IETF Logo Mail Archive

Re: Last Call: <draft-farrell-perpass-attack-02.txt> (Pervasive Monitoring is an Attack) to Best Current Practice

t.p. <daedulus@btconnect.com> Fri, 06 December 2013 19:00 UTC

Return-Path: <daedulus@btconnect.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2042D1AE066 for <ietf@ietfa.amsl.com>; Fri, 6 Dec 2013 11:00:26 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.2
X-Spam-Level:
X-Spam-Status: No, score=-4.2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SPcwrHhhdcOJ for <ietf@ietfa.amsl.com>; Fri, 6 Dec 2013 11:00:24 -0800 (PST)
Received: from tx2outboundpool.messaging.microsoft.com (tx2ehsobe001.messaging.microsoft.com [65.55.88.11]) by ietfa.amsl.com (Postfix) with ESMTP id 7FAAC1ADEB4 for <ietf@ietf.org>; Fri, 6 Dec 2013 11:00:24 -0800 (PST)
Received: from mail225-tx2-R.bigfish.com (10.9.14.249) by TX2EHSOBE011.bigfish.com (10.9.40.31) with Microsoft SMTP Server id 14.1.225.22; Fri, 6 Dec 2013 19:00:20 +0000
Received: from mail225-tx2 (localhost [127.0.0.1]) by mail225-tx2-R.bigfish.com (Postfix) with ESMTP id 421F8AC01F8; Fri, 6 Dec 2013 19:00:20 +0000 (UTC)
X-Forefront-Antispam-Report: CIP:157.56.249.213; KIP:(null); UIP:(null); IPV:NLI; H:AM2PRD0710HT001.eurprd07.prod.outlook.com; RD:none; EFVD:NLI
X-SpamScore: -16
X-BigFish: PS-16(zzbb2dI98dI9371I542I1432Izz1f42h2148h208ch1ee6h1de0h1fdah2073h2146h1202h1e76h20f7h2189h1d1ah1d2ah1fc6hzz1de098h1033IL8275dh1de097hz2dh2a8h5a9h839h947hd24hf0ah1177h1179h1288h12a5h12a9h12bdh137ah139eh13b6h1441h1504h1537h162dh1631h1758h17f1h184fh1898h18e1h1946h19b5h19ceh1ad9h1b0ah2222h224fh1d0ch1d2eh1d3fh1dfeh1dffh1e1dh1e23h2218h2216h226dh22d0h2327h2336h304l1d11m1155h)
X-Forefront-Antispam-Report-Untrusted: SFV:NSPM; SFS:(199002)(51704005)(377454003)(189002)(24454002)(479174003)(13464003)(83322001)(56776001)(23756003)(56816005)(74502001)(74706001)(90146001)(47446002)(54316002)(53806001)(50466002)(62966002)(4396001)(42186004)(50226001)(49866001)(87976001)(77982001)(33646001)(88136002)(77096001)(76796001)(77156001)(59766001)(31966008)(76786001)(89996001)(85852002)(83072001)(14496001)(74662001)(85306002)(61296002)(69226001)(66066001)(80022001)(44716002)(65816001)(84392001)(87286001)(62236002)(81542001)(76482001)(79102001)(50986001)(81342001)(44736004)(47976001)(47736001)(19580405001)(51856001)(80976001)(19580395003)(74366001)(63696002)(87266001)(47776003)(46102001)(74876001)(74416001)(7726001); DIR:OUT; SFP:; SCL:1; SRVR:DB4PR07MB252; H:AMXPRD0111HT003.eurprd01.prod.exchangelabs.com; CLIP:157.56.250.117; FPR:; RD:InfoNoRecords; A:0; MX:1; LANG:en;
Received: from mail225-tx2 (localhost.localdomain [127.0.0.1]) by mail225-tx2 (MessageSwitch) id 1386356418325310_30431; Fri, 6 Dec 2013 19:00:18 +0000 (UTC)
Received: from TX2EHSMHS028.bigfish.com (unknown [10.9.14.231]) by mail225-tx2.bigfish.com (Postfix) with ESMTP id 41E66CC005A; Fri, 6 Dec 2013 19:00:18 +0000 (UTC)
Received: from AM2PRD0710HT001.eurprd07.prod.outlook.com (157.56.249.213) by TX2EHSMHS028.bigfish.com (10.9.99.128) with Microsoft SMTP Server (TLS) id 14.16.227.3; Fri, 6 Dec 2013 19:00:17 +0000
Received: from DB4PR07MB252.eurprd07.prod.outlook.com (10.242.231.153) by AM2PRD0710HT001.eurprd07.prod.outlook.com (10.255.165.36) with Microsoft SMTP Server (TLS) id 14.16.383.1; Fri, 6 Dec 2013 19:00:17 +0000
Received: from AMXPRD0111HT003.eurprd01.prod.exchangelabs.com (157.56.250.117) by DB4PR07MB252.eurprd07.prod.outlook.com (10.242.231.153) with Microsoft SMTP Server (TLS) id 15.0.837.10; Fri, 6 Dec 2013 19:00:17 +0000
Message-ID: <00c301cef2b4$f7de5020$4001a8c0@gateway.2wire.net>
From: "t.p." <daedulus@btconnect.com>
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>, Stefan Winter <stefan.winter@restena.lu>, ietf@ietf.org
References: <20131203174852.21387.26099.idtracker@ietfa.amsl.com> <A3B306E3-846C-45BA-8ED9-13B96AA645A3@piuha.net> <002501cef266$b0b8a540$4001a8c0@gateway.2wire.net> <52A1A3AA.3080101@restena.lu> <52A1BBDD.2090502@cs.tcd.ie>
Subject: Re: Last Call: <draft-farrell-perpass-attack-02.txt> (Pervasive Monitoring is an Attack) to Best Current Practice
Date: Fri, 06 Dec 2013 18:57:02 +0000
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2800.1106
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106
X-Originating-IP: [157.56.250.117]
X-ClientProxiedBy: AMSPR07CA005.eurprd07.prod.outlook.com (10.242.77.173) To DB4PR07MB252.eurprd07.prod.outlook.com (10.242.231.153)
X-Forefront-PRVS: 0052308DC6
X-OriginatorOrg: btconnect.com
X-FOPE-CONNECTOR: Id%0$Dn%*$RO%0$TLS%0$FQDN%$TlsDn%
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 06 Dec 2013 19:00:26 -0000

----- Original Message -----
From: "Stephen Farrell" <stephen.farrell@cs.tcd.ie>
To: "Stefan Winter" <stefan.winter@restena.lu>; <ietf@ietf.org>
Sent: Friday, December 06, 2013 11:58 AM
>
> On 12/06/2013 10:15 AM, Stefan Winter wrote:
> > The TV manufacturer could have used it - they were simply stupid
> > enough to forget about it.
>
> I think in that case, the person who spotted the issue would
> also have considered it odd if ciphertext continued to be
> emitted after they had clicked the "don't send" button.
>

The person who spotted the issue did click "don't send" and the messages
continued to be sent (according to the reports).  Which is, after all,
exactly what you would expect to see with good security - don't give the
other parties an opportunity to use traffic analysis to determine what
is going on.

Tom Petch


> S.

v2.23.0 | Report a Bug | By Email