Re: The CIA mentions us

Jari Arkko <jari.arkko@piuha.net> Thu, 09 March 2017 20:36 UTC

Return-Path: <jari.arkko@piuha.net>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9C9E21293EE for <ietf@ietfa.amsl.com>; Thu, 9 Mar 2017 12:36:15 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id iQhX6gkGt8ab for <ietf@ietfa.amsl.com>; Thu, 9 Mar 2017 12:36:13 -0800 (PST)
Received: from p130.piuha.net (p130.piuha.net [193.234.218.130]) by ietfa.amsl.com (Postfix) with ESMTP id 52DA7120725 for <ietf@ietf.org>; Thu, 9 Mar 2017 12:36:13 -0800 (PST)
Received: from localhost (localhost [127.0.0.1]) by p130.piuha.net (Postfix) with ESMTP id 5CDE52CFD8; Thu, 9 Mar 2017 22:36:11 +0200 (EET) (envelope-from jari.arkko@piuha.net)
X-Virus-Scanned: amavisd-new at piuha.net
Received: from p130.piuha.net ([127.0.0.1]) by localhost (p130.piuha.net [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id n0X8y41ldLUP; Thu, 9 Mar 2017 22:36:10 +0200 (EET)
Received: from [127.0.0.1] (p130.piuha.net [193.234.218.130]) by p130.piuha.net (Postfix) with ESMTP id 954232CC5E; Thu, 9 Mar 2017 22:36:10 +0200 (EET) (envelope-from jari.arkko@piuha.net)
Subject: Re: The CIA mentions us
Mime-Version: 1.0 (Mac OS X Mail 7.3 \(1878.6\))
Content-Type: multipart/signed; boundary="Apple-Mail=_FBCC34E0-7192-4B40-8D7A-206573E9F758"; protocol="application/pgp-signature"; micalg=pgp-sha512
X-Pgp-Agent: GPGMail
From: Jari Arkko <jari.arkko@piuha.net>
In-Reply-To: <CAMm+LwioHOJxDZudH8Ya9SYv5DT1fPMJ5ypDR8O5JGa4HwxPvg@mail.gmail.com>
Date: Thu, 9 Mar 2017 22:36:07 +0200
Message-Id: <F950C538-05E4-451B-8AC0-A42010DAA8D6@piuha.net>
References: <20170307155346.fwhhpnsm4wl6zzoo@nic.fr> <CAMm+Lwh5E-NPXsVWQpK2tA8Rr+6SpvJJKxMbiks7_F1umxz2FQ@mail.gmail.com> <20170307160840.duv7wwg5sm23nrek@nic.fr> <44d06f90-0f38-f6de-8eb1-cf8262369cd5@bogus.com> <c6df6333-1a08-aa0c-c1de-55d335234f2a@si6networks.com> <alpine.LRH.2.01.1703071034050.3764@egate.xpasc.com> <CAMm+LwioHOJxDZudH8Ya9SYv5DT1fPMJ5ypDR8O5JGa4HwxPvg@mail.gmail.com>
To: Phillip Hallam-Baker <phill@hallambaker.com>
X-Mailer: Apple Mail (2.1878.6)
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf/6EZmyCMXpR-K1ZwsmcvawKEfU8U>
Cc: IETF Discussion Mailing List <ietf@ietf.org>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 09 Mar 2017 20:36:15 -0000

Up-leveling a bit from the discussion of best practices for surveillance
organisations and virus builders (who apparently are partly the same
crowd). We can make some more general observations, I think,
maybe a bit more relevant for the rest of us.

I don’t think the reported findings are particularly surprising. But
they seem to support what I think we knew already:

1. Security isn’t a single feature, but needs to be thought in terms
of the whole. Comms security and devices and ...

2. There is no such thing as privileged access to the good guys. It
will leak / break / be shared.

3. Secretly held vulnerabilities make us all less safe.

4. The security of our communications and applications matters a
lot. Lives are at stake, not just your browsing history.

Jari