Networking

Cisco on Wednesday published better-than-expected second quarter financial results, reporting strong product order growth as well as a major product order backlog. All told, Cisco’s Q2 non-GAAP earnings per share came to 84 cents on revenue of $12.7 billion, up 6% year over year.Wall Street was expecting second-quarter earnings of 81 cents per share on revenue of $12.65 billion.

Networking

“We continue to see incredibly strong demand across our portfolio, emphasizing the criticality and relevance of Cisco’s innovation,” CEO Chuck Robbins said in a statement. “Our robust order strength, record backlog and double-digit growth in annual recurring revenue position us well to deliver growth.” Total product order growth in Q2 was up 33% year-over-year, making it the third consecutive quarter of year-over-year product order growth of 30% or higher. Enterprise orders growth accelerated to 37%, and webscale orders grew over 70%.However, Cisco had an all-time high product backlog of $14 billion, increasing more than 150% year-over-year. Within that amount, the software backlog almost doubled to more than $2 billion. “Our incredibly strong demand continues to outpace supply, expanding our backlog of products, software and services,” CEO Chuck Robbins said in on a conference call Wednesday. “Our supply chain team continues to take aggressive action through strong inventory positions, deepening supplier relationships, qualifying alternative components and increased used of expedited freight. There are still significant constraints with semiconductors preventing us from completing manufacturing of some of our products, and that remains a headwind to revenue growth despite very strong demand.”

Product revenue was up 9%. Product revenue performance was led by growth in Secure, Agile Networks up 7%, Internet for the Future up 42%, End-to-End Security up 7%, and Optimized Application Experiences up 12%. Hybrid Work was down 9%.Reflecting Cisco’s transformation to a software and subscription-based business, total Annualized Recurring Revenue (ARR) came to $21.9 billion in the second quarter, up 11% year-over-year. Software revenue grew to $3.8 billion, and 80% of software revenue was subscription-based, up 4 percentage points year-over-year. Total subscription revenue grew to $5.5 billion, representing 44% of total revenue.For the third quarter, Cisco expects revenue growth of 3% to 5% year-over-year and an EPS between 85 cents and 87 cents. The market is expecting an EPS of 86 cents. For the full FY 2022, the company expects revenue growth of 5.5% to 6.5% and an EPS of $3.41 to $3.46.

Tech Earnings More

Soon both Google Chrome, the most popular of all web browsers, and the Firefox web browser will release their 100th version. Now, besides just being a cool number, there are technical issues that come with these anniversary releases. Some of those issues may cause your websites to fail. Yes, fail. Here’s why.

ZDNet Recommends

All web browsers come with a User-Agent (UA). This is a string that browsers send in HTTP headers, so servers can identify the browser.  JavaScript also uses it with the JavaScript navigator.userAgent. Web developers use the UA in all kinds of ways with their server-side programs. The UA’s format is: browserName/majorVersion.minorVersionAs this written typical examples of the latest release versions of browsers UAs are:Chrome: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.54 Safari/537.36Firefox: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:96.0) Gecko/20100101 Firefox/96.0So, what’s the problem here? It’s an ancient one: Date format misconfigurations. The most famous example is the still not quite dead yet Y2K problem. Then, the problem was that most programs of the late 90s and earlier couldn’t deal with four-figure year dates. This time around our problem is that too many website programs can’t deal with three-figure UAs. Yes, it’s that simple.But, while it may be simple, it doesn’t mean that it’s inconsequential. You see, we’ve already had a sneak preview of this problem when we went from 1-figure UAs (1-9) to 10-figure UAs. For instance, Opera 10 wouldn’t render sites correctly back in 2009 and some sites wouldn’t render at all with Firefox 10 because their scripts read Firefox 10 as the out-of-date Firefox 1.0. We can expect all this and more as Chrome and Firefox 100 arrive.

Google and Mozilla are well aware of these coming browser UA problems. Both are working on finding and fixing the headaches.Some of these problems will escape their efforts. For example, while it’s been known for decades that using UAs to determine what web pages or services should be served to a specific browser is a bad idea, that’s never stopped all too many web developers from misusing them anyway. If your website does this, odds are good your site will end up sending an error message instead of web pages to a version 100 web browsers.You can check today if your site has such a problem using a Chrome feature flag, which forces Chrome to send a three-digit UA. Then, you can check to see if the new UA is being presented properly by visiting the test site, Is Chrome 100 Yet? Then you can use this browser to check out your own sites for problems. Firefox is also offering similar tests.With either browser, if you find something breaks because of the UA before fixing it, file a report on Webcompat. Also, be sure to check that you haven’t uncovered another kind of bug by checking to see if the problem still pops up when you’re using the normal UA.In cases things go more badly than either Chrome or Firefox’s engineering teams expect, both have mitigation plans in place. In Firefox, there’s a site intervention mechanism. With this, the Mozilla webcompat team can hot-fix broken websites. To see what’s being fixed you can type about:compat in the URL bar. And, of course, if a site breaks because it can’t handle the major version being 100, a user can fix it by sending version 99 instead. But, it’s much too much to ask for ordinary users to manually change their UAs. If things go completely haywire and there are widespread site failures, Mozilla plans to temporarily freeze Firefox’s major version at 99 and test other approaches.With Chrome, the backup plan is to use a flag to freeze the major version at 99 and report the real major version number in the minor version part of the UA string. This fall-back code is already available in Chrome’s upstream open-source Chromium browser. In this case the Chrome version UA string will use the following  pattern …. So, for example, the important part might look like 99.101.4988.0. Google’s Chrome developers will decide on whether to resort to this backup option if things go badly wrong. If you want to help make this problem a non-issue–the reason why people thought Y2K wasn’t that big a deal was because of all the efforts made beforehand to make sure it was properly fixed–both Google and Mozilla would welcome your help. And, of course, your own company would appreciate making sure its website doesn’t go up in smoke when the version 100 editions are released.You can do this by setting up your early release browser to report the version as 100 and report any issues you come across. Here’s how to do this. Configure Firefox Nightly to report the major version as 100Open Firefox Nightly’s Settings menu.Search for “Firefox 100” and then check the “Firefox 100 User-Agent String” option.Configure Chrome to report the major version as 100Go to chrome://flags/#force-major-version-to-100Set the option to `Enabled`.Before starting, keep in mind several UA string failures have already been found. If you’re a web developer using an old UA parsing library, you should test to make sure it can deal with UA versions greater than or equal to 100. Early tests show that most recent libraries will do fine. But, as we all know, the web is filled with old code. So it’s all too possible that you’re using an old, incompatible parsing library, and not even know about it until they hiccup on the latest browsers leaving your users wondering what the heck just happened.It’s time to get to work. Chrome 100 is expected to be released in March 2022 and Firefox 100 is scheduled for release on May 3. 2022. Before then, you’ll want to make sure your websites work the way you expect them to come the day,Related Stories: More

Networking technology pioneer Arista Networks this afternoon reported Q4 revenue and profit that both topped Wall Street’s expectations, and an outlook for this quarter’s revenue that was higher as well. The report sent Arista shares up 8% in late trading. Despite the upbeat report and forecast, CEO Jayshree Ullal told analysts during the company’s conference call Monday evening that disruption of the global supply chain that is affecting its sales of network switches will continue into 2023. “And so despite the supply chain obstacles that we now expect to continue into 2023, we have emerged stronger,” Ullal told analysts. Some progress with suppliers in November yielded to further supply disruption as the Omicron variant of COVID-19 emerged, she said.  Supply chain, we felt, improved in November when we met with you all at the Analyst Day, but declined in January, when we started seeing some de-commits from some of our component vendors. So, I would describe our supply chain shortages as 2 steps forward and 1 step backward. We don’t like the 1 step backward, but between the Omicron virus, the labor shortages, the logistics and the component shortages, we’re certainly experiencing another wave of uncertainty in Q1 over here. Q1 isn’t the great indicator of supply chain improving.In the company’s press release, Ullal said in prepared remarks, “I am delighted with Arista’s record 2021 milestones in innovation, diversified customer momentum and earnings. “We have executed well to establish Arista among the fastest growing networking companies in this decade.”

Said CFO Ita Brennan, “The Arista team has shown great resilience and flexibility throughout 2021, maintaining operational excellence in the face of industry-wide challenges and delivering our first billion-dollar cash flow year.”Revenue in the three months ended in December rose to $824.5 million, yielding a net profit of 82 cents a share, excluding some costs.Analysts had been modeling $790 million and 73 cents per share.The company’s gross profit margin, on a non-GAAP basis, was 64.3%, down from 65% a year earlier and 64.9% in the prior quarter. Cash from operations in the year rose to $1.015 billion, while capital investment was $64.7 million, leaving free cash flow of $950 million.For the current quarter, the company sees revenue in a range of $840 million to $860 million, above consensus of $831.6 million.Arista expects gross profit in a range of 63% to 64%, it said.

Tech Earnings More

The Nighthawk M5 measures 105mm (4.14in.) square and is 21.5mm (0.85in.) thick. It has a 2.4-inch LCD touch screen, a power button, a USB-C port and an RJ-45 Ethernet port. There are also two TS-9 connectors for use with external 5G/4G/3G antennas.
Images: Netgear
MiFi-style wireless routers have fallen out of fashion, thanks to smartphones with good data plans and coffee shops with free Wi-Fi. But there’s still a place for portable cellular connectivity, especially in a world of hybrid work where the option of being online anywhere has great value. Netgear’s Nighthawk M5 5G WiFi 6 Mobile Router is an attempt to update the MiFi form factor for modern demands.  The Netgear Nighthawk M5 (MR5200) costs £779.99 (inc. VAT; £649.99 ex. VAT) in the UK, or $699.99 in the US.  A simple black box with an LCD touch screen on the top, the Nighthawk M5 has two ports: RJ-45 Ethernet and a dual-purpose USB-C connector for tethering laptops and powering the router. Inside there’s a slot for a 5040mAh battery and a Micro-SIM card. The bottom pops off easily, allowing you to remove the battery and swap out SIMs as needed. The Nighthawk M5 also has two TS-9 antenna connectors for working with external MIMO antenna to increase range.  Under the hood is Qualcomm’s Snapdragon X55 chipset. This is a standalone set of 5G hardware, with both modem and RF components. It’s one of the better 5G customer premises chipsets, supporting MIMO antennae and capable of using all the bandwidth in a 5G signal for impressive download speeds. Wi-Fi performance is good, with Wi-Fi 6 (dual-band 2.4/5GHz 802.11ax) support for up to 1.8Gbps. We were able to get speeds of over 200Mbps in a busy London suburb in a home with relatively poor indoor 5G performance. 

LikeEasy to set up and useHigh-performance portable 5G modem/router

Don’t LikeExpensiveToo many administration tools

Going online Getting started is simple enough. Put in a SIM, make sure the battery is charged and turn on the router. You’ll be prompted to set up a network SSID and password, as well as adding an admin password for the device’s web-based admin tool. Usefully all this is handled on the device, using the touch screen and an on-display keyboard. We did find you needed to make a relatively firm press on the keys, so take your time if you don’t want to have to reset the device after an inadvertent typo!  The router will then connect to your cellular provider, displaying the signal strength and how much data has been used. The display serves as a reminder of your wireless network, showing the number of connected devices and giving access to quick on-device settings.  While the on-device quick start is enough to get you started, not everything can be managed from the device’s screen — it’s for relatively simple tasks like setting SSID and passwords, as well as managing tethering. More complex tasks, like managing the build DHCP server and changing device IP ranges, need the web-based admin tool or the Netgear Mobile app, which is available for both Android and iOS. 

This is perhaps the Nighthawk M5’s biggest drawback: it’s hard to remember which admin tool you need to complete which task. It’s fair enough to have a limited UI on a small LCD screen, but when your mobile admin app forces you to use the web for complex tasks it’s clear that there are too many tools.  Netgear Nighthawk M5 (MR5200) specifications    5G NR bands n1, n3, n5, n7, n8, n20, n28, n38, n40, n77 and n78  4G LTE bands 700/800/900/1800/2100/2600MHz (FDD), 2300/2600MHz (TDD)    3G bands 850/900/1900/2100MHz   Chipset Qualcomm Snapdragon X55 5G modem   Wi-Fi   Wi-Fi 6 (802.11ax); AX1800 max throughput (1.2Gbps on 5GHz, 600Mbps on 2.4GHz)   Number of devices supported over Wi-Fi Up to 32   Dimensions 105mm x 105mm x 21.5mm (4.14in. x 4.14in. x 0.85in.)   Weight 240g (0.54lbs) with battery   Display 2.4-inch LCD touch screen   Battery 5040mAh   Battery life Up to 13 hours on a single charge   Smartphone app   Netgear Mobile (Android, iOS)   Price$699.99, £779.99 (inc. VAT; £649.99 ex. VAT) Save battery life One of the Nighthawk M5’s more interesting features is its support for battery-free operation. Keeping a battery on charge can significantly reduce its life, so if you’re using the M5 as a 5G wireless broadband access point for a wired network, you can simply pop out the battery and restart. The router will run off its USB-C power supply while it provides Wi-Fi and wired connectivity.  While the device will warn you that the battery isn’t installed, the warning is quickly dismissed. Removing the battery when you’re working in one place for a long time and have access to power makes sense, especially when you’re considerably reducing the risk of catastrophic battery failure.  With the battery removed, the Nighthawk M5 behaves much like any other Wi-Fi access point, with some additional features that make it a useful option for small offices and for edge computing. While you can use it to quickly provide Wi-Fi anywhere there’s a 4G or 5G signal, there’s also the interesting option of using it in what Netgear calls ‘Always-on Wi-Fi’ mode. Here you’re using the device as a standard Ethernet-connected wireless router. However, if it detects loss of internet connectivity, it’ll automatically switch to its 5G modem.  Not only a portable router Other options include support for data offloading, where the router works with an external Ethernet or Wi-Fi connection to reduce load on your cellular data connection. This approach has the added advantage of letting you use the Nighthawk M5 as a travel router, sharing one Wi-Fi connection between multiple devices. Just make sure you’re using a separate IP address range from the host Wi-Fi network.  A 5G Wi-Fi network to go, or 5G failover for your home/office network.
Image: Netgear
I’ve been using the Nighthawk M5 for failover connectivity in a small/home office network, connecting it to the Ethernet WAN port on a Draytek broadband router. It’s installed near the router, close to the main windows. While performance is good, it is limited by being indoors. There’s the option of using an external MIMO 5G antenna, connected to its TS-9 ports, which can be mounted outside the house.  It’s important to note that this isn’t a budget device. Like much of the Nighthawk family, the M5 carries a premium price. However, you do get premium performance to go with it. Paired with an unlimited data plan it’s a good alternative to fixed-line broadband, with the added option of being portable. Slip it in a pocket or travel bag and your laptop will have excellent connectivity — as long as you’re in a 5G area.  RECENT AND RELATED CONTENT  5G arrives: Understanding what it means for you Smart home: Six tech upgrades to make your house even smarter The best 5G home internet: Your broadband options Best hotspot: Work securely anywhere Read more reviews More

Telecom provider NTT has connected with cloud-based workflow automation platform ServiceNow to speed up the adoption of private 5G (P5G) in the enterprise. The combined NTT/ServiceNow solution is designed to give organizations a personalized, verticalized, automated approach to P5G deployments. 

The solution builds upon NTT’s P5G network-as-a-service (NaaS) platform, launched in August 2021 and leveraging technology from Celona Networks. NTT’s P5G technology can be deployed via cloud, on-premises, or at the edge as a subscription-based service, which allows organizations to build highly agile enterprise networks. P5G also gives organizations more control because they can manage their own security and network functions versus using a carrier-based 5G solution. ServiceNow brings vertical workflows to private 5G This is a natural fit. ServiceNow has pre-built workflows designed for the needs of specific industries, which have been integrated with NTT’s P5G network capabilities to create a single bundled service. By having workflows integrated into the private network itself, organizations can facilitate deployment much faster. Whereas, deploying networks without integrated business processes typically doesn’t give organizations the outcome they want. Historically, operational teams often deploy networks without any thought to the business processes it supports. This limits the value to connectivity and doesn’t always solve real business problems. Organizations are not relying on network centric technologies such as cloud, IoT, and mobility, and the network can no longer be an afterthought. When the workflow is integrated into the network, it yields better business outcomes. Companies are now tasked with digitizing new and existing business processes to bridge the gap between their workflows and P5G networks. However, automating operational service workflows can be challenging. That’s why ServiceNow developed artificial intelligence-enabled workflow orchestration capabilities to bring people, processes, and systems together. AI automates problem resolution Now network teams don’t have to spend time and resources coming up with ways to integrate networks with back office systems. Once the ServiceNow AI engine identifies a problem, it can be translated into a workflow and automated. For example, manufacturing organizations need to export massive amounts of data off the factory floor, which isn’t a trivial task, given the number of systems deployed. NTT and ServiceNow have done much of the heavy lifting with clients to understand the challenges and used AI to build the logic to drive better outcomes. Its machine efficiency index measures the quality of parts being produced, rate of production, hours spent, and other metrics that can impact overall production. Once the AI engine has identified the problem, a workflow can be created to assign the job to a technician, auditor, or another individual. This means IT no longer has to manually integrate network data with the back-office systems. Cost allocation simplified 

Another challenge being addressed is billing for deployed networks, where the cost of 5G and Wi-Fi has to be settled by different departments within organizations. NTT and ServiceNow are enabling basic features such as cost allocation to help organizations move beyond the pilot stage toward fully operational P5G networks. Approximately half of organizations worldwide plan to deploy a P5G network within the next six to 24 months. Nearly a quarter are piloting private 5G networks, while a few have at least one operational P5G network, according to a study recently published by Economist Impact and NTT. Most IT decision-makers view private 5G as a substitute for Wi-Fi because security and data protection can be customized. Particularly, industries that rely on warehouses, factories, and distribution centers believe P5G is more economical than Wi-Fi since it requires deploying only a few access points versus hundreds of Wi-Fi access points. The fact that ServiceNow has various modules for industries, billing, and operations is a key differentiator.Specific industries can have plugins for modules that incorporate 5G into their manufacturing workflow, for instance. ServiceNow and NTT bring these capabilities together in a ready-to-use kit. This is not something telcos or equipment-only vendors can offer at the moment. More

When I started using the internet, I was glad to have a 300-baud modem hook-up. A serious business connection was a T-1, which could reach an amazing 1.54 Megabit per second (Mbps) of throughput. Things have changed. Now, I have a 1 Gigabit per second (Gbps) internet link to my home office — and someday soon, CableLabs, the cable industry’s research and development lab, promises that we’ll have 10 Gbps (10G) access for homes and offices.

ZDNet Recommends

The first steps have already been made. In 2021, Comcast and Broadcom showed that with full-duplex (FDX) DOCSIS 4 system-on-chip (SoC) devices, the partners could hit 4Gbps. This was done using DOCSIS 4’s echo cancellation and overlapping spectrum techniques. Comcast also completed a successful test of a complete 10G connection using a DOCSIS 4-based virtualized cable modem termination system (vCMTS). DOCSIS 4, the next generation of cable internet, combines existing cable and fiber broadband over cable’s hybrid fiber coax (HFC). This new technology supports up to 10 Gbps speeds downstream and up to 6 Gbps upstream.We’re already achieving that speed in labs. Charter Communications, aka Spectrum, recently demonstrated greater than 8.5 Gbps downstream and 6 Gbps upstream on a hybrid HFC. This was done without laying any cable or fiber, but by using pre-existing HFC infrastructure. CableLabs member, Armstrong, took it one step further. The company launched a 10-gigabit fiber-optic network in Medina, Ohio to customers. This delivered 10G access to more than 3000 businesses and residences in the area. CableLabs president and CEO Phil McKinney proclaimed, “With faster symmetrical speeds, lower latency, enhanced reliability, and improved security, the emerging 10G network will truly power the next generation of innovation.” Here’s how:Improved Capacity It sounds simple-minded but we can reach 10G by simply increasing the number of bits per second delivered to subscribers. Of course, that’s easier said than done. 

To help operators better meet that demand CableLabs published specifications for a new device, called the Coherent Termination Device. This works by using the ISP’s existing fiber assets more efficiently by teaming up coherent optics technologies and wavelength-division multiplexing (WDM) in the optical access network. This enables Internet Service Providers (ISPs) to pack more bits into their existing fiber network. The technologies are already known to work. Coherent optics is already used for long-haul internet backbone, metro, and undersea networks.Advancing 10G InnovationTo continue innovation momentum, CableLabs has launched the 10G Challenge to accelerate the work of innovators, startups, students, and entrepreneurs in developing 10G applications. With total prizes of over $300,000, the 10G Challenge is designed to inspire innovators to leverage the emerging 10G network. Six winners will be chosen, and the Grand Prize Winner and category winners will have the opportunity to present their technologies at SCTE Cable-Tec Expo 2022 trade show.McKinney concluded, “While we don’t know what the future holds, we do know that the internet will play a vital role in shaping it.” And, the 10G platform and its applications “create a better future for humanity.”Related Stories: More

Big changes are afoot in the ad-sponsored web, and the browser has become a key battleground for end-user privacy. While Chrome is by far the most widely used browser in the world, there are alternative browsers and ways to improve your privacy when using Chrome. Unfortunately, there’s no easy way yet to ensure total privacy through browsers, according to Dr Lukasz Olejnik, an independent privacy researcher and consultant, who led a large scale study in 2009-2011 that found web browsing histories can be used by online ad companies to fingerprint individual browsers over time.  Researchers from Firefox-maker Mozilla emulated his study in 2020 with 52,000 Firefox users, which confirmed Olejnik’s findings. They warned that Google’s and Facebook’s tighter grip on online advertising today makes the practice of re-identification through browsing histories an even more pressing privacy problem today.  Google’s FLoC (Federated Learning of Cohorts) substitute for third-party cookies, which Google plans to block in 2022, is being trialed now with some Chrome users in the US and other markets except Europe, where Google recently admitted FLoC might not be compatible with the EU’s General Data Protection Regulation (GDPR).   But FLoC won’t solve the problem of browser fingerprinting. “Fingerprinting is here to stay and the removal of third-party cookies indeed does not impact on this technique,” says Olejnik. 

Easy to install, a burden to manage

In the past, security-conscious people advised others to disable JavaScript in the browser, but Olejnik tells ZDNet this is a sledgehammer approach for the web today. “Disabling JavaScript today is a no-go because almost every website depends on it. Disabling it would make the web essentially unusable,” says Olejnik.  One example is that today Google won’t let users who disable JavaScript to sign in to Google Accounts such as Gmail and YouTube.His recommended workaround for people wanting more privacy is to install the NoScript extension for Firefox, Chrome and Chromium-based browsers like the new Microsoft Edge. NoScript offers a more selective way to deal with invasive scripts and malware attacks that rely on JavaScript.   “In very simple ways users may easily decide which websites would be able to include what component, executing JavaScript or not,” he says. However, he warns NoScript may be “quite cumbersome” since it takes time to click-through to decide which websites should be allowed what. “But it is worth it,” he adds.  “Disabling scripting on weird or random sites is the biggest impact. Scripting is responsible for most of the most important privacy risks. It is also responsible for the delivery of some web browser exploits. So not having scripting on by default may actually save you from being hacked,” says Olejnik.   Of course, there are other approaches users can take too, including using a browser other than Chrome. To this end, Olejnik suggests it is wise to use several browsers for different tasks. You can go to the NoScript website for more information on what exactly the extension does, as well as access an active user community forum to report bugs, propose updates, and troubleshoot issues.Pros   Freely available for Firefox, Chrome and Chromium-based browsers    Protects against the most common privacy and security threats on the web   Doesn’t collect your web history Cons   A bit cumbersome to set up the allow list

Is this really the most privacy-focused browser?

Brave is a Chromium-based browser that by default blocks ads, fingerprinting and ad-trackers. Brave in January announced it had passed 50 million monthly active users, which is still a fraction of Chrome’s 3.3 billion users across desktop and mobile. Brave’s business model relies on privacy-protecting ads that can pay publishers and users with Basic Attention Tokens (BAT) when users pay attention to ads. It also recently acquired Tailcat to launch Brave Search, so it can provide a privacy-focussed alternative to Google Chrome and Google Search.  The Chromium-based browser is headed up by Brendan Eich, a key designer of the JavaScript programming language and a co-founder of Mozilla and Firefox. Brave’s privacy record isn’t unblemished. Eich in 2020 apologized to customers after being caught sharing default autocomplete answers with an affiliate cryptocurrency exchange. Still, a recent study by Professor Douglas J. Leith at Trinity College at the University of Dublin rated Brave as the most private browser over Google Chrome, Mozilla Firefox, Apple Safari, and Chromium-based Microsoft Edge.Leith looked at how much browsers communicate to each browser maker’s backend servers. Brave did not use any identifiers allowing the IP addresses to be tracked over time, and did not share details of web pages visited with its backend servers. By contrast Chrome, Firefox and Safari tagged telemetry data with identifiers linked to each browser instance. Brave has removed a ton of Google code from its version of Chromium to improve user privacy and has also come out hard against Google’s FLoC ID proposal, which is beginning to roll out to Chrome users but will not been enabled in Brave.  Brave has several privacy-enhancing settings with options to block third-party ad trackers, a toggle for upgrading unsecured connections to HTTPS, cookie blocking and fingerprinting blocking. Users can adjust these in Settings with in the Shields and Privacy and security sections.     Despite alarm over FLoC, Olejnik says it is preferable to third-party cookies from a privacy standpoint, but he’s holding off judgement until he sees the final design. FLoC is a type of fingerprint designed to replace third-party cookies. In this scheme, Google assigns a FLoC ID to clusters of Chrome users with similar interests, allowing for some privacy by letting individuals ‘hide within crowds’, as Google put it, while still delivering targeted ads to advertisers. Still, Olejnik found the initial implementation of FLoC can leak users web browsing histories, so taking cover in the crowd might not actually work as intended yet.”If I had to choose between third-party cookies or FLoC, I would choose FLoC. But it all depends on the final design and configuration. Care must be exerted in the design to avert the risk of data leaks,” Olejnik says. “In my tests of the initial version, I verified that leaks of web browsing histories are indeed possible. But I am sure that the final solution would have to have some privacy settings designed and implemented. In current testing FloC, this is not the case.”Pros   Privacy-focussed by default    Not in the traditional online ad business   A fast experience Cons:   No obvious negatives but issues in the past show it is not perfect

Probably the best privacy-preserving browser on the web

Chrome’s security and patching make it the most secure browser available today, but when looking solely at privacy, Olejnik rates Mozilla Firefox as the best of the pack. So, for those using a multi-browser strategy to improve privacy, Firefox is a must-have. One of Firefox’s most important privacy features is Enhanced Tracking Protection. Mozilla has also borrowed Tor techniques to block browser fingerprinting and, despite its declining monthly active user numbers (it’s at 220 million today, down from 250 million a year ago), Firefox developers are on a constant quest to improve tracking-prevention features, such as its work on browser data storage that can be used for tracking users across the web, which goes beyond just stored cookies and targets multiple caches.  Firefox is rich with choices to customize the browser for privacy by typing about:preferences#privacy in the address bar. The “standard” Enhanced Tracking Prevention blocks social media trackers, cross-site tracking cookies, and blocks tracking in private windows, cryptominers, and fingerprinting scripts. There is a “strict” mode too that might break some sites, but there are ways to whitelist Enhanced Tracking Protection for trusted sites. And for those with the time, Mozilla provides a way to customize the privacy feature.    The other option for Firefox fans is Firefox Focus, a privacy-focussed browser for iOS and Android that blocks ad trackers and has a built-in ad blocker.    And if you’re against Chrome’s FLoC, Mozilla this week told Digiday that it too would oppose the fingerprinting technique and won’t be implementing it in Firefox.   “We are currently evaluating many of the privacy preserving advertising proposals, including those put forward by Google, but have no current plans to implement any of them at this time,” a Mozilla spokesperson said.”We don’t buy into the assumption the industry needs billions of data points about people, that are collected and shared without their understanding, to serve relevant advertising,” they added. Pros   Firefox has invested a lot into Enhanced Tracking Prevention    No interest in profiting from online ads   Trusted by 220 million users Cons:  Despite a major overhaul Firefox is still losing users  Mozilla is pushing its read-it-later service Pocket through Firefox 

Is an extension from a privacy search engine the answer?

DuckDuckGo, a privacy-focused search engine, is a vocal supporter of consumer’s privacy rights and in January hit a milestone of reaching 100 million user search queries in a day.DuckDuckGo and the rise of encrypted messaging app Signal, shows there is a growing appetite for privacy-focussed alternatives to tech giants like Facebook and Google. Still, DuckDuckGo’s daily search numbers are minuscule compared to Google’s five billion daily search queries. DuckDuckGo’s Privacy Essentials extension for Chrome, Firefox and Microsoft’s new Edge has been installed by four million Chrome users. Its reputation is built on the idea it does not collect user data but can provide the same search results as those that do collect user data. In a seeming reaction to Google’s unchallenged dominance in search, some browser makers such as the To web-anonymizing project, made DuckDuckGo the default search engine to ship with its Firefox-based browser. DuckDuckGo was founded by entrepreneur Gabriel Weinberg as a self-funded project in 2008. The DuckDuckGo extension was also quick to block Google’s FLoC fingerprinting identifier.  And the company is a founding member of the Global Privacy Control (GPC) standard (which is still being hashed out) as an answer to consumer privacy protections under the California Consumer Protection Act (CCPA) and Europe’s General Data Protection Regulation (GDPR).But it is browser extension and, like all software, there are vulnerabilities that crop up. In March, researchers discovered a cross-site scripting flaw in the DuckDuckGo Privacy Essentials that could allow an attacker to observe all websites that the user is visiting. Fortunately DuckDuckGo fixed the flaw fairly swiftly for both Chrome and Firefox.  ProsSupported on Chrome, Chromium-based browsers and FirefoxDuckDuckGo appears to have a solid commitment to user privacy If you don’t like FLoC, it blocks it automaticallyConsIt’s a software extension and that creates another avenue for security flaws to creep in 

The wild card for online privacy

Microsoft Edge, being based on Google’s Chromium project, is now available for Windows 10, macOS and  Linux. Microsoft was rated the worst browser for privacy by Professor Leith because of how often it sent identifiers, including IP address and location data to Microsoft servers — even worse than Google Chrome. Microsoft told ZDNet it was just diagnostic data that can be easily disassociated from the device ID. Microsoft confessed its collection does include information about websites visited but said this information is not used to track users browsing history or URLs specifically tied to the user. Windows 10 telemetry data collection shows Microsoft can be clumsy on privacy despite Microsoft president Brad Smith’s principled statements on the use of facial recognition in public arenas. Microsoft also has an interesting take on Google’s FLoC. A Microsoft spokesperson told ZDNet it does not support fingerprinting because users can’t consent to it. It is however developing its own alternative to FLoC called PARAKEET, which has similar goals to FLoC, like retargeting browsers over time.”Like Google, we support solutions that give users clear consent, and do not bypass consumer choice. That’s also why we do not support solutions that leverage non-consented user identity signals, such as fingerprinting. The industry is on a journey and there will be browser-based proposals that do not need individual user ids and ID-based proposals that are based on consent and first party relationships. We will continue to explore these approaches with the community. Recently, for example, we were pleased to introduce one possible approach, as described in our PARAKEET proposal. This proposal is not the final iteration but is an evolving document,” Microsoft said.Microsoft PARAKEET proposal says it supports an “ad-funded web because we don’t want to see a day where all quality content has moved behind paywalls, accessible to only those with the financial means.”While Microsoft’s Bing search engine may not be widely-used, it does own LinkedIn and that brand’s online ad division brought in $2.58 billion in revenue in quarter ending December 2020 quarter, up 23% year on year, making up about 5% of Microsoft’s total $43.1 billion in revenue for that quarter. Microsoft has never claimed to be a guardian of end-user privacy but it does at least provide a support page explaining what data Edge collects and why Microsoft collects it. Pros   It’s not Google Chrome    Edge is gaining new features rapidly Cons  It has a burgeoning online advertising business  Microsoft’s position on FLoC is ambiguous 

Are there other browsers worth considering?

Another great choice for improving your privacy on the web is the Tor browser, which is based on Mozilla’s Firefox Extended Support Release (ESR). It’s been tweaked to help users use the Tor anonymizing network — a collection of distributed nodes versus a more centralized design like a VPN service. The Tor browser’s default search engine is DuckDuckGo.While it isn’t a mainstream browser choice, the Tor browser is a well-regarded browser for people who don’t want to be tracked across the web and it gets updated on a monthly basis by the Tor Project. However, page loads in the Tor browser can be slower and some sites might not work due to the architecture of the Tor network. Using the Tor browser for Google Search, for example, might require going through additional CAPTCHA challenges to prove you’re not a bot. Page loads are also noticeably slower on streaming services like Netflix. Nonetheless, the Tor browser is worthy addition for people who use multiple browsers to get life done on the web.   

Does using a private browsing window hide my IP address?

If you’re using Chrome, an Incognito Window doesn’t hide your IP address. It simply doesn’t store your browser history, information you’ve entered into forms, or what permissions you’ve given to sites you’ve visited. Microsoft Edge, Firefox, and Opera all use a similar form of “anonymous” web window for browsing, but they aren’t truly hiding your online identity. If you want to block your IP address from being viewed or tracked, you can download a VPN, which masks your IP address so your service provider (or anyone else, for that matter) can’t see what you’re doing.

What is the Tor browser?

Tor is a non-profit organization that researches online privacy. Their proprietary web browser “hides” a user’s IP address and activity by relaying it through an in-house network of servers run by volunteers. By bouncing your information around so much, it makes things exceptionally difficult to track, which is great if you don’t want your ISP or anyone else spying on your online activity. The Tor browser has seen its fair share of controversy, since it’s a popular choice for accessing the deep web: a collection of websites and pages that are inaccessible through traditional means, like search engines. While accessing deep web sites is not in itself a crime, there are quite a few places (like the now defunct Silkroad) that conduct highly illegal activity such as trafficking drugs. But don’t let that dissuade you from using the Tor browser itself, or other privacy-focused browsers that use Tor like Brave. Just because some people misuse the technology, that doesn’t mean it’s a bad browser.

What is the most common personal web security vulnerability?

Honestly? Putting your personal or contact information in your social media. If you have your full name, phone number, address, or place of work anywhere on your social media, someone can use it to wreak havoc on your personal accounts. To prevent this, avoid using your real name online where possible, turn off location tracking, and don’t post about your place of work if you can help it. All it takes is a single piece of personal information for someone with very bad intentions to get ahold of your entire online presence. Those innocent-looking name generator memes are another big issue; the ones that have you type out your first pet’s name and your childhood street name (or something similar) to make up a gnome (or whatever) name. These are answers to common password recovery questions, so by letting the world know that your Christmas elf name is Fluffy Elm Street, you could be handing over all of your personal accounts to internet criminals. 

ZDNet Recommends More

Image: Getty Images
SpaceX confirmed on Tuesday that up to 40 of the 49 Starlink low-earth orbit satellites launched last Thursday were “significantly impacted” by a geomagnetic storm on Friday.

“These storms cause the atmosphere to warm and atmospheric density at our low deployment altitudes to increase,” SpaceX explained in an update.”In fact, onboard GPS suggests the escalation speed and severity of the storm caused atmospheric drag to increase up to 50% higher than during previous launches.”In response to the storm, the Starlink team commanded the satellites into a safe mode to “take cover from the storm” so the satellites would “fly edge-on like a sheet of paper to minimise drag”, the company said.However, according to the company: “preliminary analysis show the increased drag at the low altitudes prevented the satellites from leaving safe-mode to begin orbit raising maneuvers, and up to 40 of the satellites will re-enter or already have re-entered the Earth’s atmosphere.”SpaceX assured that deorbiting satellites “pose zero collision risk with other satellites” or when it re-enters the Earth’s atmosphere. “By design [the satellites] demise upon atmospheric re-entry — meaning no orbital debris is created and no satellite parts hit the ground,” the company said.RELATED COVERAGE More