IETF Logo Mail Archive

[lisp] Fwd: decentralization of Internet (was Re: Bruce Schneier's Proposal to dedicate November meeting to saving the Internet from the NSA

Roger Jørgensen <rogerj@gmail.com> Sat, 07 September 2013 10:30 UTC

Return-Path: <rogerj@gmail.com>
X-Original-To: lisp@ietfa.amsl.com
Delivered-To: lisp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A5B1421E808E for <lisp@ietfa.amsl.com>; Sat, 7 Sep 2013 03:30:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.3
X-Spam-Level:
X-Spam-Status: No, score=-2.3 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, MIME_8BIT_HEADER=0.3, NO_RELAYS=-0.001]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MIOpkd1xfyhH for <lisp@ietfa.amsl.com>; Sat, 7 Sep 2013 03:30:25 -0700 (PDT)
Received: from mail-we0-x22e.google.com (mail-we0-x22e.google.com [IPv6:2a00:1450:400c:c03::22e]) by ietfa.amsl.com (Postfix) with ESMTP id BE86621E808F for <lisp@ietf.org>; Sat, 7 Sep 2013 03:30:24 -0700 (PDT)
Received: by mail-we0-f174.google.com with SMTP id q58so2786267wes.33 for <lisp@ietf.org>; Sat, 07 Sep 2013 03:30:20 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type:content-transfer-encoding; bh=YDnmQ2tem+Pp5KB0+H9stXX1+gtRKd0fhD1Jmuf74vY=; b=Mcl3Hno6LSgGT5q0SSqJQI6qQKmnLgmpbA3Klw1MCdWi8/Efc41sgcB7skeMB7Ye8r Smg9tzNfLOMYX7zA+oeN00yz6Wuh5Kf9EzvcmuCK2kaqkPYQmIbo3xH7AdQngVyFZTcK a1ygswRptiwhjLVsjHmohMv+tAbogihFV/738qA1Cn/imHVj+3bUcFUcN/5r7nhBxFCy cA3+4zGeGT827pMT6fQIbR+e4ytSunV1RhZJ3DLRmCK6jKh7TQqch73I7jHi6jITE4I1 GH2l4et3rMRNF041ugPJNWPUDFUucTTU0yxHap2ecdPbqijcmjfLeoIu88ZJ49ZWo7Br Skcg==
MIME-Version: 1.0
X-Received: by 10.180.208.7 with SMTP id ma7mr1685739wic.25.1378549820276; Sat, 07 Sep 2013 03:30:20 -0700 (PDT)
Received: by 10.216.213.72 with HTTP; Sat, 7 Sep 2013 03:30:20 -0700 (PDT)
In-Reply-To: <CAKFn1SFLUp6_vEPQYhCUgcv88B6Af-r34Jjnig8cv+ECDpR+TA@mail.gmail.com>
References: <20130907030504.9447718C0EE@mercury.lcs.mit.edu> <CAKFn1SFLUp6_vEPQYhCUgcv88B6Af-r34Jjnig8cv+ECDpR+TA@mail.gmail.com>
Date: Sat, 07 Sep 2013 12:30:20 +0200
Message-ID: <CAKFn1SEpONsh=zP39p4BftXeJti1sqiMBs4STshGtSXenRpayA@mail.gmail.com>
From: Roger Jørgensen <rogerj@gmail.com>
To: "lisp@ietf.org" <lisp@ietf.org>
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: quoted-printable
Subject: [lisp] Fwd: decentralization of Internet (was Re: Bruce Schneier's Proposal to dedicate November meeting to saving the Internet from the NSA
X-BeenThere: lisp@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: List for the discussion of the Locator/ID Separation Protocol <lisp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lisp>, <mailto:lisp-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/lisp>
List-Post: <mailto:lisp@ietf.org>
List-Help: <mailto:lisp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lisp>, <mailto:lisp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 07 Sep 2013 10:30:25 -0000

forward from a discussion on ietf@


---------- Forwarded message ----------
From: Roger Jørgensen <rogerj@gmail.com>
Date: Sat, Sep 7, 2013 at 12:30 PM
Subject: Re: decentralization of Internet (was Re: Bruce Schneier's
Proposal to dedicate November meeting to saving the Internet from the
NSA
To: Noel Chiappa <jnc@mercury.lcs.mit.edu>, IETF Discussion <ietf@ietf.org>


On Sat, Sep 7, 2013 at 5:05 AM, Noel Chiappa <jnc@mercury.lcs.mit.edu> wrote:
>     > From: Scott Brim <scott.brim@gmail.com>
>
>     > The encapsulation is not much of an obstacle to packet examination.
>
> There was actually a proposal a couple of weeks back in the WG to encrypt all
> traffic on the inter-xTR stage.
>
> The win in doing it in the xTRs, of course, is that you don't have to go
> change all the hosts, application by application: _all_ traffic, of any kind,
> from that site to any/all other sites which are encryption-enabled, will get
> a certain degree of confidentiality.
>
> Does this count as something the IETF can do reasonably quickly that will
> help somewhat? :-)

One easy fix then would be to have a MUST encrypt traffic between
xTRs, and that the encryption used MUST be strong. Are LISP@WG up for
the challenge? :-)

The userbase and deployment are relative small atm so it's doable to
get fast deployment to.



--

Roger Jorgensen           | ROJO9-RIPE
rogerj@gmail.com          | - IPv6 is The Key!
http://www.jorgensen.no   | roger@jorgensen.no


-- 

Roger Jorgensen           | ROJO9-RIPE
rogerj@gmail.com          | - IPv6 is The Key!
http://www.jorgensen.no   | roger@jorgensen.no

v2.23.0 | Report a Bug | By Email