Re: [lisp] Fwd: decentralization of Internet (was Re: Bruce Schneier's Proposal to dedicate November meeting to saving the Internet from the NSA
Dino Farinacci <farinacci@gmail.com> Sat, 07 September 2013 15:59 UTC
Return-Path: <farinacci@gmail.com>
X-Original-To: lisp@ietfa.amsl.com
Delivered-To: lisp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CDF3221F9F6F for <lisp@ietfa.amsl.com>; Sat, 7 Sep 2013 08:59:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.453
X-Spam-Level:
X-Spam-Status: No, score=-0.453 tagged_above=-999 required=5 tests=[AWL=-0.749, BAYES_00=-2.599, J_CHICKENPOX_44=0.6, J_CHICKENPOX_64=0.6, MIME_8BIT_HEADER=0.3, MIME_QP_LONG_LINE=1.396]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KxhcNX-bGbr3 for <lisp@ietfa.amsl.com>; Sat, 7 Sep 2013 08:59:03 -0700 (PDT)
Received: from mail-pa0-x22a.google.com (mail-pa0-x22a.google.com [IPv6:2607:f8b0:400e:c03::22a]) by ietfa.amsl.com (Postfix) with ESMTP id B3D2F21F9F1B for <lisp@ietf.org>; Sat, 7 Sep 2013 08:59:03 -0700 (PDT)
Received: by mail-pa0-f42.google.com with SMTP id lj1so4567016pab.29 for <lisp@ietf.org>; Sat, 07 Sep 2013 08:59:02 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=references:mime-version:in-reply-to:content-type :content-transfer-encoding:message-id:cc:from:subject:date:to; bh=5vi5MKTXO6nqunoWKwEIFAJtCztax0zfUv9oGspEleI=; b=sjvVpojyGcwzMxYOKKgoXTmNm8khTwgtJeCfTVyjV0rFOPpI7mIY8LemeImx6knW4f cdCgbsZpKhX9f3wMnpdCyrtt+EH5e3OoGspUIDErLskljzayY4mEiRBg3aHJ2CLyvoDn PGpUC/iJr/4VVJ3nVTOejEd0A2Ec2vSrqnO/I8rlP72nN79vJiRJaoVu+ZWRTPlvFJJ6 QYbZ8B3BcGGoJcIEX1oIIgK3cU5PseNx2+Fr7KKZqI6Zj7XloGzytNEFpL1HxVnPbd2b ifIatiFii3Sdf2rWZqmGAZYVS9JP7GvzG99KLJqGbNGgYxSgmDsCgDnjnARYAPObn8UG Osvg==
X-Received: by 10.68.197.229 with SMTP id ix5mr1223395pbc.203.1378569542395; Sat, 07 Sep 2013 08:59:02 -0700 (PDT)
Received: from [10.250.117.102] (mobile-166-137-177-147.mycingular.net. [166.137.177.147]) by mx.google.com with ESMTPSA id nv6sm4965621pbc.6.1969.12.31.16.00.00 (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Sat, 07 Sep 2013 08:59:01 -0700 (PDT)
References: <20130907122051.D811818C0F1@mercury.lcs.mit.edu> <CAKFn1SEsfrx_2bJH=dbJNLCpNyXKc-t2xuonY8NtA6PW1shrUQ@mail.gmail.com> <CAKFn1SGAShVLog5TzzmGbQJSrAo=ZK+TqFTWAtbHnE4n_k210A@mail.gmail.com>
Mime-Version: 1.0 (1.0)
In-Reply-To: <CAKFn1SGAShVLog5TzzmGbQJSrAo=ZK+TqFTWAtbHnE4n_k210A@mail.gmail.com>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Message-Id: <4242370A-B766-49C0-9FBA-45F8B8157F9A@gmail.com>
X-Mailer: iPhone Mail (11A4449d)
From: Dino Farinacci <farinacci@gmail.com>
Date: Sat, 07 Sep 2013 08:59:00 -0700
To: Roger Jørgensen <rogerj@gmail.com>
Cc: "lisp@ietf.org" <lisp@ietf.org>
Subject: Re: [lisp] Fwd: decentralization of Internet (was Re: Bruce Schneier's Proposal to dedicate November meeting to saving the Internet from the NSA
X-BeenThere: lisp@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: List for the discussion of the Locator/ID Separation Protocol <lisp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lisp>, <mailto:lisp-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/lisp>
List-Post: <mailto:lisp@ietf.org>
List-Help: <mailto:lisp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lisp>, <mailto:lisp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 07 Sep 2013 15:59:04 -0000
But what if the core didn't need to change and you key-n-encrypt before you map-n-encap. In fact you could combine the "key" part and "map" part together in the same lookup. I'm just saying. :-) Dino > On Sep 7, 2013, at 6:05 AM, Roger Jørgensen <rogerj@gmail.com> wrote: > > ---------- Forwarded message ---------- > From: Roger Jørgensen <rogerj@gmail.com> > Date: Sat, Sep 7, 2013 at 3:05 PM > Subject: Re: decentralization of Internet (was Re: Bruce Schneier's > Proposal to dedicate November meeting to saving the Internet from the > NSA > To: Noel Chiappa <jnc@mercury.lcs.mit.edu> > Cc: IETF Discussion <ietf@ietf.org> > > > On Sat, Sep 7, 2013 at 2:20 PM, Noel Chiappa <jnc@mercury.lcs.mit.edu> wrote: >>> From: =?ISO-8859-1?Q?Roger_J=F8rgensen?= <rogerj@gmail.com> >> >>> The userbase and deployment are relative small atm so it's doable to >>> get fast deployment to. >> >> Alas, now that I think about the practicalities.... I don't think the average >> router has enough spare computing power to completely encrypt all the traffic. > > I don't really see that as an issue, it's just a matter of engineering > and building > the router in a way that they can do it. AFAIK I think most routers have the > options of being extended by dedicated encrypt-all-traffic tasks? Probably some > changes needed on the software layer to use the extension but that's doable. > > It is also just the situation right now on the router side. In general > should our > current technology and processing power be up for the job if needed. > > >> Whether or not encrypting just the source+dest addresses, and the sort+dest >> port (conviently next to each other in one block) is enough to do much good, >> and if the average router has enough spare crunch to do even that, is a good >> question. > > Isn't the payload the important part to protect? the content of the package? > > > -- > > Roger Jorgensen | ROJO9-RIPE > rogerj@gmail.com | - IPv6 is The Key! > http://www.jorgensen.no | roger@jorgensen.no > > > -- > > Roger Jorgensen | ROJO9-RIPE > rogerj@gmail.com | - IPv6 is The Key! > http://www.jorgensen.no | roger@jorgensen.no > _______________________________________________ > lisp mailing list > lisp@ietf.org > https://www.ietf.org/mailman/listinfo/lisp
- [lisp] Fwd: decentralization of Internet (was Re:… Roger Jørgensen
- Re: [lisp] decentralization of Internet (was Re: … Noel Chiappa
- [lisp] Fwd: decentralization of Internet (was Re:… Roger Jørgensen
- Re: [lisp] Fwd: decentralization of Internet (was… Dino Farinacci
- Re: [lisp] Fwd: decentralization of Internet (was… Marc Binderberger
- Re: [lisp] decentralization of Internet (was Re: … Noel Chiappa
- Re: [lisp] Fwd: decentralization of Internet (was… Noel Chiappa
- Re: [lisp] Fwd: decentralization of Internet (was… Edward Lopez
- Re: [lisp] Fwd: decentralization of Internet (was… Michiel Blokzijl (mblokzij)
- Re: [lisp] Fwd: decentralization of Internet (was… Edward Lopez
- Re: [lisp] Fwd: decentralization of Internet (was… Noel Chiappa
- Re: [lisp] Fwd: decentralization of Internet (was… Marc Binderberger
- Re: [lisp] Fwd: decentralization of Internet (was… Dino Farinacci
- Re: [lisp] Fwd: decentralization of Internet (was… Dino Farinacci
- Re: [lisp] Fwd: decentralization of Internet (was… Dino Farinacci
- Re: [lisp] Fwd: decentralization of Internet (was… Joel M. Halpern
- Re: [lisp] Fwd: decentralization of Internet (was… Michiel Blokzijl (mblokzij)
- Re: [lisp] Fwd: decentralization of Internet (was… Dino Farinacci
- Re: [lisp] Fwd: decentralization of Internet (was… Dino Farinacci
- Re: [lisp] Fwd: decentralization of Internet (was… Michiel Blokzijl (mblokzij)