IETF Logo Mail Archive

Re: Last Call: <draft-farrell-perpass-attack-02.txt> (Pervasive Monitoring is an Attack) to Best Current Practice

Stefan Winter <stefan.winter@restena.lu> Wed, 11 December 2013 07:21 UTC

Return-Path: <stefan.winter@restena.lu>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 02F541AE3BA for <ietf@ietfa.amsl.com>; Tue, 10 Dec 2013 23:21:11 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.4
X-Spam-Level:
X-Spam-Status: No, score=-1.4 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, GB_ABOUTYOU=0.5, RP_MATCHES_RCVD=-0.001, WEIRD_PORT=0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WwRuO_DgK9XW for <ietf@ietfa.amsl.com>; Tue, 10 Dec 2013 23:21:08 -0800 (PST)
Received: from smtprelay.restena.lu (smtprelay.restena.lu [IPv6:2001:a18:1::62]) by ietfa.amsl.com (Postfix) with ESMTP id 61D721AD8E3 for <ietf@ietf.org>; Tue, 10 Dec 2013 23:21:08 -0800 (PST)
Received: from smtprelay.restena.lu (localhost [127.0.0.1]) by smtprelay.restena.lu (Postfix) with ESMTP id 3172410580 for <ietf@ietf.org>; Wed, 11 Dec 2013 08:21:02 +0100 (CET)
Received: from aragorn.restena.lu (aragorn.restena.lu [IPv6:2001:a18:1:8::155]) by smtprelay.restena.lu (Postfix) with ESMTPS id 020131057E for <ietf@ietf.org>; Wed, 11 Dec 2013 08:21:01 +0100 (CET)
Message-ID: <52A8125B.1080506@restena.lu>
Date: Wed, 11 Dec 2013 08:20:59 +0100
From: Stefan Winter <stefan.winter@restena.lu>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.1.0
MIME-Version: 1.0
To: ietf@ietf.org
Subject: Re: Last Call: <draft-farrell-perpass-attack-02.txt> (Pervasive Monitoring is an Attack) to Best Current Practice
References: <20131203174852.21387.26099.idtracker@ietfa.amsl.com> <A3B306E3-846C-45BA-8ED9-13B96AA645A3@piuha.net> <002501cef266$b0b8a540$4001a8c0@gateway.2wire.net> <52A1A3AA.3080101@restena.lu> <009701cef2b3$f6c69400$4001a8c0@gateway.2wire.net>, <52A5786A.8040308@restena.lu>, <290E20B455C66743BE178C5C84F1240847E51037A1@EXMB01CMS.surrey.ac.uk> <290E20B455C66743BE178C5C84F1240847E51037A2@EXMB01CMS.surrey.ac.uk> <02c901cef5b5$7685f7e0$4001a8c0@gateway.2wire.net>
In-Reply-To: <02c901cef5b5$7685f7e0$4001a8c0@gateway.2wire.net>
X-Enigmail-Version: 1.6
OpenPGP: id=8A39DC66; url=http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xC0DE6A358A39DC66
Content-Type: multipart/signed; micalg="pgp-sha512"; protocol="application/pgp-signature"; boundary="oU4GOFuIOqDXkTFd72IrdPRxUj21Bn2EI"
X-Virus-Scanned: ClamAV
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 11 Dec 2013 07:21:11 -0000

Hi,

> <tp>
> 
> And that is another example of the use of encryption that I think
> may be abusive.
> 
> Increasingly, I find that when I access a website, of some leisure
> interest, an https:// tunnel has been set up to Google, Facebook,
> Twitter or some such, which makes me think that they are acquiring
> personal information about me, information which I cannot see,
> perhaps for use in a way I will not approve of.  It is like phishing,
> only
> different.

The HTTPS tunnel originates from your own machine. You can see what's
going into the tunnel if you want. HTTPS is about securing the
transport, not the endpoints.

> And there seems to be no way of stopping it (short of a router ACL to
> prevent access to Google).

It's well-known that Facebook "Like" buttons and things like that
communicate home before being used for anything. If they'd do it
unencryptedly, they'd still do it. The encryption doesn't change their
desired behaviour, only the way their payload is transported.

By encrypting, at the very least your personal data leaks to Google etc.
alone. (*) If they'd send it unencryptedly, everyone on the IP path,
such as a perpass attacker, *also* learns about your personal data.

So: encryption does something good even in the scenario you describe.

Greetings,

Stefan Winter

> Tom Petch
> 
> </tp>
> 
> 
> What I don't feel good about is perpass-attack, which is going to
> be at best ignored, or wildly misinterpreted and misused by its intended
> audience. It's primarily a kneejerk reaction to news events to assuage
> the consciences of IETF insiders.
> 
> also, do we get drafts through last call by simply now announcing in
> the draft that it has been through last call? That does make things
> easier. Must start writing 'this RFC' in drafts, which will help that
> benighted state come to pass.
> 
> Lloyd Wood
> http://sat-net.com/L.Wood/
> 
> 


-- 
Stefan WINTER
Ingenieur de Recherche
Fondation RESTENA - Réseau Téléinformatique de l'Education Nationale et
de la Recherche
6, rue Richard Coudenhove-Kalergi
L-1359 Luxembourg

Tel: +352 424409 1
Fax: +352 422473

PGP key updated to 4096 Bit RSA - I will encrypt all mails if the
recipient's key is known to me

http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xC0DE6A358A39DC66

v2.23.0 | Report a Bug | By Email