Re: Security for various IETF services

Randy Bush <randy@psg.com> Fri, 04 April 2014 02:07 UTC

Return-Path: <randy@psg.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AB7221A04E9 for <ietf@ietfa.amsl.com>; Thu, 3 Apr 2014 19:07:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.91
X-Spam-Level:
X-Spam-Status: No, score=-1.91 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id x8_3_huanBGm for <ietf@ietfa.amsl.com>; Thu, 3 Apr 2014 19:07:08 -0700 (PDT)
Received: from ran.psg.com (ran.psg.com [IPv6:2001:418:8006::18]) by ietfa.amsl.com (Postfix) with ESMTP id E6DB41A04C5 for <ietf@ietf.org>; Thu, 3 Apr 2014 19:07:07 -0700 (PDT)
Received: from localhost ([127.0.0.1] helo=ryuu.psg.com.psg.com) by ran.psg.com with esmtp (Exim 4.76) (envelope-from <randy@psg.com>) id 1WVtX4-0004Dq-8L; Fri, 04 Apr 2014 02:07:02 +0000
Date: Fri, 04 Apr 2014 11:07:00 +0900
Message-ID: <m2mwg1voe3.wl%randy@psg.com>
From: Randy Bush <randy@psg.com>
To: Lloyd Wood <L.Wood@surrey.ac.uk>
Subject: Re: Security for various IETF services
In-Reply-To: <290E20B455C66743BE178C5C84F1240847E779EEB8@EXMB01CMS.surrey.ac.uk>
References: <533D8A90.60309@cs.tcd.ie> <290E20B455C66743BE178C5C84F1240847E779EEB6@EXMB01CMS.surrey.ac.uk> <p06240601cf639cb2113b@[99.111.97.136]> <F8AEEDAE-C8BB-4979-8122-1110DFF62770@cisco.com>
User-Agent: Wanderlust/2.15.9 (Almost Unreal) Emacs/22.3 Mule/5.0 (SAKAKI)
MIME-Version: 1.0 (generated by SEMI 1.14.7 - "Harue")
Content-Type: text/plain; charset=US-ASCII
Archived-At: http://mailarchive.ietf.org/arch/msg/ietf/DneVNss4aEooZMNMqa4aNEc5mro
Cc: IETF Disgust <ietf@ietf.org>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 04 Apr 2014 02:07:14 -0000

> "because we blew it way back when, by designing a completely insecure
> and un-private internet"
> That was not a mistake. That is what made adoption possible.

this is not clear.  though, certainly, crypto would have had serious
performance impact in the ealy '80s.  then again, if at 9600 baud, you
can afford a bit of processing on the ends. :)

> DTN started with security from the get-go, and DTN has gone nowhere.

i was not aware that security was a major cause of the lack of success
of the dtn.

randy