IETF Logo Mail Archive

[lisp] Fwd: decentralization of Internet (was Re: Bruce Schneier's Proposal to dedicate November meeting to saving the Internet from the NSA

Roger Jørgensen <rogerj@gmail.com> Sat, 07 September 2013 13:05 UTC

Return-Path: <rogerj@gmail.com>
X-Original-To: lisp@ietfa.amsl.com
Delivered-To: lisp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 76DC421E809A for <lisp@ietfa.amsl.com>; Sat, 7 Sep 2013 06:05:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.55
X-Spam-Level:
X-Spam-Status: No, score=-1.55 tagged_above=-999 required=5 tests=[AWL=-0.450, BAYES_00=-2.599, J_CHICKENPOX_44=0.6, J_CHICKENPOX_64=0.6, MIME_8BIT_HEADER=0.3, NO_RELAYS=-0.001]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 19Y0SIkD6U0y for <lisp@ietfa.amsl.com>; Sat, 7 Sep 2013 06:05:51 -0700 (PDT)
Received: from mail-wg0-x22f.google.com (mail-wg0-x22f.google.com [IPv6:2a00:1450:400c:c00::22f]) by ietfa.amsl.com (Postfix) with ESMTP id 15FF521E8099 for <lisp@ietf.org>; Sat, 7 Sep 2013 06:05:50 -0700 (PDT)
Received: by mail-wg0-f47.google.com with SMTP id f12so3907187wgh.14 for <lisp@ietf.org>; Sat, 07 Sep 2013 06:05:49 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type:content-transfer-encoding; bh=xACeVrg1c4xJ/MbZuTDRnKPz04FQiEtLrTMzwIsxf34=; b=YC4emJOBeWPpnMDrqi0cUiUVTyzTHhbbNjcEfh8YeUaHgIfiUINut0LzgsI3R5KJMy S56+zK3a7B9YcGQ5Mb56yqS2uAjPKpW2fxgyQvAu4SuM69zUirHTCUT2i/7YqdgZ3R/O 69m9aQqX7Hbipmn1ZVPkMltdU0su3QnA99Pki+1zG0l6TbYMaz+pgTUy/9YfHS1vcPf7 8jvr5nk+KzLph4UuBX4rpqTGq/FB0zKhI0CUHERUezKdGFblbipfOlY6ODPQlBVklEL1 mwbmgr1FeeDqCZfAh1j1wQtuYZEKUzCLXL5aQL8rZigMfSyhywRaaLjONS23hs6CiiXC k98w==
MIME-Version: 1.0
X-Received: by 10.180.11.37 with SMTP id n5mr2077804wib.25.1378559148946; Sat, 07 Sep 2013 06:05:48 -0700 (PDT)
Received: by 10.216.213.72 with HTTP; Sat, 7 Sep 2013 06:05:48 -0700 (PDT)
In-Reply-To: <CAKFn1SEsfrx_2bJH=dbJNLCpNyXKc-t2xuonY8NtA6PW1shrUQ@mail.gmail.com>
References: <20130907122051.D811818C0F1@mercury.lcs.mit.edu> <CAKFn1SEsfrx_2bJH=dbJNLCpNyXKc-t2xuonY8NtA6PW1shrUQ@mail.gmail.com>
Date: Sat, 07 Sep 2013 15:05:48 +0200
Message-ID: <CAKFn1SGAShVLog5TzzmGbQJSrAo=ZK+TqFTWAtbHnE4n_k210A@mail.gmail.com>
From: Roger Jørgensen <rogerj@gmail.com>
To: "lisp@ietf.org" <lisp@ietf.org>
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: quoted-printable
Subject: [lisp] Fwd: decentralization of Internet (was Re: Bruce Schneier's Proposal to dedicate November meeting to saving the Internet from the NSA
X-BeenThere: lisp@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: List for the discussion of the Locator/ID Separation Protocol <lisp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lisp>, <mailto:lisp-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/lisp>
List-Post: <mailto:lisp@ietf.org>
List-Help: <mailto:lisp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lisp>, <mailto:lisp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 07 Sep 2013 13:05:54 -0000

---------- Forwarded message ----------
From: Roger Jørgensen <rogerj@gmail.com>
Date: Sat, Sep 7, 2013 at 3:05 PM
Subject: Re: decentralization of Internet (was Re: Bruce Schneier's
Proposal to dedicate November meeting to saving the Internet from the
NSA
To: Noel Chiappa <jnc@mercury.lcs.mit.edu>
Cc: IETF Discussion <ietf@ietf.org>


On Sat, Sep 7, 2013 at 2:20 PM, Noel Chiappa <jnc@mercury.lcs.mit.edu> wrote:
>     > From: =?ISO-8859-1?Q?Roger_J=F8rgensen?= <rogerj@gmail.com>
>
>     > The userbase and deployment are relative small atm so it's doable to
>     > get fast deployment to.
>
> Alas, now that I think about the practicalities.... I don't think the average
> router has enough spare computing power to completely encrypt all the traffic.

I don't really see that as an issue, it's just a matter of engineering
and building
the router in a way that they can do it. AFAIK I think most routers have the
options of being extended by dedicated encrypt-all-traffic tasks? Probably some
changes needed on the software layer to use the extension but that's doable.

It is also just the situation right now on the router side. In general
should our
current technology and processing power be up for the job if needed.


> Whether or not encrypting just the source+dest addresses, and the sort+dest
> port (conviently next to each other in one block) is enough to do much good,
> and if the average router has enough spare crunch to do even that, is a good
> question.

Isn't the payload the important part to protect? the content of the package?


--

Roger Jorgensen           | ROJO9-RIPE
rogerj@gmail.com          | - IPv6 is The Key!
http://www.jorgensen.no   | roger@jorgensen.no


-- 

Roger Jorgensen           | ROJO9-RIPE
rogerj@gmail.com          | - IPv6 is The Key!
http://www.jorgensen.no   | roger@jorgensen.no

v2.23.0 | Report a Bug | By Email