Teachable moment

Brian E Carpenter <brian.e.carpenter@gmail.com> Fri, 06 September 2013 20:58 UTC

Return-Path: <brian.e.carpenter@gmail.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EFE4C21F9AD5 for <ietf@ietfa.amsl.com>; Fri, 6 Sep 2013 13:58:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.648
X-Spam-Level:
X-Spam-Status: No, score=-102.648 tagged_above=-999 required=5 tests=[AWL=-0.049, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0UC2a9y6Exem for <ietf@ietfa.amsl.com>; Fri, 6 Sep 2013 13:58:25 -0700 (PDT)
Received: from mail-pb0-x22a.google.com (mail-pb0-x22a.google.com [IPv6:2607:f8b0:400e:c01::22a]) by ietfa.amsl.com (Postfix) with ESMTP id 82E1321F8EDF for <ietf@ietf.org>; Fri, 6 Sep 2013 13:58:25 -0700 (PDT)
Received: by mail-pb0-f42.google.com with SMTP id un15so3696369pbc.29 for <ietf@ietf.org>; Fri, 06 Sep 2013 13:58:25 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:date:from:organization:user-agent:mime-version:to:cc :subject:references:in-reply-to:content-type :content-transfer-encoding; bh=jrzoMNhFDwgc46XRp4AtMmwcSdsgSMJnSmmaiq509p0=; b=OMD5N8G7qhuhNGlBCtl+PI4e8LNwQptbds2Ar8eWCWxa2N4ZI4J3XutTlNwphOLzyG m57h+uIvzpmgLmOrq4v1nQwkC2bDGxLJ4wBYGJ5YnK9bnBODmHEzmIOC5q0wqtvW49JV HaekZqor4mERwAVGetF2gUiEHlZRGbqI3KfHSp6VnGv+Cbp3vYtPckjIsRc/EG9+ynzL i1B668E2Q8E6HS4busxgB0uPDho2i+aJKeh1kEVDdR6a+WtsaY8bEX8phqUA1+QKjT50 qFfD2cKJ72TLWwpyLBOZivS21dJ/DPULs5L2DapttU/Ujts9Y2yfJW9PfkXBjqgUqSuQ GG5g==
X-Received: by 10.68.196.2 with SMTP id ii2mr5150413pbc.86.1378501105228; Fri, 06 Sep 2013 13:58:25 -0700 (PDT)
Received: from [192.168.178.20] (139.200.69.111.dynamic.snap.net.nz. [111.69.200.139]) by mx.google.com with ESMTPSA id va1sm2848960pbc.31.1969.12.31.16.00.00 (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Fri, 06 Sep 2013 13:58:24 -0700 (PDT)
Message-ID: <522A41FA.5000406@gmail.com>
Date: Sat, 07 Sep 2013 08:58:34 +1200
From: Brian E Carpenter <brian.e.carpenter@gmail.com>
Organization: University of Auckland
User-Agent: Thunderbird 2.0.0.6 (Windows/20070728)
MIME-Version: 1.0
To: Ted Lemon <ted.lemon@nominum.com>
Subject: Teachable moment
References: <5F053C0B-4678-4680-A8BF-62FF282ADDCE@softarmor.com> <alpine.BSF.2.00.1309051743130.47262@hiroshima.bogus.com> <52293197.1060809@gmail.com> <CAMm+LwjdN478yyU=J7=GTpQxqtdgP8wtdEtna50X+WtA-bV3hg@mail.gmail.com> <CAKe6YvMZmAUog1tNHZ8mX61vBsALj+bw6gbM9V5EdQSLva4nJQ@mail.gmail.com> <6.2.5.6.2.20130905205602.0666f360@resistor.net> <4033FFDA-BB99-47AA-AF7D-DBDA0416C1CF@nominum.com>
In-Reply-To: <4033FFDA-BB99-47AA-AF7D-DBDA0416C1CF@nominum.com>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Cc: "ietf@ietf.org Discussion" <ietf@ietf.org>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 06 Sep 2013 20:58:26 -0000

Ted,

On 07/09/2013 03:32, Ted Lemon wrote:
> On Sep 6, 2013, at 2:46 AM, SM <sm@resistor.net> wrote:
>> At 20:08 05-09-2013, Ted Lemon wrote:
>>> I think we all knew NSA was collecting the data.   Why didn't we do something about it sooner?   Wasn't it an emergency when the PATRIOT act was passed?   We certainly thought it was an emergency back in the days of Skipjack, but then they convinced us we'd won.   Turns out they just went around us.
>> I would describe it as a scuffle instead of a battle.  My guess is that the IETF did not do anything sooner as nobody knows what to do, or it may be that the IETF has become conservative and it does not pay attention to the minority report.
> 
> It was definitely a battle.   There were threats of imprisonment, massive propaganda dumps (think of the children!), etc.   People broke the law, moved countries, etc.   We just forget it because "we" "won" it, and it seems smaller in memory than it was when it was happening.
> 
> The IETF didn't do anything because the tin foil hat contingent didn't have consensus, and we had no data to force the point.   As you alluded to earlier, it's historically been very difficult to get people to treat security and privacy seriously, and frankly it still is.
> 
> So this isn't an emergency.   It's a teachable moment.   We should pay attention.

Absolutely. I have noted at least 20 messages in the recent flood that
mention useful things the IETF can do, which is exactly what my provocative
message asked for. But (as Bruce's own recent posts show) the main weak spots
are not protocols and algorithms.

      Brian