Re: 10 years and no ubiquitous security

"Prof. Ahmed Bin Abbas Ahmed Ali Adas" <alaadas@kaau.edu.sa> Sat, 16 March 2002 08:01 UTC

Message-ID: <001101c1ccbb$5c8d4f80$eb551ad4@natasha>
From: "Prof. Ahmed Bin Abbas Ahmed Ali Adas" <alaadas@kaau.edu.sa>
To: Harald Koch <chk@pobox.com>
Cc: ipsec@lists.tislabs.com
References: <3C8FE569.64245AC8@greendragon.com> <25727.1016241953@elisabeth.cfrq.net>
Subject: Re: 10 years and no ubiquitous security
Date: Sat, 16 Mar 2002 10:22:35 +0300
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----=_NextPart_000_000E_01C1CCD4.7D990D40"
Disposition-Notification-To: "Prof. Ahmed Bin Abbas Ahmed Ali Adas" <alaadas@kaau.edu.sa>
Sender: owner-ipsec@lists.tislabs.com
Precedence: bulk

Hi

looking at your comments, it is true that standards without real implementation is only a document. However there is always in engineering the first mile problem and the last mile problem. Per say we need standards to go beyond. I would say that the early pioneers of IPsec did something and no one should say it is not countable

Ahmed Adas
  ----- Original Message ----- 
  From: Harald Koch 
  To: ipsec@lists.tislabs.com 
  Sent: Saturday, March 16, 2002 4:25 AM
  Subject: Re: 10 years and no ubiquitous security 

  > Today, IPSec has insignificant deployment, and the WG goeth on forever.
  > 
  > ...
  > 
  > Should I remind folks that at that same San Diego IETF, JI and Phil and 
  > Steve Deering and others of us had a lunch BOF on Mobile-IP?

  You're not the only one who was "around back then". I think most of us
  remember the world slightly differently from you. Whatever.

  People still can't get basic DNS deployment right, and that's quite a
  bit older than IPsec or Mobile-IP. (I deployed my first nameserver 14
  years ago).

  Unfortunately, standards are irrelevant without ubiquitous deployment of
  software that is (reasonably) easy to use; it hasn't been a
  inter-geek-net for a long time.

  Look at SSH; it *still* isn't completely standardized, but it is much
  easier to use (and more important, deploy) than IPsec. On the other
  hand, there's pkix; heavily documented and standardised, but hideously
  difficult to deploy and use.

  Of course, IPsec doesn't solve many problems, either, but that's an
  entirely separate debate. <ducking>

  -- 
  Harald Koch     <chk@pobox.com>

  "It takes a child to raze a village."
  -Michael T. Fry

10 years and no ubiquitous security William Allen Simpson
RE: 10 years and no ubiquitous security Dennis Beard
Re: 10 years and no ubiquitous security Sandy Harris
RE: 10 years and no ubiquitous security Paul Koning
RE: 10 years and no ubiquitous security Hallam-Baker, Phillip
Re: 10 years and no ubiquitous security Joe Touch
Re: 10 years and no ubiquitous security Derek Atkins
Re: 10 years and no ubiquitous security RJ Atkinson
Re: 10 years and no ubiquitous security The Purple Streak (Hilarie Orman)
Re: 10 years and no ubiquitous security Harald Koch
Re: 10 years and no ubiquitous security Prof. Ahmed Bin Abbas Ahmed Ali Adas
Re: 10 years and no ubiquitous security William Allen Simpson
Re: 10 years and no ubiquitous security William Allen Simpson
Re: 10 years and no ubiquitous security Steven M. Bellovin
Re: 10 years and no ubiquitous security Brian Lloyd
Re: 10 years and no ubiquitous security George Michaelson
Re: 10 years and no ubiquitous security RJ Atkinson
Re: 10 years and no ubiquitous security William Allen Simpson
Re: 10 years and no ubiquitous security Dan McDonald
Re: 10 years and no ubiquitous security William Allen Simpson
Re: 10 years and no ubiquitous security Alex Alten
Re: 10 years and no ubiquitous security The Purple Streak (Hilarie Orman)
RE: 10 years and no ubiquitous security Michael Choung Shieh
RE: 10 years and no ubiquitous security Alex Alten
RE: 10 years and no ubiquitous security Michael Choung Shieh