Re: [Marnew] endpoint consent
Salvatore Loreto <salvatore.loreto@ericsson.com> Thu, 24 September 2015 11:38 UTC
Return-Path: <salvatore.loreto@ericsson.com>
X-Original-To: marnew@ietfa.amsl.com
Delivered-To: marnew@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1])
by ietfa.amsl.com (Postfix) with ESMTP id B7B2B1A9038
for <marnew@ietfa.amsl.com>; Thu, 24 Sep 2015 04:38:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.2
X-Spam-Level:
X-Spam-Status: No, score=-4.2 tagged_above=-999 required=5
tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3,
SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44])
by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024)
with ESMTP id 6G1K1gvkzqxX for <marnew@ietfa.amsl.com>;
Thu, 24 Sep 2015 04:38:38 -0700 (PDT)
Received: from sessmg22.ericsson.net (sessmg22.ericsson.net [193.180.251.58])
(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
(No client certificate requested)
by ietfa.amsl.com (Postfix) with ESMTPS id 2F60F1A9037
for <marnew@iab.org>; Thu, 24 Sep 2015 04:38:36 -0700 (PDT)
X-AuditID: c1b4fb3a-f79136d0000071e2-b7-5603e0ba64bf
Received: from ESESSHC021.ericsson.se (Unknown_Domain [153.88.253.124])
by sessmg22.ericsson.net (Symantec Mail Security) with SMTP id
38.E9.29154.AB0E3065; Thu, 24 Sep 2015 13:38:34 +0200 (CEST)
Received: from ESESSMB109.ericsson.se ([169.254.9.148]) by
ESESSHC021.ericsson.se ([153.88.183.81]) with mapi id 14.03.0248.002; Thu, 24
Sep 2015 13:38:34 +0200
From: Salvatore Loreto <salvatore.loreto@ericsson.com>
To: Aaron Falk <aaron.falk@gmail.com>
Thread-Topic: [Marnew] endpoint consent
Thread-Index: AQHQ9iukBSQ/j9WKXU+BTAxjwwVDN55K/WIAgAB9dnD///A0AIAAIlrw
Date: Thu, 24 Sep 2015 11:38:33 +0000
Message-ID: <2B9B48179856DC4FA00C93C79EB7E64A0E992443@ESESSMB109.ericsson.se>
References: <1991284A-864D-45C0-A016-A64C8FA5F029@gmail.com>
<09EC7D4E-0245-4019-9D20-F95CF2362845@piuha.net>
<2B9B48179856DC4FA00C93C79EB7E64A0E991DDD@ESESSMB109.ericsson.se>
<CAD62q9X0o3hUp_48OQCohkxh-+g-0YN+HJNCtZJX2huwa96ujw@mail.gmail.com>
In-Reply-To: <CAD62q9X0o3hUp_48OQCohkxh-+g-0YN+HJNCtZJX2huwa96ujw@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [153.88.183.148]
Content-Type: multipart/alternative;
boundary="_000_2B9B48179856DC4FA00C93C79EB7E64A0E992443ESESSMB109erics_"
MIME-Version: 1.0
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFupnkeLIzCtJLcpLzFFi42KZGfG3RnfXA+Ywg5l7jCzafk9jtZixbwWb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Archived-At: <http://mailarchive.ietf.org/arch/msg/marnew/aDKTXkWSFtErP_TRqLfopUJDCT8>
Cc: "marnew@iab.org" <marnew@iab.org>, Jari Arkko <jari.arkko@piuha.net>
Subject: Re: [Marnew] endpoint consent
X-BeenThere: marnew@iab.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Managing Radio Networks in an Encrypted World <marnew.iab.org>
List-Unsubscribe: <https://www.iab.org/mailman/options/marnew>,
<mailto:marnew-request@iab.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/marnew/>
List-Post: <mailto:marnew@iab.org>
List-Help: <mailto:marnew-request@iab.org?subject=help>
List-Subscribe: <https://www.iab.org/mailman/listinfo/marnew>,
<mailto:marnew-request@iab.org?subject=subscribe>
X-List-Received-Date: Thu, 24 Sep 2015 11:38:40 -0000
Indeed I agree on the transitiveness of the trust That is why I am suggesting that if a CP trust a CDN then it should be the CDN (or the CP if there is no CDN involved) to decide explicitly if trust or not the Operator Network If a CP / CDN believes, as I can see it is the case reading the several position papers, that the Network is in a position to provide optimization then they should find a way to trust each other… i.e. the CP/CDN ant the Network if we can find a simple mechanism/solution to do it then it will be a win-win situation BR Sal From: Aaron Falk [mailto:aaron.falk@gmail.com] Sent: den 24 september 2015 07:31 To: Salvatore Loreto Cc: Jari Arkko; marnew@iab.org Subject: Re: [Marnew] endpoint consent Thinking about this a bit more last night, let me suggest that in this case trust is transitive as long as it is explicit. Meaning, only one endpoint needs to be aware of the third actor but he needs to know what he is giving up in security through that trust. For example, it is pretty clear that a content provider know what they are doing when they allow a CDN to use a cert in their name (and that is also likely backed up with legal agreements on misuse) but an end user probably doesn't understand the security implications of installing a root cert issued by their ISP. On Thu, Sep 24, 2015 at 6:36 AM, Salvatore Loreto <salvatore.loreto@ericsson.com<mailto:salvatore.loreto@ericsson.com>> wrote: To answer Aaron question if we go on this path then BOTH endpoints MUST consent IMHO more or less in line with the Telefonica and ALU proposals at the Sigcomm workshop on middleboxes However having explored this topic in the past I agree with what Jari says below And I am not so sure is the right way to go! It would be much better if we can work on a collaborative solution between CP and/or CDN and the Mobile Network BR Salvatore -----Original Message----- From: Marnew [mailto:marnew-bounces@iab.org<mailto:marnew-bounces@iab.org>] On Behalf Of Jari Arkko Sent: den 24 september 2015 00:58 To: Aaron Falk Cc: marnew@iab.org<mailto:marnew@iab.org> Subject: Re: [Marnew] endpoint consent One challenge is of course that it is already difficult for the users (or even us experts) to understand all the exact things that are going on, so providing a useful control for the users even on bandwidth may not be easy. Let alone more complex settings. The other issue is that we should be careful about setting the ambition level. Fine-grained quality of service treatment has not been successful in the Internet. What's the right ambition level, being able to specify detailed bandwidth consumption rules? Or the ability to differentiate interactive from the non-interactive within one user? The more coarse grained you make this, the more likely it is that it can be used by applications and understood by users. Jari
- [Marnew] endpoint consent Aaron Falk
- Re: [Marnew] endpoint consent Natasha Rooney
- Re: [Marnew] endpoint consent Joe Hildebrand (jhildebr)
- Re: [Marnew] endpoint consent DIEGO LOPEZ GARCIA
- Re: [Marnew] endpoint consent Jari Arkko
- Re: [Marnew] endpoint consent Salvatore Loreto
- Re: [Marnew] endpoint consent Aaron Falk
- Re: [Marnew] endpoint consent Salvatore Loreto
- Re: [Marnew] endpoint consent Stephen Farrell
- Re: [Marnew] endpoint consent Dirk Kutscher
- Re: [Marnew] endpoint consent Roland Zink
- Re: [Marnew] endpoint consent Salz, Rich
- Re: [Marnew] endpoint consent Ca By
- Re: [Marnew] endpoint consent Songhaibin (A)