Re: [dtn-security] Newbie seeking some security related advice

"Jason Redi" <redi@bbn.com> Tue, 09 June 2009 17:18 UTC

Received: from mx3.bbn.com (mx3.bbn.com [128.33.1.81]) by maillists.intel-research.net (8.13.8/8.13.8) with ESMTP id n59HIGGA017513 for <dtn-security@maillists.intel-research.net>; Tue, 9 Jun 2009 10:18:16 -0700
Received: from mproxy02.bbn.com ([192.1.122.24]) by mx3.bbn.com with esmtps (TLSv1:AES256-SHA:256) (Exim 4.63) (envelope-from <jredi@bbn.com>) id 1ME4pn-0008SM-CN; Tue, 09 Jun 2009 13:10:03 -0400
Received: from godzilla.bbn.com ([128.89.68.89] helo=Godzilla) by mproxy02.bbn.com with esmtpsa (TLSv1:AES128-SHA:128) (Exim 4.69 (FreeBSD)) (envelope-from <jredi@bbn.com>) id 1ME4pn-00005S-HN; Tue, 09 Jun 2009 13:10:03 -0400
From: "Jason Redi" <redi@bbn.com>
To: "'Ivancic, William D. \(GRC-RHN0\)'" <william.d.ivancic@nasa.gov>, "'Graham Keellings \(Leonix Solutions Pte Ltd\)'" <Graham@LeonixSolutions.com>
References: <89E48AE60E64EF4E8EB32B0B7EC74920A1B0F5@EVS-EC1-NODE2.surrey.ac.uk> <4A12195A.6000207@LeonixSolutions.com> <3A5AA67A8B120B48825BFFCF5443856137E0B06196@NDJSSCC03.ndc.nasa.gov> <4A1DD73F.50000@bbn.com> <023601c9df2a$694fd5b0$3bef8110$@com> <4A2DF7FD.5020104@LeonixSolutions.com> <3A5AA67A8B120B48825BFFCF5443856137E3553C4B@NDJSSCC03.ndc.nasa.gov>
In-Reply-To: <3A5AA67A8B120B48825BFFCF5443856137E3553C4B@NDJSSCC03.ndc.nasa.gov>
Date: Tue, 9 Jun 2009 13:09:53 -0400
Organization: BBN Technologies
Message-ID: <029d01c9e925$1e354880$5a9fd980$@com>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----=_NextPart_000_029E_01C9E903.9723A880"
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: AcnoxiQeFFO345L4QfqKOal4wck1FwAWwUHgAAD3MOA=
Content-Language: en-us
Cc: dtn-security@maillists.intel-research.net
Subject: Re: [dtn-security] Newbie seeking some security related advice
X-BeenThere: dtn-security@maillists.intel-research.net
X-Mailman-Version: 2.1.9
Precedence: list
Reply-To: redi@bbn.com
List-Id: DTN Security Discussion <dtn-security.maillists.intel-research.net>
List-Unsubscribe: <http://maillists.intel-research.net/mailman/listinfo/dtn-security>, <mailto:dtn-security-request@maillists.intel-research.net?subject=unsubscribe>
List-Archive: <http://maillists.intel-research.net/pipermail/dtn-security>
List-Post: <mailto:dtn-security@maillists.intel-research.net>
List-Help: <mailto:dtn-security-request@maillists.intel-research.net?subject=help>
List-Subscribe: <http://maillists.intel-research.net/mailman/listinfo/dtn-security>, <mailto:dtn-security-request@maillists.intel-research.net?subject=subscribe>
X-List-Received-Date: Tue, 09 Jun 2009 17:18:16 -0000

Strange - I think this email already came around about a month ago.
Armando responded then, but the original reappeared.   Maybe there's some
delay in the relayer?

 

Jason

 

 

 

From: Ivancic, William D. (GRC-RHN0) [mailto:william.d.ivancic@nasa.gov] 
Sent: Tuesday, June 09, 2009 12:49 PM
To: Graham Keellings (Leonix Solutions Pte Ltd); redi@bbn.com
Cc: 'Armando Caro'; dtn-security@maillists.intel-research.net
Subject: RE: [dtn-security] Newbie seeking some security related advice
Importance: High

 

Graham,

 

Some applications simply are not delay tolerant.  If I need to say
"Incoming, take cover!"  10 seconds delay is unacceptable.

 

I hear some talk about DTN for  air traffic control.  Safety of flight,
safety of life, ... I don't think so.  I'll walk!

 

Now, for some air traffic application such a perhaps passenger lists of fuel
and weight, a few seconds or a minute may not be an issue, but at that point
you have good links and don't need DTN.

 

Beware of the Buzz Words and Marketing.  DTN is great for some things, bad
for others and there are situations were one could not communicate at all
without DTN.

 

You have to educate the customer.   Do so in your proposal and point out the
folly of DTN in a primarily voice network and you will take the contract
from those proposing otherwise.

 

 

/Will

 

From: Graham Keellings (Leonix Solutions Pte Ltd)
[mailto:Graham@LeonixSolutions.com] 
Sent: Tuesday, June 09, 2009 1:50 AM
To: redi@bbn.com
Cc: 'Armando Caro'; Ivancic, William D. (GRC-RHN0);
dtn-security@maillists.intel-research.net
Subject: Re: [dtn-security] Newbie seeking some security related advice

 

....
As Armando describes, we are currently using streaming voice over BP.
Individual packets contain 20-100ms of voice, so sending those individual
buffers in an individual disrupted fashion would not make a whole lot of
sense.  

Note that we are also working on providing voice-snippets of 1-10s
  

Wow! That surely *is* delay tolerant (if not disruption tolerant). You have
to wait until you have collected 10 seconds of voice at the sender before
transmitting. That guarantees a lag of over 9 seconds at the receiver, or
18+ seconds to get a reply to a question.

I think that I need to rethink :-)   Or,  at least, we can say that such
delay might be acceptable in some scenarios, but not in others. Nasa might
have no choice, given the lag inherent in very long range transmissions, but
I doubt that DARPA can accept multi-seconds delays in combat scenarios.

I am looking at a "real time" voice network, where it has been strongly
"suggested" that I use DTN, but I am thinking that all that it will bring to
my particular use case is that I don't have to worry about "link lost" for a
short time bringing down the call.  My personal feel is that DTN is not the
right tool for the job for a mainly voice based short range system where
speed of reply is of the essence. I don't see that the benefits justify it,
but then I don't get to make the decision (and if I recommend against it, I
probably don't get the contract. Sigh)

Thank you very much for taking he time to reply and for helping me to
clarify my thoughts.

With best wishes,

Graham