Re: ITU-T Dubai Meeting
Phillip Hallam-Baker <hallam@gmail.com> Thu, 02 August 2012 20:41 UTC
Return-Path: <hallam@gmail.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 31A6E21F8976 for <ietf@ietfa.amsl.com>; Thu, 2 Aug 2012 13:41:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.578
X-Spam-Level:
X-Spam-Status: No, score=-5.578 tagged_above=-999 required=5 tests=[AWL=-1.979, BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id H8JKnYjElehp for <ietf@ietfa.amsl.com>; Thu, 2 Aug 2012 13:41:17 -0700 (PDT)
Received: from mail-ob0-f172.google.com (mail-ob0-f172.google.com [209.85.214.172]) by ietfa.amsl.com (Postfix) with ESMTP id 0523921F8620 for <ietf@ietf.org>; Thu, 2 Aug 2012 13:41:16 -0700 (PDT)
Received: by obbwc20 with SMTP id wc20so16288817obb.31 for <ietf@ietf.org>; Thu, 02 Aug 2012 13:41:16 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=d/E+4eb+KX1mmneRj1Cv64wDyUh9MpFe4v0KIEVfrfA=; b=id14HnBylSl84N9y4JvkfsF3RC3GjKNkJVHwRBxKVOizRrKXJ+9KOiXbEFVpfA97KI LavOwNzaYcsKYBcY9nGWgGB5I9rQ8YSYA/jrStfLy8r4784/K6+xxKl1onuChcSysQK3 QIbQn+IGg4jUfkAicBu4R7CsB+wVsyZds7I7DZj4h1OLvpuesb8gMbpy7sQNvpySLpYi ZPqWS7CVpCevwTSFvH+G8YoS0F9UZX2XAdu9JgLux0tDppMH58he6qFwsM+tHqQJss7U O7s2MgqUnImBSaoL89/Yu1QpHjm440T/VhIwf4gW/I4R3GkYPQBGZQ+l2uxAIGOAProv /w+g==
MIME-Version: 1.0
Received: by 10.182.136.2 with SMTP id pw2mr39652231obb.54.1343940076524; Thu, 02 Aug 2012 13:41:16 -0700 (PDT)
Received: by 10.76.133.104 with HTTP; Thu, 2 Aug 2012 13:41:16 -0700 (PDT)
In-Reply-To: <20120802184436.87A0318C11F@mercury.lcs.mit.edu>
References: <20120802184436.87A0318C11F@mercury.lcs.mit.edu>
Date: Thu, 02 Aug 2012 13:41:16 -0700
Message-ID: <CAMm+Lwg2HgO-=9ED4vbmO+Vf9r6bYPcLDgfyMAyPdEPVgRm4LQ@mail.gmail.com>
Subject: Re: ITU-T Dubai Meeting
From: Phillip Hallam-Baker <hallam@gmail.com>
To: Noel Chiappa <jnc@mercury.lcs.mit.edu>
Content-Type: text/plain; charset="ISO-8859-1"
Cc: ietf@ietf.org
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 02 Aug 2012 20:41:18 -0000
On Thu, Aug 2, 2012 at 11:44 AM, Noel Chiappa <jnc@mercury.lcs.mit.edu> wrote: > > From: Phillip Hallam-Baker <hallam@gmail.com> > > > to stop such things as 'Information terrorism' which is their term for > > freedom of speech. > > :-) The term comes up in their treaty. > > If the WCIT process results in an over-reach, governments can and will > > leave the ITU. > > The latter is unlikely, IMO. If the ITU were to over-reach and get away with it then it will not have over-reached by definition. One of the factors here is that a lot of the diplomats working on 'cyber' (aka information engagement, cyber security, etc. etc.) began by working on arms limitation treaties. This turns out to be self reinforcing as once the US has a person from that world in their delegation the Russians will add someone who was part of earlier negotiations with her and vice versa. Nuclear deterrence is a viable strategy because nuclear weapons are difficult to make which makes the attribution problem tractable and thus enables a credible threat of consequences. Techies know that Cyber deterrence is obviously unworkable because attribution is not possible. We can track an IP packet to Iran but we cannot state with certainty who controlled the computer who sent it. The diplomats know that this is the case but really can't accept that it is the case because they are trying to cram cyber into their 'deterrence' framework. Cyber-attacks should be considered a form of terrorism. The barrier to entry is low, the consequences are disproportionate to the effort but fall far short of a conventional attack. At this point we are at the same stage of understanding of cyber as the diplomatic community was with terrorism in the mid 1960s when the terrorist movements began to become active in Europe. The US government is doing damn stupid things like attacking civil nuclear facilities and the Russians are doing stuff that is equally stupid. The challenge we face is how to define the border between a cyber attack (i.e. an act of war) and cyber-espionage (which is not considered warfare in law). I do not take offense at the Chinese government enacting a DIY reparations program for the 'open door' policy and the opium wars. I am going to do my best to help my customers stop them, but they are acting within their rights. > > The Internet has three separate potential control points: The IP Address > > registry, the DNS name registry and the various registries for protocol > > features. > > And it is these that in my perception are really what is at risk in Dubai, > which is why I disagreed (above) that the output of Dubai will necessarily be > a NOOP. Yes, it is all about the registries. > > We need to protect the openness of the Internet. We do not need to > > perpetuate the existence of ICANN, IANA or the RIRs as > > institutions. Maintaining the institutions may be a means of protecting > > the open internet but we should be prepared to walk away from them if > > necessary > > I concur that they may be expendable, but others may differ. In particular, > will not whatever replaces them be equally targets? Yes, a shell game may > produce temporary relief, but in the end won't the replacements be equally > targeted for takeover/control? That depends on whether the registry in question is dealing with a scarce resource or a plentiful one. Having two registries handing out IPv4 addresses at this point would be very very bad. Having more than one place you can get an IPv6 from would not worry me at all. > > If the ITU-T wants to also be in the business of handing out IPv6 > > address names then give then a /21 or a /16 and tell them to go > > party. No really, choose your battles. > > I basically agree. It could have negative impacts on the routing, by impacting > route aggregatability, but it can hardly be worse that those bletcherous PI > addresses, so if it makes them happy to be in charge of a large /N, why not? SM also commented on this: > If the ITU-T wants a /16 it is simply a matter of asking the IETF for it. No, if the ITU-T really wants to do this it is just a matter of them taking it. This happens repeatedly in registry schemes. They could ask the IETF for a /16 or they could simply send a message informing us that they will be allocating out of (say) 2F00::/16 from now on and that it would be 'inadvisable' for IANA, ICANN, IETF or whoever to grant competing allocations. If people choose to route packets for the corresponding BGP adverts then they get away with it. If they can't do that then we don't need to worry about them anyway. -- Website: http://hallambaker.com/
- ITU-T Dubai Meeting Phillip Hallam-Baker
- Re: ITU-T Dubai Meeting Noel Chiappa
- Re: ITU-T Dubai Meeting SM
- Re: ITU-T Dubai Meeting David Conrad
- Re: ITU-T Dubai Meeting Steven Bellovin
- Re: ITU-T Dubai Meeting Phillip Hallam-Baker
- Re: ITU-T Dubai Meeting Doug Barton
- Re: ITU-T Dubai Meeting Steven Bellovin
- Re: ITU-T Dubai Meeting Doug Barton
- Re: ITU-T Dubai Meeting Dmitry Burkov
- Re: ITU-T Dubai Meeting Daniel Karrenberg
- Re: ITU-T Dubai Meeting Brian E Carpenter
- Re: ITU-T Dubai Meeting Patrik Fältström
- Re: ITU-T Dubai Meeting Ole Jacobsen
- Re: ITU-T Dubai Meeting David Conrad
- Re: ITU-T Dubai Meeting Mark Andrews
- Re: ITU-T Dubai Meeting Dmitry Burkov
- Re: ITU-T Dubai Meeting SM
- Re: ITU-T Dubai Meeting Daniel Karrenberg
- Re: ITU-T Dubai Meeting Randy Bush
- Re: ITU-T Dubai Meeting Steven Bellovin
- Re: ITU-T Dubai Meeting Arturo Servin
- Re: ITU-T Dubai Meeting Martin Rex
- Re: ITU-T Dubai Meeting Brian E Carpenter
- Re: ITU-T Dubai Meeting Martin Rex
- Re: ITU-T Dubai Meeting Brian E Carpenter
- Re: ITU-T Dubai Meeting Noel Chiappa
- RE: ITU-T Dubai Meeting Worley, Dale R (Dale)
- Re: ITU-T Dubai Meeting Yoav Nir
- Re: ITU-T Dubai Meeting Noel Chiappa
- Re: ITU-T Dubai Meeting Yoav Nir
- Re: ITU-T Dubai Meeting Noel Chiappa
- Re: ITU-T Dubai Meeting Yoav Nir
- Re: ITU-T Dubai Meeting Doug Barton
- Re: ITU-T Dubai Meeting Mark Andrews
- Re: ITU-T Dubai Meeting Martin Rex
- Re: ITU-T Dubai Meeting Doug Barton
- Re: ITU-T Dubai Meeting Doug Barton
- Re: ITU-T Dubai Meeting Martin Rex
- Re: ITU-T Dubai Meeting Brian E Carpenter
- Re: ITU-T Dubai Meeting Daniel Karrenberg
- Re: ITU-T Dubai Meeting David Conrad
- Re: ITU-T Dubai Meeting Arturo Servin
- Re: ITU-T Dubai Meeting Doug Barton
- Re: ITU-T Dubai Meeting Phillip Hallam-Baker
- Re: ITU-T Dubai Meeting Randy Bush
- Re: ITU-T Dubai Meeting Phillip Hallam-Baker
- Re: ITU-T Dubai Meeting Randy Bush
- Re: ITU-T Dubai Meeting Phillip Hallam-Baker
- Re: ITU-T Dubai Meeting Randy Bush
- Re: ITU-T Dubai Meeting Phillip Hallam-Baker
- Re: ITU-T Dubai Meeting Michael Richardson