical platform and single network, the number and importance of services will increase, as will their vulnerability to network failure. (This relates to identity management, as access denial can have health consequences.) 5. Although in one sense convergence provides new and exciting opportunities, dealing with convergence issues may impose unforeseen costs on government services. To give just one example, as technical capabilities make it possible to offer more services to the disabled and elderly, political pressure to provide these services may be strong. Adapting service delivery to account for convergence may be expensive. Certainly, dealing with threat to information assurance programmes will not be trivial. 6. As convergence will evolve over time, and may include divergence (see below), dealing with related issues will in all probability take time and effort. Divergence A related concept involving emerging technology is Divergence. Following the combination of diverse tools into single devices and migration to the most appropriate delivery platform, a new set of innovation involving single purpose tools for more efficient delivery is sure to follow. Some of these will present particular opportunities for public service delivery, notably for disabled citizens, but also for field workers of government agencies. Implications for UK Government Our recommendations regarding convergence might seem schizophrenic, on the one hand urging a bunker mentality towards information security, and on the other hand recommending greater openness and flexibility in insuring government’s ability to deliver services capable of meeting users’ needs. However, convergence issues will present a significant challenge to government, and will likely require cross-departmental co-operation to manage. The key will be to keep services open and flexible, but information secure and redundant. • Mothball programme. Preparations should begin now for the preservation of non-electronic service delivery mechanisms that might be abandoned by public and private sector organisations, including: o Broadcasting capabilities o Physical connections to home and business (or transition to utility companies) o Switching networks for telephony • Agreement amongst all network users on prioritized cut-out list in case of emergency, with automatic cascading cut-offs with pre-agreed triggers and a named individual or organisation responsible for initiating a cut-off sequence and notification of affected parties when cut-off occurs. • Security protocols should be strengthened in advance of the introduction of converged devices with new capabilities: o Suppression of wireless communications capabilities in locations with access to sensitive data or systems o Disabling access to internal networks from unauthorized devices o Disabling auxiliary ports on computing devices with access to sensitive information, including floppy disc drives, CD-ROM, DVD and USB ports. o Removing Bluetooth and other low-power radio access capabilities from devices with access to sensitive information o Packet-sniffing on utility connections Citizen Centric From the citizen’s point of view, as more services are delivered online and more citizens elect to use electronic transactions, they (we) will have different expectations due to convergence: • Will I be able to access and transact with government using non-computing devices? • Will all government services converge on online delivery? What if we don’t want that? • Can I get 24/7 availability of all government services as reliably as provided by the best companies? • Can convergence help us to deal with access issues for the disabled? Related Issues Location Based Services Discussed elsewhere, the convergence implications are large, with information related to a geographic point in space that can be displayed to those equipped with any mobile networking device. Some of those services will be provided by government. Open Standards Open standards will be a key component of convergence, and government regulators may be needed to insure a competitive playing field and equal access to technology providers. This may be especially relevant to small and medium enterprises. Identity Management Both diverged and converged devices and networks will present IDM issues—eg, should services targeting children be delivered via game consoles? What are the IDM implications?
[edit] Timescale
Is the impact of this emerging technology felt - now (less than 18 months) - in 2-5 years? - in 5-25 years - longer-term than that even
The impact of convergence is being felt now. We predict it will increase, both over the medium and long term.
[edit] Examples
Evidence of this emerging technology in practice, eg new items with links
[edit] Comments (attributed)
What people say about this emerging technology (attributed)
[edit] Organisations
Groups which have a particular contribution or point of view about this emerging technology, eg tech businesses, user organisations or advocacy groups
[edit] Documents & research papers
Network security: Protecting Productivity
[edit] Experts (academic, practitioner)
Jeff Pulver 2007 Predictions for the IP Communications Industry and a review of his predictions for 2006
