Re: [105attendees] (re. plenary) measuring privacy, trusting devices and verifiability

Robert Moskowitz <rgm@labs.htt-consult.com> Thu, 25 July 2019 10:25 UTC

Return-Path: <rgm@labs.htt-consult.com>
X-Original-To: 105attendees@ietfa.amsl.com
Delivered-To: 105attendees@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5894812008D for <105attendees@ietfa.amsl.com>; Thu, 25 Jul 2019 03:25:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zoLzggNUZQtV for <105attendees@ietfa.amsl.com>; Thu, 25 Jul 2019 03:25:07 -0700 (PDT)
Received: from z9m9z.htt-consult.com (z9m9z.htt-consult.com [23.123.122.147]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 378021200E7 for <105attendees@ietf.org>; Thu, 25 Jul 2019 03:25:07 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by z9m9z.htt-consult.com (Postfix) with ESMTP id F414D60945; Thu, 25 Jul 2019 06:25:04 -0400 (EDT)
X-Virus-Scanned: amavisd-new at htt-consult.com
Received: from z9m9z.htt-consult.com ([127.0.0.1]) by localhost (z9m9z.htt-consult.com [127.0.0.1]) (amavisd-new, port 10024) with LMTP id wmJal3reMSBk; Thu, 25 Jul 2019 06:24:58 -0400 (EDT)
Received: from lx140e.htt-consult.com (dhcp-914c.meeting.ietf.org [31.133.145.76]) (using TLSv1.2 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) by z9m9z.htt-consult.com (Postfix) with ESMTPSA id 81D866080C; Thu, 25 Jul 2019 06:24:58 -0400 (EDT)
To: Ted Lemon <mellon@fugue.com>, Tobias Muhanguzi <mztoby12@ieee.org>
Cc: 105attendees@ietf.org, David Lamparter <equinox@diac24.net>
References: <20190724224051.GQ258193@eidolon.nox.tf> <2671B34A-F1E0-457E-9D7D-522A47408242@fugue.com> <CABu=JNZWoPsAnE1B-0jObpR9=WKyHWzesdyvPZ0tU+CHOGoCnA@mail.gmail.com> <22EE0D34-13EE-4680-8683-A00B92FC07B7@fugue.com>
From: Robert Moskowitz <rgm@labs.htt-consult.com>
Message-ID: <fade531e-7c6f-b12e-72b5-182f32bfe62d@labs.htt-consult.com>
Date: Thu, 25 Jul 2019 06:24:55 -0400
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.8.0
MIME-Version: 1.0
In-Reply-To: <22EE0D34-13EE-4680-8683-A00B92FC07B7@fugue.com>
Content-Type: multipart/alternative; boundary="------------D5561D700BE55CAD1D5A1915"
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/105attendees/rTciPiTUSbRUEE9Ac6jKTKok6qY>
Subject: Re: [105attendees] (re. plenary) measuring privacy, trusting devices and verifiability
X-BeenThere: 105attendees@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Mailing list of all 105 attendees for official communication <105attendees.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/105attendees>, <mailto:105attendees-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/105attendees/>
List-Post: <mailto:105attendees@ietf.org>
List-Help: <mailto:105attendees-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/105attendees>, <mailto:105attendees-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Jul 2019 10:25:09 -0000

In some cases you can have it join an SSID that has no Internet access.  
Only Intranet.  But how many consumers know how to set up multiple SSIDs 
and what gateways support this and can you trust THEM?

This is fundamentally a no-win situation.  It is really a waste of 
braincells to even think of technical solutions.

On 7/25/19 6:18 AM, Ted Lemon wrote:
> How do you know you switched it off?  :)
>
> Sent from my iPhone
>
>> On Jul 25, 2019, at 1:31 AM, Tobias Muhanguzi <mztoby12@ieee.org> wrote:
>>
>> To a user, not tech person...the ability for me to switch off what i
>> don't understand, or not fully convinced of feature on a device is
>> power, and measure of security confidence...
>>
>>> On 7/25/19, Ted Lemon <mellon@fugue.com> wrote:
>>>> On Jul 24, 2019, at 6:40 PM, David Lamparter <equinox@diac24.net> wrote:
>>>> The /only/ situation where I will trust (and recommend others to trust)
>>>> any device is when I have the ability to build and compare the code that
>>>> runs on it.
>>> That’s great for you, but impractical for the average person.   The average
>>> person either has to just hope for the best, or has to pay someone who
>>> offers to provide this (what you do on your own) as a service.   There are
>>> lots of options for this—I believe it is how Canonical and Red Hat pay the
>>> bills.
>>>
>>>
>>>

-- 
Standard Robert Moskowitz
Owner
HTT Consulting
C:248-219-2059
F:248-968-2824
E:rgm@labs.htt-consult.com

There's no limit to what can be accomplished if it doesn't matter who 
gets the credit