IETF Logo Mail Archive

Re: [lisp] RFC 6830 - possible extension.

"Joel M. Halpern" <jmh@joelhalpern.com> Sat, 24 August 2013 09:12 UTC

Return-Path: <jmh@joelhalpern.com>
X-Original-To: lisp@ietfa.amsl.com
Delivered-To: lisp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B000A21F8F4A for <lisp@ietfa.amsl.com>; Sat, 24 Aug 2013 02:12:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.599
X-Spam-Level:
X-Spam-Status: No, score=-102.599 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id J7Bztwh3qBkb for <lisp@ietfa.amsl.com>; Sat, 24 Aug 2013 02:12:36 -0700 (PDT)
Received: from mailc2.tigertech.net (mailc2.tigertech.net [208.80.4.156]) by ietfa.amsl.com (Postfix) with ESMTP id 764D821F9E6D for <lisp@ietf.org>; Sat, 24 Aug 2013 02:12:33 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mailc2.tigertech.net (Postfix) with ESMTP id 5E4441BC8CDD; Sat, 24 Aug 2013 02:12:33 -0700 (PDT)
X-Virus-Scanned: Debian amavisd-new at c2.tigertech.net
Received: from Joels-MacBook-Pro.local (c213-89-137-101.bredband.comhem.se [213.89.137.101]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mailc2.tigertech.net (Postfix) with ESMTPSA id ADCBA1BC8CD5; Sat, 24 Aug 2013 02:12:32 -0700 (PDT)
Message-ID: <52187901.7030607@joelhalpern.com>
Date: Sat, 24 Aug 2013 05:12:33 -0400
From: "Joel M. Halpern" <jmh@joelhalpern.com>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.8; rv:17.0) Gecko/20130801 Thunderbird/17.0.8
MIME-Version: 1.0
To: Noel Chiappa <jnc@mercury.lcs.mit.edu>
References: <20130821143058.2317B18C16E@mercury.lcs.mit.edu>
In-Reply-To: <20130821143058.2317B18C16E@mercury.lcs.mit.edu>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
Cc: lisp@ietf.org
Subject: Re: [lisp] RFC 6830 - possible extension.
X-BeenThere: lisp@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: List for the discussion of the Locator/ID Separation Protocol <lisp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lisp>, <mailto:lisp-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/lisp>
List-Post: <mailto:lisp@ietf.org>
List-Help: <mailto:lisp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lisp>, <mailto:lisp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 24 Aug 2013 09:12:41 -0000

Using the LISP mapping system to pass keys for use in the data plane is 
beyond what is in our current charter.
Once we clear that blocking items, it would be reasonable to discuss this.

Personally, I find arguments other than the shared anonymity pool to be 
more persuasive as to the value of this.  So, again personally, I would 
suggest including other motivations when we get to the discussion of 
working on the topic.

Yours,
Joel

On 8/21/13 10:30 AM, Noel Chiappa wrote:
>      > From: Nick <nick@lupine.me.uk>
>
>      >> The impetus for developing it was the Snowden PRISM/XKeyscore
>      >> disclosures - currently, a privacy-conscious ISP can't do much to
>      >> prevent traffic (especially headers) between themselves and another
>      >> privacy-conscious ISP from being snooped on.  Use of RLOCs instead of
>      >> EIDs in the outer IP header means that individual users share an
>      >> anonymity set which is the size of the number of users sharing that
>      >> RLOC. When both source and destination are obscured this way, it
>      >> becomes less "alice and bob are communicating", and more "someone in
>      >> chicago is talking to someone in toronto".
>
> This sounds quite interesting (although the denizens of certain large
> buildings might be grinding their teeth).
>
> All, does this fit within our current charter? If not, something to keep in
> mind if/when we redo the charter.
>
>      >> Obviously, preserving this anonymity requires the inner IP headers to
>      >> be encrypted
>
> Wonder if it's worth doing the payload, too? Obviously, that would cost more
> computing, but...
>
>      > I'm reasonably ignorant of the processes and politics of RFCs and
>      >  things.
>
> That's OK, we have plenty of experts on that... :-)
>
>       Noel
> _______________________________________________
> lisp mailing list
> lisp@ietf.org
> https://www.ietf.org/mailman/listinfo/lisp
>

v2.30.2 | Report a Bug | By Email | System Status