IETF Logo Mail Archive

What problem is solved and why do we need to solve it? Re: Enough is Enough.

Phillip Hallam-Baker <phill@hallambaker.com> Fri, 23 October 2020 15:50 UTC

Return-Path: <hallam@gmail.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EEA843A0F3D for <ietf@ietfa.amsl.com>; Fri, 23 Oct 2020 08:50:43 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.399
X-Spam-Level:
X-Spam-Status: No, score=-1.399 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FORGED_FROMDOMAIN=0.25, FREEMAIL_FROM=0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.25, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id buV-W9smtX4R for <ietf@ietfa.amsl.com>; Fri, 23 Oct 2020 08:50:42 -0700 (PDT)
Received: from mail-yb1-f175.google.com (mail-yb1-f175.google.com [209.85.219.175]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2A0D63A0ED1 for <ietf@ietf.org>; Fri, 23 Oct 2020 08:50:42 -0700 (PDT)
Received: by mail-yb1-f175.google.com with SMTP id 67so1579133ybt.6 for <ietf@ietf.org>; Fri, 23 Oct 2020 08:50:42 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to; bh=2KiPkzdUPRWGp5314xyO16OMKvByX+moPTgL4h3WluM=; b=mux8hedGhj/1b9Cev6NseElbCmUDd/C5SCAkk4LWFjjk/O4O0rjZh1c/a/ozaqbN6H JoMR6PAmY1KUvG3LklP+F9ahU7nTj2cBF+wARd4IxFc7IhCkhrT+5PzwOnZu1+kH9P+5 WL1yMeLpQYx6jTQIrbB3efWavIVcblzzYvD+0iQ3+HbsX94f6Rf5kzYKKz1vo6d5hqu9 juw6zVJb42Iehs1TQyZ4EiApiceNtjUC71J/PeiXktXFbzKwPhCISLoVtX2cdhtsO909 C0ZummP7nPUvfoFVBJJmtdX55Qk91JhF9iAH4/O/CEasqihRVPrPgX4aDh6AZxEyLNgA l+Jw==
X-Gm-Message-State: AOAM532CTmFGa1ITgQYlLme7vmhVO+uK2N+Vclc3giV5vMD/usDn8J74 GHwuBu6qgPPU5Y8tjWfJIZj2zNLizwEm6MLwvLcL7TFuHMRzWg==
X-Google-Smtp-Source: ABdhPJxC1EKQClQmwA8HuXyd4H6J5ycZ6CH06/+j4dLnuATzmnP31PsQ+9k7nUfVEMQ2+thXTve2dOXxXK0um2/RGdM=
X-Received: by 2002:a25:d914:: with SMTP id q20mr3780123ybg.522.1603468240964; Fri, 23 Oct 2020 08:50:40 -0700 (PDT)
MIME-Version: 1.0
References: <VI1P194MB0285BA731A155CA715823C16AE1F0@VI1P194MB0285.EURP194.PROD.OUTLOOK.COM> <78AF10D6285F020EDE865ED9@PSB>
In-Reply-To: <78AF10D6285F020EDE865ED9@PSB>
From: Phillip Hallam-Baker <phill@hallambaker.com>
Date: Fri, 23 Oct 2020 11:50:30 -0400
Message-ID: <CAMm+LwjmhuMSH18Ue+HV2yZDDrteyreEYYWaF0LpCV67vzKbjA@mail.gmail.com>
Subject: What problem is solved and why do we need to solve it? Re: Enough is Enough.
To: IETF Discussion Mailing List <ietf@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000e951ed05b2588a6e"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf/Ehy1VmC47Ec8BHzsJKd_IJ1vNRk>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 23 Oct 2020 15:50:44 -0000

Like most I suppose, I have not been following any of the IPv10 comments,
or at least trying not to. I do applications and for me it is not just a
matter of profound disinterest to know how my packets are moving from A to
B, it is a layering violation to care. (Or at least it is until it isn't.
There are times when I do care but I try to avoid that).

So looking back on the thread, I think that there were some problems on
both sides of the argument. When I look at some of the responses, I ask
whether the same responses would have been made to the Web or to PKIX or
SSH or to any of the application layer work that the IETF likes to consider
success stories. And of course, they were.

So how do we distinguish between important and unimportant work? I don't
think it can be through consensus alone. Consensus is the OUTPUT of the
IETF process, it cannot be an input and it certainly can't be a gating
function on deciding to work on problems at all. Nor do I agree that the
same criteria should apply at every level in the stack. If the narrow waist
means anything it is that we have to have very good reasons for making
changes at the waist. And if the bar there needs to be higher, that argues
it should be lower elsewhere.

So this seems like an opportunity to see if I am also tilting at windmills.
What should the criteria be and how do I go about meeting them?

The fundamental flaw for me in IPv10 was that I never understood the
problem it was supposed to solve let alone the reason it was important to
solve it.

The Mesh is considerably more extensive than IPv10 but I do know the
problems I am trying to solve and I can (and do) explain why those problems
are important in the very short times I get to speak in the decision making
venues. Venues where almost none of the participants are technical and I am
usually the only person from the network standards community.

The third issue of course is establishing a community of interest to work
on the proposal. Which is of course difficult until you have a working
prototype to demonstrate. But this is a double edged sword as once you have
such a prototype and people start to use it, most of your design is locked
in and you are going to be able to change rather little.

Finally, there is the question of deployment and the question of whether
the proposal has the support of a sufficient number of essential
stakeholders to succeed. This is where the IETF has had a
schizophrenic approach allowing dominant market players a veto in certain
areas (e.g. Web browsers) and insisting on ignoring them in others (the
IESG/IAB decision to prevent deployment of DNSSEC in 2001).

The particular problem I am trying to address is protecting the
confidentiality of Data At Rest. This is an issue that has recently
resulted in a nation state actor destroying the marriage of the CEO/founder
of the dominant supplier of cloud services. So there is at least one party
that cares. And Data at Rest breaches continue to be the largest source of
serious security breaches (with ransomware rapidly catching up). But my
deployment strategy is bottom up, not top down. I do not depend on any
other organization as an essential participant.

So here is my checklist of criteria:

1) What problem are you trying to solve?
2) Why is this problem important?
3) Is there a community of interest to develop it?
4) Who are the essential participants (gatekeepers) and will they
participate?

Notice that what the checklist does not include is does the proposal work.
My assumption is that it probably won't but this probably doesn't matter as
most things are fixable. Failing the four tests above is fatal unless the
proposal can be modified so that they can be passed.

Next step for the Mesh will be the release of the new document set
establishing the principles of Threshold Key Infrastructure and the
realization of those principles in the Mesh. Hopefully, that will be
followed shortly after by the release of the line mode tool.

v2.23.0 | Report a Bug | By Email