Re: [Pearg] [saag] Ten years after Snowden (2013 - 2023), is IETF keeping its promises?

Christian Huitema <huitema@huitema.net> Fri, 13 January 2023 06:26 UTC

Return-Path: <huitema@huitema.net>
X-Original-To: pearg@ietfa.amsl.com
Delivered-To: pearg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2E419C15E404 for <pearg@ietfa.amsl.com>; Thu, 12 Jan 2023 22:26:16 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.9
X-Spam-Level:
X-Spam-Status: No, score=-6.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, NICE_REPLY_A=-0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2YyBwE3aT7Me for <pearg@ietfa.amsl.com>; Thu, 12 Jan 2023 22:26:15 -0800 (PST)
Received: from mx36-out21.antispamcloud.com (mx36-out21.antispamcloud.com [209.126.121.69]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9F4AAC15949E for <pearg@irtf.org>; Thu, 12 Jan 2023 22:26:15 -0800 (PST)
Received: from xse118.mail2web.com ([66.113.196.118] helo=xse.mail2web.com) by mx256.antispamcloud.com with esmtp (Exim 4.92) (envelope-from <huitema@huitema.net>) id 1pGDVv-000OCe-Oe for pearg@irtf.org; Fri, 13 Jan 2023 07:26:12 +0100
Received: from xsmtp22.mail2web.com (unknown [10.100.68.61]) by xse.mail2web.com (Postfix) with ESMTPS id 4NtWdT0dCXz9Zs for <pearg@irtf.org>; Thu, 12 Jan 2023 22:26:05 -0800 (PST)
Received: from [10.5.2.12] (helo=xmail02.myhosting.com) by xsmtp22.mail2web.com with esmtps (TLS1.0:DHE_RSA_AES_256_CBC_SHA1:256) (Exim 4.92) (envelope-from <huitema@huitema.net>) id 1pGDVs-0007mF-Tv for pearg@irtf.org; Thu, 12 Jan 2023 22:26:04 -0800
Received: (qmail 2924 invoked from network); 13 Jan 2023 06:26:03 -0000
Received: from unknown (HELO [192.168.1.104]) (Authenticated-user:_huitema@huitema.net@[172.58.46.208]) (envelope-sender <huitema@huitema.net>) by xmail02.myhosting.com (qmail-ldap-1.03) with ESMTPA for <ggx@gigix.net>; 13 Jan 2023 06:26:03 -0000
Message-ID: <0f11f892-3def-c97d-4d5c-f1bdd568d607@huitema.net>
Date: Thu, 12 Jan 2023 22:26:03 -0800
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:102.0) Gecko/20100101 Thunderbird/102.6.1
Content-Language: en-US
To: Luigi Iannone <ggx@gigix.net>, Fernando Gont <fernando@gont.com.ar>
Cc: "pearg@irtf.org" <pearg@irtf.org>
References: <9C9FAB23-D95D-4BB6-820C-95DA8018451B@gmail.com> <9E792EAB-29DF-4A7F-8F6B-BD5BF8041167@gmail.com> <3c3230f3783b4ec9a8a9e3bb87cc2a8d@huawei.com> <47db47b1-e7c6-8a4b-da31-a2abd951ca7a@gont.com.ar> <955E4FE0-960E-4839-92CE-704E36B5D92D@gigix.net>
From: Christian Huitema <huitema@huitema.net>
In-Reply-To: <955E4FE0-960E-4839-92CE-704E36B5D92D@gigix.net>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Originating-IP: 66.113.196.118
X-Spampanel-Domain: xsmtpout.mail2web.com
X-Spampanel-Username: 66.113.196.0/24
Authentication-Results: antispamcloud.com; auth=pass smtp.auth=66.113.196.0/24@xsmtpout.mail2web.com
X-Spampanel-Outgoing-Class: unsure
X-Spampanel-Outgoing-Evidence: Combined (0.15)
X-Recommended-Action: accept
X-Filter-ID: Pt3MvcO5N4iKaDQ5O6lkdGlMVN6RH8bjRMzItlySaT9WLQux0N3HQm8ltz8rnu+BPUtbdvnXkggZ 3YnVId/Y5jcf0yeVQAvfjHznO7+bT5yiJCcjRq2hqrD2/ptWXAoffYzfQXcfqmra3dmoHS4ygk3U 6deecTAWuDZP63UAOoFWuRWrkPihq53YqAd1ENNqBHtNXu1E6L4+KyOXc4QYanQOD0r6/AaHZiEt dTMtMlia0Lmg/jgHfCNZd+W+PXf6XUk6RrSmTpxXJFCgE5YUPyue9TLOhN8AYRsvkjfngQC9MbDP yUBukWuaYaUwIAw1zDkBvlIN1pUDU5DU5DggD98cjIN3reG9z0FKKQ5m2Qpw7sOVVcM1Xk+Tdz6g /UMvfWqyN3veeFIMJz/vumcqAwMU9kjfE7EFo+kP5riIEUmxU01QhuxnshSbl6nxbLZ35/xY0uvo WBEOfzq3RG28wI7w4vcwqZanLHsZM8r4s5ZjlHoGly8aneNxj+pRyx6DFxVLaXQjMXzVZeSmCuLu +pFVgpT1b21uZVckGp0ccOZtuBWXiK6eoWgQZnNLL6SbpUc7peFeo3eDQNYbhOKhzzgqmaDn5SlD Y9mmtv6e91aWBLor1oCWetcUjeG94V2Xd0VuMyXLz+8t1Zxi7l9hE6TeVLW3pB0Q/PTyowo5Afvi G/B3mxjwuMw7ZUt6jDNYCFXoGKtafvOtcW/mP16bynTCOInfd76oq4RH5afpA3RRyBl07OVp2D/S 9ogT8aIX6abOyKlLsxs8P4CT3FEuGzy9o41545yQPpnMvCMqrF+C1AI9a3irbifzymzQYX+PODd1 oOvH6yTyjSBctVgxG1E4Wn+WlAmmewDJw+5rIYOKuZkMyFBGaEBYeh6pTEjUsTo5+qaoRIxz200l 53BIYX6m+UeFXprlCOm3BAEbJtAT1BYHStA0OogdNtRxnRSLF+XCKxIG9XMEgRDdaWpvCv+zESlk TxdSCNcDfRohcehWBb39uS1TjWG2Inx+Ts2QNOYPIz4ynMa7pZQ4hi/HGtuWeHzx9sLaQmDwvYQn 76e9NXttZBkk6PeFqH6So31P
X-Report-Abuse-To: spam@quarantine14.antispamcloud.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/pearg/ZKKsn0qKKnReuZUHo8VV70pLenU>
Subject: Re: [Pearg] [saag] Ten years after Snowden (2013 - 2023), is IETF keeping its promises?
X-BeenThere: pearg@irtf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Privacy Enhancements and Assessment Proposed RG <pearg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/pearg>, <mailto:pearg-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/pearg/>
List-Post: <mailto:pearg@irtf.org>
List-Help: <mailto:pearg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/pearg>, <mailto:pearg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Fri, 13 Jan 2023 06:26:16 -0000


On 1/12/2023 6:15 AM, Luigi Iannone wrote:
> Hi,
> 
>> On 4 Jan 2023, at 12:00, Fernando Gont<fernando@gont.com.ar>  wrote:
>>
>> On 4/1/23 05:59, Antoine FRESSANCOURT wrote:
>>> Hello,
>>> IP addresses are indeed topological. As you mentioned, the challenge with making the network layer privacy-preserving is how to route the packet without revealing the source and destination of packets.
>> Isn't that a bit like saying "the challenge is to take a cab and get to the intended destination without telling the taxi driver where to go"?
> I think it is not about the taxi driver, it is about who is outside the taxi and is looking where you are going without your express consent (or are waiting for you to lead you on a detour).
> Making them not knowing where you are and where you are going is the point IMHO.

The "cab" analogy breaks down because the cab driver kinda remembers who 
you are, while packets only carry a pair of addresses. But yes, 
detective work included finding cabs who had picked a passenger at some 
location, and asking the driver where they went, or vice versa. And that 
can be broken by picking a cab for a random point about midway to your 
destination, then walk a block or two to scramble the search, then pick 
another cab to your actual destination. Kind of like using VPNs.

-- Christian Huitema