IETF Logo Mail Archive

Re: [Model-t] Review of draft-thomson-tmi

Watson Ladd <watsonbladd@gmail.com> Wed, 08 December 2021 13:05 UTC

Return-Path: <watsonbladd@gmail.com>
X-Original-To: model-t@ietfa.amsl.com
Delivered-To: model-t@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4B42C3A07D0 for <model-t@ietfa.amsl.com>; Wed, 8 Dec 2021 05:05:24 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qswF_cmPKSPe for <model-t@ietfa.amsl.com>; Wed, 8 Dec 2021 05:05:20 -0800 (PST)
Received: from mail-ed1-x52c.google.com (mail-ed1-x52c.google.com [IPv6:2a00:1450:4864:20::52c]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CE5413A07CF for <model-t@iab.org>; Wed, 8 Dec 2021 05:05:19 -0800 (PST)
Received: by mail-ed1-x52c.google.com with SMTP id x15so8267960edv.1 for <model-t@iab.org>; Wed, 08 Dec 2021 05:05:19 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=stz5iKTWXfSSs4c4NrMwrOU/n0tw8DE4NmhsxO9s3Ws=; b=inrgDCSIu7JtKqrPv1FdAlD/kaeaZXq8SkJscl+Q1Ogod6YCQa1rWZza7KWcMkr8e6 p6s0kHs+MYkM5diER+eXwiK0Ap2vsj5ESN+JsPZGk0+j2Zd+vtVt3Xy+8KxSMTVGq1Yd 7XYiYGxdbCHBOAJphLUr2tR1mTRn0QZ1/6S7Nnv9B/pBCD+2Ct8Jf8yaq8JYDsNMY/j6 IwOxAA0i+15fxDi4ZgMJI+J6Yvz/4jGP95i9FFqvrh72E/9Ks8eENOQy9F3e2zh2Jwgd vp3Gc3xZPNHDVk3xnSZgPkNXyvGgPALl0nzWLthKRARgDIeFXV+ySi3A7HCoQSHtmLJE siAA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=stz5iKTWXfSSs4c4NrMwrOU/n0tw8DE4NmhsxO9s3Ws=; b=ScbET9mOecd1s2hVqRRGZIqeQYke/5LncDNNIjMGdbVctEbHdbaX73WTpwNO9ELBfX 2bn8x0TWKrW/3Xb3lXmKD6lizDOcPq/0eLNnXZJTZq0u7BKsHYF4Ru7OZo/WgdZub4MQ qUfDLCaF3V9C2TA7NxXh0q9aY7OOugYgDaPTFSrjauJNRgq5oPkGh8l36yMZBBZ7D2WK vFVm+dBSsp+q/9rOI9GflfU7ccWZS2qRuCvsEW9MI/Vq/yeadjmEFivX98EAmpiwIF2c cz4jHZv/6x8XsQUQLwvta/bjbTQ3mY8c1tuVuJRW1Px60zRfUf3y+Pi/sxNjhIFdmqDV tJqg==
X-Gm-Message-State: AOAM530d1rgXndxiih5ijw35YepA4TJJrzupixDb3QTc+XsbFs+Ums1T QVsmAFY5BDCL4JpP1hxHeyickjcnhMISySWYSns=
X-Google-Smtp-Source: ABdhPJxC0FkJSces5y6h1RjhpQ+u6f0MSXUxnQa8N2c/Sv7P0lvJiVhqbAG3BSEjaz+LoVHqylJbmOBVHcl8N5+VHnA=
X-Received: by 2002:a17:906:bc46:: with SMTP id s6mr7373188ejv.467.1638968716651; Wed, 08 Dec 2021 05:05:16 -0800 (PST)
MIME-Version: 1.0
References: <F2034CB3-D829-4C50-BC84-A89DE360FF7E@piuha.net> <1793552336.53819.1638947644889@appsuite-gw1.open-xchange.com>
In-Reply-To: <1793552336.53819.1638947644889@appsuite-gw1.open-xchange.com>
From: Watson Ladd <watsonbladd@gmail.com>
Date: Wed, 08 Dec 2021 08:05:04 -0500
Message-ID: <CACsn0c=pKw6YpEVFC5Tw-h7YUD=BavvQFs3+qbaUZpjNWNs-pQ@mail.gmail.com>
To: Vittorio Bertola <vittorio.bertola=40open-xchange.com@dmarc.ietf.org>
Cc: Jari Arkko <jari.arkko@piuha.net>, Martin Thomson <martin.thomson@gmail.com>, model-t@iab.org
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/model-t/Jhg5_LaLDM-4uzUIuxB7ChMEo8A>
Subject: Re: [Model-t] Review of draft-thomson-tmi
X-BeenThere: model-t@iab.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Discussions of changes in Internet deployment patterns and their impact on the Internet threat model <model-t.iab.org>
List-Unsubscribe: <https://www.iab.org/mailman/options/model-t>, <mailto:model-t-request@iab.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/model-t/>
List-Post: <mailto:model-t@iab.org>
List-Help: <mailto:model-t-request@iab.org?subject=help>
List-Subscribe: <https://www.iab.org/mailman/listinfo/model-t>, <mailto:model-t-request@iab.org?subject=subscribe>
X-List-Received-Date: Wed, 08 Dec 2021 13:05:24 -0000

On Wed, Dec 8, 2021 at 2:14 AM Vittorio Bertola
<vittorio.bertola=40open-xchange.com@dmarc.ietf.org> wrote:
>
> This is also why I would prefer to make recommendations on intermediaries only after having fully clarified the definitions above. There are cases in which intermediation is the only resort for a user to protect their privacy and security from misbehaving endpoints (e.g. a firewall or filter blocking IoT objects on the local network from connecting to undesired destinations, or preventing the unsuspecting user's browser to connect to a phishing page). We should first understand how the relationship between protocol intermediaries and endpoint intermediaries plays out in terms of user-centred objectives, and only then make recommendations.

I don't understand how the Internet Engineering Task Force can
meaningfully address endpoint security. Nor have I seen an example of
how 3552 updates would meaningfully address this, or changes in
protocols that would help either. If the product you want is Ware
report 2.0, that's potentially valuable, but not I think what we need
for the I part of the IETF.

-- 
Astra mortemque praestare gradatim

v2.23.0 | Report a Bug | By Email