Re: [dhcwg] DHCP hackathon in Prague: SeDHCPv6

Ted Lemon <mellon@fugue.com> Wed, 07 June 2017 21:19 UTC

Return-Path: <mellon@fugue.com>
X-Original-To: dhcwg@ietfa.amsl.com
Delivered-To: dhcwg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2843712969E for <dhcwg@ietfa.amsl.com>; Wed, 7 Jun 2017 14:19:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=fugue-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id REy_pe9kshNp for <dhcwg@ietfa.amsl.com>; Wed, 7 Jun 2017 14:19:18 -0700 (PDT)
Received: from mail-qt0-x22f.google.com (mail-qt0-x22f.google.com [IPv6:2607:f8b0:400d:c0d::22f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5C1BC1294CE for <dhcwg@ietf.org>; Wed, 7 Jun 2017 14:19:18 -0700 (PDT)
Received: by mail-qt0-x22f.google.com with SMTP id c10so21306272qtd.1 for <dhcwg@ietf.org>; Wed, 07 Jun 2017 14:19:18 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fugue-com.20150623.gappssmtp.com; s=20150623; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=T8XAxBvfOTiChgGRqXO9Llo7xOUfuWu8P04A9LWAkuw=; b=JVVPLayK36uT6TLnsOC9fqttW6vTIjxFXcR7a9nZkUW7RZ9SRjmX2N7hX2fRah116j EEdLjUXoSogirZlSC1rSwypX5P4UmwopaQdDLDObMNTtlJivNBHQ0PNrH/W3/z3vRkG6 yoBZfS+il00wNOIUd/GEidyKJa0zUEsPnWThK/fQ/8wmdZVbtHEj3HJpAdtGmVqRDY/2 lLuF9C/Dpsv2kDdOWPsCOb4ZaMRSYHIJRktNzkllYxMo6LLtw53uBlzZQ0ZOQATO2oe1 r8PNw2lRof9qmv8BGSZQ6DFxwPfKiKmcAes5tJKk6nz31fxioLEPIHQs/XTdtJlcWipj WIbA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=T8XAxBvfOTiChgGRqXO9Llo7xOUfuWu8P04A9LWAkuw=; b=W/nH4Auec4+SPHqmQnqv1hj0iLTLTtZyX7TqJDGFuIyH04K50NexExgWK3S7qX+A3G O0OoO442ReI9OpQwqccvd9PW+E7YAzqgrno/0qJ+8aOPbIv2V517cJKBkaeS0ltyqqc6 +Wlz6/MIRFFUct6tJkKK4jJJ88B/IpbYf9xwiWcb5l+1/vRA7cVGD1oMZTRdktksJdqw Fy6tBCyb6Rtq0ARGfMEU+Kie3cr0Bl+o737Agm756swHu/4PMzDx+ml9iZMkXgL9tLWv gpIO3o2P13K0n8PJNSL6tEvq/d+5vPLmn4aAnd6stKBm+t1X0+tQPXkzkP3D5TSzXg3U 3sHQ==
X-Gm-Message-State: AKS2vOzm7z220Exglk6+h+nYu48HtZJKHR5HZK6DqSb67eC59h8UdYcZ YJKjr0CHPYoLlMfk
X-Received: by 10.200.43.217 with SMTP id n25mr43450157qtn.190.1496870357596; Wed, 07 Jun 2017 14:19:17 -0700 (PDT)
Received: from [10.0.30.228] (c-73-167-64-188.hsd1.ma.comcast.net. [73.167.64.188]) by smtp.gmail.com with ESMTPSA id q41sm1864030qtc.8.2017.06.07.14.19.16 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Wed, 07 Jun 2017 14:19:16 -0700 (PDT)
From: Ted Lemon <mellon@fugue.com>
Message-Id: <BF3C84F7-69CD-480E-A839-54B5F981C259@fugue.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_3CA8A108-CEF0-49E5-9B68-79B51CFE9CF0"
Mime-Version: 1.0 (Mac OS X Mail 10.3 \(3273\))
Date: Wed, 7 Jun 2017 17:19:15 -0400
In-Reply-To: <201706071929.v57JT6wQ063392@givry.fdupont.fr>
Cc: =?utf-8?B?56We5piO6YGU5ZOJ?= <jinmei@wide.ad.jp>, dhcwg <dhcwg@ietf.org>
To: Francis Dupont <Francis.Dupont@fdupont.fr>
References: <201706071929.v57JT6wQ063392@givry.fdupont.fr>
X-Mailer: Apple Mail (2.3273)
Archived-At: <https://mailarchive.ietf.org/arch/msg/dhcwg/FXotZmMJgoDpSPBU7ddueKjc7K0>
Subject: Re: [dhcwg] DHCP hackathon in Prague: SeDHCPv6
X-BeenThere: dhcwg@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: <dhcwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dhcwg/>
List-Post: <mailto:dhcwg@ietf.org>
List-Help: <mailto:dhcwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 07 Jun 2017 21:19:20 -0000

On Jun 7, 2017, at 3:29 PM, Francis Dupont <Francis.Dupont@fdupont.fr> wrote:
> The world is divided between people who think it is an
> advantage and people who think it is *the* problem.
> Obviously I am in the first part, you in the second. Now I did a lot of
> kernel programming (including IPsec kernel programming) so I am very
> far to be neutral...

Actually, the two groups of people into which the world is divided are those who think the world is divided into two groups of people, and those who do not.   :)

The point of this joke is that actually I don't have any problem with encryption being done in the kernel, but I don't see how to make it work for this use case, because we don't have end-to-end communication with the server.