Re: "secure Dropbox clone" (was: Re: [IAB] IETF88 Technical Plenary hums)

"Eggert, Lars" <lars@netapp.com> Thu, 07 November 2013 14:39 UTC

Return-Path: <lars@netapp.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2EF4921E81D0 for <ietf@ietfa.amsl.com>; Thu, 7 Nov 2013 06:39:06 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.903
X-Spam-Level:
X-Spam-Status: No, score=-4.903 tagged_above=-999 required=5 tests=[AWL=-2.304, BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id G8RpYBhybp-y for <ietf@ietfa.amsl.com>; Thu, 7 Nov 2013 06:39:02 -0800 (PST)
Received: from mx11.netapp.com (mx11.netapp.com [216.240.18.76]) by ietfa.amsl.com (Postfix) with ESMTP id DD2FF21F89A5 for <ietf@ietf.org>; Thu, 7 Nov 2013 06:38:15 -0800 (PST)
X-IronPort-AV: E=Sophos; i="4.93,652,1378882800"; d="asc'?scan'208"; a="70980091"
Received: from vmwexceht04-prd.hq.netapp.com ([10.106.77.34]) by mx11-out.netapp.com with ESMTP; 07 Nov 2013 06:38:00 -0800
Received: from SACEXCMBX01-PRD.hq.netapp.com ([169.254.2.51]) by vmwexceht04-prd.hq.netapp.com ([10.106.77.34]) with mapi id 14.03.0123.003; Thu, 7 Nov 2013 06:37:59 -0800
From: "Eggert, Lars" <lars@netapp.com>
To: Vinayak Hegde <vinayakh@gmail.com>
Subject: Re: "secure Dropbox clone" (was: Re: [IAB] IETF88 Technical Plenary hums)
Thread-Topic: "secure Dropbox clone" (was: Re: [IAB] IETF88 Technical Plenary hums)
Thread-Index: AQHO27lz0R+UJJN0hUCvg4cHHUBwaJoaVwEAgAAFjwA=
Date: Thu, 7 Nov 2013 14:37:58 +0000
Message-ID: <CA05C4DD-4B2F-427C-8A59-C84919A1E48A@netapp.com>
References: <D1A50FE6-2A1E-47C9-A440-3A0655B9E188@isoc.org> <50B4387E-8E32-4E73-91F8-44268C5F5865@vigilsec.com> <559FCA81-CC65-437D-AD91-6693E219A991@netapp.com> <CAKe6YvM93SbQuNLoCOk1c9iCKOeh2-71xd_uST-EJ7XTaftO6A@mail.gmail.com>
In-Reply-To: <CAKe6YvM93SbQuNLoCOk1c9iCKOeh2-71xd_uST-EJ7XTaftO6A@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
x-originating-ip: [10.104.60.117]
Content-Type: multipart/signed; boundary="Apple-Mail=_7EE5D713-74FF-4825-8585-7E3E20671582"; protocol="application/pgp-signature"; micalg=pgp-sha1
MIME-Version: 1.0
Cc: IETF <ietf@ietf.org>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 07 Nov 2013 14:39:08 -0000

On 07 Nov 2013, at 6:18, Vinayak Hegde <vinayakh@gmail.com> wrote:
> There is Unison[1] which can sync across computers across networks and across OSes (Windows ,Linux, etc). It is open-source (GPL-licensed ) and trivial to setup. The transfer connections can be tunneled over encrypted SSH.
> 
> I have been using it for a while and it works well for the set of requirements you have noted.

Yup, but there is no phone/tablet support AFAIK. User desire to access their content on such devices is where DropBox and other services shine.

Lars

> 
> -- Vinayak
> 
> 1. http://www.cis.upenn.edu/~bcpierce/unison/
> 
> 
> On Thu, Nov 7, 2013 at 6:31 PM, Eggert, Lars <lars@netapp.com> wrote:
> Hi,
> 
> On 06 Nov 2013, at 12:41, Russ Housley <housley@vigilsec.com> wrote:
> > 5.  Many insecure protocols are used in the Internet today, and the IETF should create a secure alternative for the popular ones.
> 
> since a "secure DropBox alternative" was brought up: the pieces for building such do exist, but some exist outside the IETF. For example, SNIA's CDMI (http://www.snia.org/cdmi) could be useful, and on the IETF side we have of course WebDAV.
> 
> In many cases, the reason that such alternatives don't exist probably isn't because there aren't any open protocols available to build them with, it's that the proprietary services have polished clients that are simple to set up, available for many clients, and that they have a robust and well-managed backend. There's not much the IETF can do about these factors.
> 
> In the specific case of DropBox clones, several vendors of storage systems (incl. my employer) are making or will shortly be making mobile clients available that use said storage systems as a backend instead of the public cloud. So at least for that particular application, there are alternatives available.
> 
> Lars
> 
>