IETF Logo Mail Archive

Re: [lisp] Fwd: decentralization of Internet (was Re: Bruce Schneier's Proposal to dedicate November meeting to saving the Internet from the NSA

Dino Farinacci <farinacci@gmail.com> Sat, 07 September 2013 15:59 UTC

Return-Path: <farinacci@gmail.com>
X-Original-To: lisp@ietfa.amsl.com
Delivered-To: lisp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CDF3221F9F6F for <lisp@ietfa.amsl.com>; Sat, 7 Sep 2013 08:59:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.453
X-Spam-Level:
X-Spam-Status: No, score=-0.453 tagged_above=-999 required=5 tests=[AWL=-0.749, BAYES_00=-2.599, J_CHICKENPOX_44=0.6, J_CHICKENPOX_64=0.6, MIME_8BIT_HEADER=0.3, MIME_QP_LONG_LINE=1.396]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KxhcNX-bGbr3 for <lisp@ietfa.amsl.com>; Sat, 7 Sep 2013 08:59:03 -0700 (PDT)
Received: from mail-pa0-x22a.google.com (mail-pa0-x22a.google.com [IPv6:2607:f8b0:400e:c03::22a]) by ietfa.amsl.com (Postfix) with ESMTP id B3D2F21F9F1B for <lisp@ietf.org>; Sat, 7 Sep 2013 08:59:03 -0700 (PDT)
Received: by mail-pa0-f42.google.com with SMTP id lj1so4567016pab.29 for <lisp@ietf.org>; Sat, 07 Sep 2013 08:59:02 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=references:mime-version:in-reply-to:content-type :content-transfer-encoding:message-id:cc:from:subject:date:to; bh=5vi5MKTXO6nqunoWKwEIFAJtCztax0zfUv9oGspEleI=; b=sjvVpojyGcwzMxYOKKgoXTmNm8khTwgtJeCfTVyjV0rFOPpI7mIY8LemeImx6knW4f cdCgbsZpKhX9f3wMnpdCyrtt+EH5e3OoGspUIDErLskljzayY4mEiRBg3aHJ2CLyvoDn PGpUC/iJr/4VVJ3nVTOejEd0A2Ec2vSrqnO/I8rlP72nN79vJiRJaoVu+ZWRTPlvFJJ6 QYbZ8B3BcGGoJcIEX1oIIgK3cU5PseNx2+Fr7KKZqI6Zj7XloGzytNEFpL1HxVnPbd2b ifIatiFii3Sdf2rWZqmGAZYVS9JP7GvzG99KLJqGbNGgYxSgmDsCgDnjnARYAPObn8UG Osvg==
X-Received: by 10.68.197.229 with SMTP id ix5mr1223395pbc.203.1378569542395; Sat, 07 Sep 2013 08:59:02 -0700 (PDT)
Received: from [10.250.117.102] (mobile-166-137-177-147.mycingular.net. [166.137.177.147]) by mx.google.com with ESMTPSA id nv6sm4965621pbc.6.1969.12.31.16.00.00 (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Sat, 07 Sep 2013 08:59:01 -0700 (PDT)
References: <20130907122051.D811818C0F1@mercury.lcs.mit.edu> <CAKFn1SEsfrx_2bJH=dbJNLCpNyXKc-t2xuonY8NtA6PW1shrUQ@mail.gmail.com> <CAKFn1SGAShVLog5TzzmGbQJSrAo=ZK+TqFTWAtbHnE4n_k210A@mail.gmail.com>
Mime-Version: 1.0 (1.0)
In-Reply-To: <CAKFn1SGAShVLog5TzzmGbQJSrAo=ZK+TqFTWAtbHnE4n_k210A@mail.gmail.com>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Message-Id: <4242370A-B766-49C0-9FBA-45F8B8157F9A@gmail.com>
X-Mailer: iPhone Mail (11A4449d)
From: Dino Farinacci <farinacci@gmail.com>
Date: Sat, 07 Sep 2013 08:59:00 -0700
To: Roger Jørgensen <rogerj@gmail.com>
Cc: "lisp@ietf.org" <lisp@ietf.org>
Subject: Re: [lisp] Fwd: decentralization of Internet (was Re: Bruce Schneier's Proposal to dedicate November meeting to saving the Internet from the NSA
X-BeenThere: lisp@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: List for the discussion of the Locator/ID Separation Protocol <lisp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lisp>, <mailto:lisp-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/lisp>
List-Post: <mailto:lisp@ietf.org>
List-Help: <mailto:lisp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lisp>, <mailto:lisp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 07 Sep 2013 15:59:04 -0000

But what if the core didn't need to change and you key-n-encrypt before you map-n-encap. In fact you could combine the "key" part and "map" part together in the same lookup. 

I'm just saying.   :-)

Dino

> On Sep 7, 2013, at 6:05 AM, Roger Jørgensen <rogerj@gmail.com> wrote:
> 
> ---------- Forwarded message ----------
> From: Roger Jørgensen <rogerj@gmail.com>
> Date: Sat, Sep 7, 2013 at 3:05 PM
> Subject: Re: decentralization of Internet (was Re: Bruce Schneier's
> Proposal to dedicate November meeting to saving the Internet from the
> NSA
> To: Noel Chiappa <jnc@mercury.lcs.mit.edu>
> Cc: IETF Discussion <ietf@ietf.org>
> 
> 
> On Sat, Sep 7, 2013 at 2:20 PM, Noel Chiappa <jnc@mercury.lcs.mit.edu> wrote:
>>> From: =?ISO-8859-1?Q?Roger_J=F8rgensen?= <rogerj@gmail.com>
>> 
>>> The userbase and deployment are relative small atm so it's doable to
>>> get fast deployment to.
>> 
>> Alas, now that I think about the practicalities.... I don't think the average
>> router has enough spare computing power to completely encrypt all the traffic.
> 
> I don't really see that as an issue, it's just a matter of engineering
> and building
> the router in a way that they can do it. AFAIK I think most routers have the
> options of being extended by dedicated encrypt-all-traffic tasks? Probably some
> changes needed on the software layer to use the extension but that's doable.
> 
> It is also just the situation right now on the router side. In general
> should our
> current technology and processing power be up for the job if needed.
> 
> 
>> Whether or not encrypting just the source+dest addresses, and the sort+dest
>> port (conviently next to each other in one block) is enough to do much good,
>> and if the average router has enough spare crunch to do even that, is a good
>> question.
> 
> Isn't the payload the important part to protect? the content of the package?
> 
> 
> --
> 
> Roger Jorgensen           | ROJO9-RIPE
> rogerj@gmail.com          | - IPv6 is The Key!
> http://www.jorgensen.no   | roger@jorgensen.no
> 
> 
> -- 
> 
> Roger Jorgensen           | ROJO9-RIPE
> rogerj@gmail.com          | - IPv6 is The Key!
> http://www.jorgensen.no   | roger@jorgensen.no
> _______________________________________________
> lisp mailing list
> lisp@ietf.org
> https://www.ietf.org/mailman/listinfo/lisp

v2.23.0 | Report a Bug | By Email