IETF Logo Mail Archive

Re: Why we really can't use Facebook for technical discussion.

Phillip Hallam-Baker <phill@hallambaker.com> Sun, 06 June 2021 04:42 UTC

Return-Path: <hallam@gmail.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D311B3A3C38 for <ietf@ietfa.amsl.com>; Sat, 5 Jun 2021 21:42:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.401
X-Spam-Level:
X-Spam-Status: No, score=-1.401 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FORGED_FROMDOMAIN=0.248, FREEMAIL_FROM=0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.249, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id z2n6srFeCc06 for <ietf@ietfa.amsl.com>; Sat, 5 Jun 2021 21:42:02 -0700 (PDT)
Received: from mail-yb1-f170.google.com (mail-yb1-f170.google.com [209.85.219.170]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 11E583A3C36 for <ietf@ietf.org>; Sat, 5 Jun 2021 21:42:01 -0700 (PDT)
Received: by mail-yb1-f170.google.com with SMTP id y2so19828196ybq.13 for <ietf@ietf.org>; Sat, 05 Jun 2021 21:42:01 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=zJOmM3A3tu0ODGkFzmghi8ON+vQaBuyT4vukvC1z3tU=; b=N9vTCZ+WQSuZ0DJ75SbJYKynm2HtyVCh87TW9yXxgKoOXE7gvSe+eYTz8z/nWPv3CE UOQVDdUQnpMypIklojg8pN9hb31EwQGXztg/kxg1gB8SuP6xigXg/ohkoM65vssQQLyk tPjFj5CCvB8gi/VZG6F+MMxje9iG4NnZzExwLa9zh1Gl9NY7oaI/K4Wp7d6armkZ29Rw KoXCjjPVDcENUgXUWl6tMJ3rs3pzJGPOj2S6k+6UYumyg4MVtv4aGGBuVUPxmGh5O8ax 2tRA8QRJseIUBtwiiIrdwbGsSaj7MJAyf25GAO1/6sXPdDGelLuZPUy17E/vpuAOVgNy qQEQ==
X-Gm-Message-State: AOAM532ZZZoTHYMSomTLIZp09c0ax81tFaZ4OP6ERJlTn1nlx9iver7Y t8YT6Do0opxKwtEdFt7jG/FM9BUlEa16hdPHL9U=
X-Google-Smtp-Source: ABdhPJxkcJpE88IbJlF8gBaneabf+WNKZqVfvioSIyxzmTb5pElzcrsRP7UcXjWi36Nq1ubb5i7E3pe9yzb/lSZJ2uw=
X-Received: by 2002:a25:850b:: with SMTP id w11mr14955700ybk.518.1622954520960; Sat, 05 Jun 2021 21:42:00 -0700 (PDT)
MIME-Version: 1.0
References: <HJCFnRF4-BhmmY94naAXr7OwaHttkaKO4_PJx6u2V8ZyHKfo91h0wX96saMVs0sI6KM2vx-h6B-j1dGqj6XqneGrdw-smKRSp9LYfmYZGsg=@softarmor.com> <CALZ3u+a+ry4pd5eAB3QiboA2pwiVhTgc0D4Zte5_u+bj-GsonA@mail.gmail.com> <-Jo05E3w-YIEezoXLI6MpB83ZYosN9BemjreW0cpF-DKiwGfD1pdvjQNWNIRYKnfiqfQR46Ny1e5Ee2ppuMlGTLU1Jei_S4gcB1V9tc6YFI=@softarmor.com> <CAMm+LwgeZ787ae00+=fw8BP=n5OQ_TMsbtEeG16Zau=5O2Gxrg@mail.gmail.com> <kgFRgVMjBmAAi51vBqO0MUjYsZy6W-Ynt-eTs7R5hpfmkzeHf7M56NKf0IleO7k6y4onDRqi1V05AutO0k6kYv3--B9cGN5mnT4dEVJJK5I=@softarmor.com>
In-Reply-To: <kgFRgVMjBmAAi51vBqO0MUjYsZy6W-Ynt-eTs7R5hpfmkzeHf7M56NKf0IleO7k6y4onDRqi1V05AutO0k6kYv3--B9cGN5mnT4dEVJJK5I=@softarmor.com>
From: Phillip Hallam-Baker <phill@hallambaker.com>
Date: Sun, 06 Jun 2021 00:41:50 -0400
Message-ID: <CAMm+Lwi75JgScnXattZqwhPnc-ydFpGLVP-ETJx_y4WHvV_cqQ@mail.gmail.com>
Subject: Re: Why we really can't use Facebook for technical discussion.
To: Dean Willis <dean.willis@softarmor.com>
Cc: IETF Discussion Mailing List <ietf@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000b5618e05c4118b2e"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf/gozWR42-VU0zazqeQaz7Na5QO88>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 06 Jun 2021 04:42:07 -0000

On Sat, Jun 5, 2021 at 11:48 PM Dean Willis <dean.willis@softarmor.com>
wrote:

>
>
> -------- Original Message --------
> On Jun 5, 2021, 10:17 PM, Phillip Hallam-Baker <phill@hallambaker.com>
> wrote:
>
> Mathematical Mesh 3.0 Part VII: Mesh Callsign Service (ietf.org)
>
> ----
>
> This is exactly where I was trying to go with P2P-SIP/RELOAD but didn't
> get to, and it seems quite clever. The key is in using the distributed tree
> to store ephemeral but still relatively long-lived registrations, not
> massive or rapidly changing data.
>

Thanks,

The key is stripping out all the expensive parts of running DNS. Query is
pushed onto the Mesh Service Providers. So all the registry does is to
receive registration requests, validate the signatures on them and publish
them if correct. The registry log is broadcast in real time to the service
providers subscribing to it and is signed at regular intervals. Unlike the
DNS, there is no single point of failure, the most an attacker can hope for
is to take out one Service Provider, not 'the Internet' as would be the
case if .com went down. Even taking out the callsign registry merely
prevents updates reaching the service providers for a short while.

Cross notarization of the user and their Mesh Service Providers and the
Mesh Service Providers and the callsign registry is sufficient to mesh all
the signed notarized logs into a single entity. No party can defect
undetected without the collusion of every other party. So Alice would have
to be party to her own bamboozlement.

Once Alice has registered @alice, it is hers forever, it is bound to her
public key credential. If she misbehaves, curation services can mark her
account as being abusive. But they only have the power to describe, the
power to accept or reject her content lies with Alice herself.

v2.23.0 | Report a Bug | By Email