IETF Logo Mail Archive

Re: [lisp] Fwd: decentralization of Internet (was Re: Bruce Schneier's Proposal to dedicate November meeting to saving the Internet from the NSA

Marc Binderberger <marc@sniff.de> Sun, 08 September 2013 20:50 UTC

Return-Path: <marc@sniff.de>
X-Original-To: lisp@ietfa.amsl.com
Delivered-To: lisp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5E62021E80CE for <lisp@ietfa.amsl.com>; Sun, 8 Sep 2013 13:50:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.224
X-Spam-Level:
X-Spam-Status: No, score=-2.224 tagged_above=-999 required=5 tests=[AWL=0.375, BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id IErQicm1xWRd for <lisp@ietfa.amsl.com>; Sun, 8 Sep 2013 13:50:11 -0700 (PDT)
Received: from door.sniff.de (door.sniff.de [IPv6:2001:6f8:94f:1::1]) by ietfa.amsl.com (Postfix) with ESMTP id AA48111E815E for <lisp@ietf.org>; Sun, 8 Sep 2013 13:50:11 -0700 (PDT)
Received: from [IPv6:::1] (localhost.sniff.de [127.0.0.1]) by door.sniff.de (Postfix) with ESMTP id 26FBA2AA0F; Sun, 8 Sep 2013 20:50:09 +0000 (GMT)
Date: Sun, 08 Sep 2013 22:50:14 +0200
From: Marc Binderberger <marc@sniff.de>
To: Noel Chiappa <jnc@mercury.lcs.mit.edu>
Message-ID: <20130908225014145860.20554ab8@sniff.de>
In-Reply-To: <20130908140433.D217D18C0CE@mercury.lcs.mit.edu>
References: <20130908140433.D217D18C0CE@mercury.lcs.mit.edu>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: GyazMail version 1.5.15
Cc: lisp@ietf.org
Subject: Re: [lisp] Fwd: decentralization of Internet (was Re: Bruce Schneier's Proposal to dedicate November meeting to saving the Internet from the NSA
X-BeenThere: lisp@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: List for the discussion of the Locator/ID Separation Protocol <lisp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lisp>, <mailto:lisp-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/lisp>
List-Post: <mailto:lisp@ietf.org>
List-Help: <mailto:lisp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lisp>, <mailto:lisp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 08 Sep 2013 20:50:12 -0000

Hello Noel,

> Err, that would get the address and name of the ITR, not the actual source
> host.

this thread started with a subject of how to save the Internet from the 
all-powerful agencies. Lisp was not invented to hide your identity, 
it's only separating it from the location - this doesn't mean the 
location information cannot reveal your (real life) identity. At the 
end the agencies want your name, not your (inner) IP address.

If the xTR is close to you, e.g. your DSL router runs the xTR, then the 
locator is effectively a 1:1 mapping to your identity. If the xTR is 
your office branch router, well, then we have already  (a) a router to 
try to break in  and (b) a physical office location to look for you.

And if the xTR is further away from your Internet connection point then 
chances are you can get wire-tapped on your way to/from the xTR, i.e. 
Lisp would not help you at all.

That's all I wanted to say with my statement about "static setups".


Complete different story is if Lisp could make encryption e.g. between 
company office sites much easier, more scalable etc.. Independent from 
the original subject that would be a real benefit.


Regards, Marc


> 
> Depending on all sorts of factors, that plus the encrypted packet 
> _might_ get
> them the identity of the actual originator (not, for example, if the ITR has
> discarded the key used to encrypt the packet by the time the subpoena
> arrives...)
> 
> 	Noel
> _______________________________________________
> lisp mailing list
> lisp@ietf.org
> https://www.ietf.org/mailman/listinfo/lisp
>

v2.23.0 | Report a Bug | By Email