IETF Logo Mail Archive

Re: [93attendees] Reminder: CITIZENFOUR screening *tomorrow* at 7pm

Christian Huitema <huitema@microsoft.com> Thu, 30 July 2015 19:02 UTC

Return-Path: <huitema@microsoft.com>
X-Original-To: 93attendees@ietfa.amsl.com
Delivered-To: 93attendees@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B9B981B2F41 for <93attendees@ietfa.amsl.com>; Thu, 30 Jul 2015 12:02:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.902
X-Spam-Level:
X-Spam-Status: No, score=-1.902 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id U4RySKAXkVlc for <93attendees@ietfa.amsl.com>; Thu, 30 Jul 2015 12:02:03 -0700 (PDT)
Received: from na01-bl2-obe.outbound.protection.outlook.com (mail-bl2on0137.outbound.protection.outlook.com [65.55.169.137]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D4C961A9174 for <93attendees@ietf.ORG>; Thu, 30 Jul 2015 12:01:37 -0700 (PDT)
Received: from DM2PR0301MB0656.namprd03.prod.outlook.com (10.160.96.18) by DM2PR0301MB1277.namprd03.prod.outlook.com (10.160.221.146) with Microsoft SMTP Server (TLS) id 15.1.225.19; Thu, 30 Jul 2015 19:01:36 +0000
Received: from DM2PR0301MB0655.namprd03.prod.outlook.com (10.160.96.17) by DM2PR0301MB0656.namprd03.prod.outlook.com (10.160.96.18) with Microsoft SMTP Server (TLS) id 15.1.225.19; Thu, 30 Jul 2015 19:01:36 +0000
Received: from DM2PR0301MB0655.namprd03.prod.outlook.com ([10.160.96.17]) by DM2PR0301MB0655.namprd03.prod.outlook.com ([10.160.96.17]) with mapi id 15.01.0219.023; Thu, 30 Jul 2015 19:01:35 +0000
From: Christian Huitema <huitema@microsoft.com>
To: "Dirk.von-Hugo@telekom.de" <Dirk.von-Hugo@telekom.de>, "charliep@computer.org" <charliep@computer.org>, "alexandru.petrescu@gmail.com" <alexandru.petrescu@gmail.com>
Thread-Topic: Re: [93attendees] Reminder: CITIZENFOUR screening *tomorrow* at 7pm
Thread-Index: AdDKzQ4sjAdAsQFpTdedIDNF708s8AAK2DJQ
Date: Thu, 30 Jul 2015 19:01:35 +0000
Message-ID: <DM2PR0301MB0655099EDD80387B048CDC26A88B0@DM2PR0301MB0655.namprd03.prod.outlook.com>
References: <05C81A773E48DD49B181B04BA21A342A31DA9D76BB@HE113484.emea1.cds.t-internal.com>
In-Reply-To: <05C81A773E48DD49B181B04BA21A342A31DA9D76BB@HE113484.emea1.cds.t-internal.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: telekom.de; dkim=none (message not signed) header.d=none;
x-originating-ip: [2001:4898:80e8:6::3e5]
x-microsoft-exchange-diagnostics: 1; DM2PR0301MB0656; 5:EVZ7PjjzZVeNboUBEf7lrz7Jaj80xV1bEU6s/CWG0Pr2BmuTAEhK4h0PLpJBqBm9RhrV8b3AG7NDoQKCJnfV8bu6v43xu4z37My8vR3PW87dbs4Oe131RzUuuurlyWT8NUh0O8wZwIjmPBfzWrVTFg==; 24:mKU5mmaLXdanh34RMQ4/g54uPu9BroasDdkDnpnz9cRS2Mo00wQPTywBe1HRbeP2itEv+r/nyT8fJcPRa3SDnQWvaFXfS+HkQmvGH8XHnZA=; 20:abmF2dLnO39jLB0JH8Ht8C1EgPRHNes0EnsfBmxwi4zA945WTcpL/AclCMOp2PAxsLxb79P1hzTU1nVZHG/U7Q==
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:; SRVR:DM2PR0301MB0656; UriScan:; BCL:0; PCL:0; RULEID:; SRVR:DM2PR0301MB1277;
dm2pr0301mb0656: X-MS-Exchange-Organization-RulesExecuted
x-microsoft-antispam-prvs: <DM2PR0301MB0656118E2F4FDD3F15F9DAD7A88B0@DM2PR0301MB0656.namprd03.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:;
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(601004)(2401001)(5005006)(3002001); SRVR:DM2PR0301MB0656; BCL:0; PCL:0; RULEID:; SRVR:DM2PR0301MB0656;
x-forefront-prvs: 06530126A4
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(6009001)(24454002)(377454003)(12213003)(2501003)(77096005)(92566002)(87936001)(54356999)(33656002)(46102003)(2656002)(19580405001)(2950100001)(62966003)(2201001)(76176999)(50986999)(2900100001)(19580395003)(74316001)(5001770100001)(77156002)(86362001)(99286002)(5003600100002)(102836002)(5001960100002)(10090500001)(189998001)(40100003)(76576001)(5002640100001)(122556002)(3826002); DIR:OUT; SFP:1102; SCL:1; SRVR:DM2PR0301MB0656; H:DM2PR0301MB0655.namprd03.prod.outlook.com; FPR:; SPF:None; MLV:sfv; LANG:en;
Content-Type: text/plain; charset="Windows-1252"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-originalarrivaltime: 30 Jul 2015 19:01:35.1055 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM2PR0301MB0656
X-Microsoft-Exchange-Diagnostics: 1; DM2PR0301MB1277; 2:33w4KMhUK2v/CA44lVhwQ0ZgsMAjnez6vU43fdC8UhxFIw94Q/Iy53YUzm4eq5XFk1at7v3DgAlE7whnqsoXCSiwPSCeTx1t2K98+p+RwEfd+ryc8B1bc+raDdnv0Up49VLT9h+adRfS8J0RrtfxZQ4Qzy79h0Po8zP7+2C65S0=; 3:YzKrYZd18EAsneQY9ZB5l1+g45KUoZYGFs/QBmOCXdCajaUcCDqqkk28PGiE0bGsuRknld9fBqxEJffshAcIQ7Gei4viavCkHDuMNaeFHoh8rkEcY8aL18YMFeK/qzjpNLqgR6n+0CintQ6bY3lLxA==; 25:gOCo9nDfGf0lRli6HVjYyTXsNLa3pAXrHgE5ZdMv6WfxXnuJ3gNqx4FDBuBl7PNwUrP/oPcBSNZRPUyJ2TTzx22CfgL9Bg6E8pLuMLGR2e7szXZ29HlX4efQmHRDRaPYurBLkjaGNbeNnUuabj2PDGDSASgo2TWDwb4L1MlbzP8VQig3FbKaADmDPCnRQR7OOVMwt0OuVUhN/rXAmg+aEXBN18Fu81wfLnr34PIxIgD5OG7c1xXSXiwOLDTnAh/JLu0Be/usUrtHKtjRl+hb/A==
X-Microsoft-Exchange-Diagnostics: 1; DM2PR0301MB1277; 20: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; 23:uHWbM/6dV5SZapYCZUMaIVqeWutxbibbdZs8s47RaLYdZhf24V/4NQFcjr+ldSmMwg0LqAbB/ttWBXVBmEoXDIlSzby8ympe//31aj5uXT4DdKdgNFzS06i/vt7YGRmmWWb91hNT7YNV82DgcJQGlhnSfjqxKNLVL3CAkgRKr6kWDi+jAkuS8U9kmGws5QHwRnbR56PFjIEMJfm8yE4fXjq9cvECkUozGX/Ob/0Hv6c/CbhQSw/P/RB+pkb4UUlv
DM2PR0301MB1277: X-MS-Exchange-Organization-RulesExecuted
X-OriginatorOrg: microsoft.com
Archived-At: <http://mailarchive.ietf.org/arch/msg/93attendees/2HUm_gew9ZuYCJSHOL0A0q9KUaU>
Cc: "93attendees@ietf.ORG" <93attendees@ietf.ORG>
Subject: Re: [93attendees] Reminder: CITIZENFOUR screening *tomorrow* at 7pm
X-BeenThere: 93attendees@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Mailing list of IETF 93 attendees that have opted in on this list. " <93attendees.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/93attendees>, <mailto:93attendees-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/93attendees/>
List-Post: <mailto:93attendees@ietf.org>
List-Help: <mailto:93attendees-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/93attendees>, <mailto:93attendees-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 30 Jul 2015 19:02:06 -0000

On Thursday, July 30, 2015 6:55 AM, Dirk.von-Hugo@telekom.de wrote:

> Snowden entered in his answers very specifically on the work of the IETF and warned 
> about the recently proposed idea to provide middle boxes through a new Protocol with 
> the working title "Spud" with some data, to prevent disconnections or deep packet 
> inspection. His plea for the restoration of end to-end principle - "the easiest path is the best" - 
> was applauded extensively by many IETF participants. 

Yes, that's what we heard. The Register's reporter got very confused, but the German transcript is correct.

> Snowden hoped for the reduction of  metadata by other IETF work, e.g. the effort towards a 
> more privacy friendly DNS including the developments of DANE and DNSSEC. 

Both DANE and DNSSEC can improve security, and help making sure that encryption works end-to-end. But the specific issue addressed here is the leakage of meta-data in DNS queries, which is addressed by the QName minimization proposed in DNSOPS and by the proposed work for stub-to-recursive-resolver encryption in DPRIVE.

This was an answer to a question by Juan Carlos, and the general idea is that we have to be concerned not just with encryption of content, but also with the leakage of meta-data at various layers in the stack. Snowden was for example commenting on listening devices that record radio traffic. Imagine drones circling abve cities and recording the IMSI of cell phones, or the MAC addresses used by the clients of Wi-Fi networks. That can lead to continuous tracking of devices and their owners -- and we should be doing something about it.

-- Christian Huitema

v2.23.0 | Report a Bug | By Email