Re: [obscurity-interest] GNU Free Call

Dean Willis <dean.willis@softarmor.com> Thu, 24 March 2011 19:07 UTC

Return-Path: <dean.willis@softarmor.com>
X-Original-To: obscurity-interest@core3.amsl.com
Delivered-To: obscurity-interest@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id D96113A68AD for <obscurity-interest@core3.amsl.com>; Thu, 24 Mar 2011 12:07:42 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -103.027
X-Spam-Level:
X-Spam-Status: No, score=-103.027 tagged_above=-999 required=5 tests=[AWL=-0.512, BAYES_00=-2.599, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-1, URIBL_RHS_DOB=1.083, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 67at1H3NgvNf for <obscurity-interest@core3.amsl.com>; Thu, 24 Mar 2011 12:07:41 -0700 (PDT)
Received: from mail-gx0-f172.google.com (mail-gx0-f172.google.com [209.85.161.172]) by core3.amsl.com (Postfix) with ESMTP id A49603A659A for <obscurity-interest@ietf.org>; Thu, 24 Mar 2011 12:07:41 -0700 (PDT)
Received: by gxk19 with SMTP id 19so140369gxk.31 for <obscurity-interest@ietf.org>; Thu, 24 Mar 2011 12:09:16 -0700 (PDT)
Received: by 10.236.77.161 with SMTP id d21mr11344912yhe.119.1300993756164; Thu, 24 Mar 2011 12:09:16 -0700 (PDT)
Received: from [192.168.89.100] (cpe-66-25-14-128.tx.res.rr.com [66.25.14.128]) by mx.google.com with ESMTPS id x28sm103990yhc.81.2011.03.24.12.09.14 (version=TLSv1/SSLv3 cipher=OTHER); Thu, 24 Mar 2011 12:09:14 -0700 (PDT)
References: <4C32EC9B-E2F6-4352-BE65-29E7D5CEEEA3@softarmor.com> <22F6318E46E26B498ABC828879B08D4F0E2BF3@TK5EX14MBXW653.wingroup.windeploy.ntdev.microsoft.com> <4D88D1F2.1050909@acm.org> <09677888-DF8F-4E55-91AC-BFDA47B0B6BF@softarmor.com> <22F6318E46E26B498ABC828879B08D4F0E331B@TK5EX14MBXW653.wingroup.windeploy.ntdev.microsoft.com>
In-Reply-To: <22F6318E46E26B498ABC828879B08D4F0E331B@TK5EX14MBXW653.wingroup.windeploy.ntdev.microsoft.com>
Mime-Version: 1.0 (Apple Message framework v1082)
Content-Type: multipart/alternative; boundary=Apple-Mail-59-564005974
Message-Id: <F009AB37-EEB3-4208-AC8C-AE7CA229D009@softarmor.com>
From: Dean Willis <dean.willis@softarmor.com>
Date: Thu, 24 Mar 2011 14:09:13 -0500
To: Christian Huitema <huitema@microsoft.com>
X-Mailer: Apple Mail (2.1082)
Cc: "obscurity-interest@ietf.org" <obscurity-interest@ietf.org>
Subject: Re: [obscurity-interest] GNU Free Call
X-BeenThere: obscurity-interest@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "Discussion of communications obscurity and real-time communications." <obscurity-interest.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/obscurity-interest>, <mailto:obscurity-interest-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/obscurity-interest>
List-Post: <mailto:obscurity-interest@ietf.org>
List-Help: <mailto:obscurity-interest-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/obscurity-interest>, <mailto:obscurity-interest-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 24 Mar 2011 19:07:42 -0000

On Mar 22, 2011, at 2:14 PM, Christian Huitema wrote:
> 
> Thinks to check for, and avoid, include reliance on specific “bootstrap” servers, or reliance on the DNS. I am also skeptical about using too much multicast, even on a local network, as multicast by nature is not very discrete. Thinks to seek, on the other hand, include usage of different channels for bootstrap, e.g. BlueTooth, NSP, or local Wi-Fi, and P2P cloud structures that limit connections to approved parties.
>  


Some of the proposals for bootstrapping a P2P require getting a certificate from a central server first, which supposedly lets one detect faux participants. This has its own caveats, as the recent Comodo-announced root certificate incident illustrates

http://searchsecurity.techtarget.com/news/article/0,289142,sid14_gci1529110,00.html

--
Dean