Re: [Pearg] [saag] Ten years after Snowden (2013 - 2023), is IETF keeping its promises?

Eliot Lear <lear@lear.ch> Wed, 04 January 2023 20:09 UTC

Content-Type: multipart/alternative; boundary="------------ILhAFW9zBCjiS8Fj4D20B6wA"
Message-ID: <a42ec124-9953-5bf5-c31d-6a274c8836dc@lear.ch>
Date: Wed, 04 Jan 2023 21:08:53 +0100
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:102.0) Gecko/20100101 Thunderbird/102.6.1
Content-Language: en-US
To: Christian Huitema <huitema@huitema.net>, Stewart Bryant <stewart.bryant@gmail.com>, Dino Farinacci <farinacci@gmail.com>
Cc: John Mattsson <john.mattsson=40ericsson.com@dmarc.ietf.org>, pearg@irtf.org
References: <9C9FAB23-D95D-4BB6-820C-95DA8018451B@gmail.com> <9E792EAB-29DF-4A7F-8F6B-BD5BF8041167@gmail.com> <bf81f001-3de1-0c05-bbbb-eda13adb4ddf@lear.ch> <b80abf6b-23fe-2fa8-a435-08d78be0de23@huitema.net>
From: Eliot Lear <lear@lear.ch>
In-Reply-To: <b80abf6b-23fe-2fa8-a435-08d78be0de23@huitema.net>
Archived-At: <https://mailarchive.ietf.org/arch/msg/pearg/fyfgEubPlGRtgNSn3hKAbMxK82Y>
Subject: Re: [Pearg] [saag] Ten years after Snowden (2013 - 2023), is IETF keeping its promises?
Precedence: list

On 04.01.23 20:53, Christian Huitema wrote:
> The problem is that the IP address is linked to the server and user 
> identity. Tracking the source and destination pair allows on path 
> entities to check which user contacts what server. It also allows 
> servers to check the identity of their client and their location. 
> Servers may have other ways to check identity such as cookies or 
> client login, but the client IP address provides location information 
> on top of that.

The thrust of my point is whether we need to make prohibitively 
expensive L3 changes.  OHTTP and ODNS demonstrate at a *technical level* 
that we do not.  But see below.

>
> The big issue behind that are of course performance and economics. 
> Using such relays degrades performance somewhat, if only because of 
> double or triple encryption: will the users accept that reduced 
> performance? And then, operating relays has a cost. Who will pay for 
> that? If the users do pay for that, how does the users pay without 
> disclosing their identities to the relays, and thus enable monitoring? 
> If the users do not pay, how can we sure of the intentions of whoever 
> is paying for the relays?

However you slice this, whether at L3 or above, you will have this 
problem.  This is true even with LISP, because the XTR requires an 
mapping function, and those things don't run for free either.  So it's 
probably good to distill the principles here, as you have done.  Many of 
the performance and cost issues are the same.

Eliot

[Pearg] Ten years after Snowden (2013 - 2023), is… John Mattsson
Re: [Pearg] Ten years after Snowden (2013 - 2023)… Christopher Wood
Re: [Pearg] Ten years after Snowden (2013 - 2023)… Brian E Carpenter
Re: [Pearg] Ten years after Snowden (2013 - 2023)… Phillip Hallam-Baker
Re: [Pearg] Ten years after Snowden (2013 - 2023)… Christian Huitema
Re: [Pearg] [saag] Ten years after Snowden (2013 … Dino Farinacci
Re: [Pearg] Ten years after Snowden (2013 - 2023)… Dave Taht
Re: [Pearg] [hrpc] Ten years after Snowden (2013 … Adrian Gropper
Re: [Pearg] [saag] Ten years after Snowden (2013 … Stewart Bryant
Re: [Pearg] [saag] Ten years after Snowden (2013 … Eliot Lear
Re: [Pearg] [saag] Ten years after Snowden (2013 … Antoine FRESSANCOURT
Re: [Pearg] [saag] Ten years after Snowden (2013 … Lloyd W
Re: [Pearg] [saag] Ten years after Snowden (2013 … George Michaelson
Re: [Pearg] [hrpc] Ten years after Snowden (2013 … Niels ten Oever
Re: [Pearg] Ten years after Snowden (2013 - 2023)… Vittorio Bertola
Re: [Pearg] Ten years after Snowden (2013 - 2023)… Dave Taht
Re: [Pearg] [saag] Ten years after Snowden (2013 … Phillip Hallam-Baker
Re: [Pearg] Ten years after Snowden (2013 - 2023)… John Mattsson
Re: [Pearg] [saag] Ten years after Snowden (2013 … Stewart Bryant
Re: [Pearg] [saag] Ten years after Snowden (2013 … Eric Rescorla
Re: [Pearg] [saag] Ten years after Snowden (2013 … Christian Huitema
Re: [Pearg] [saag] Ten years after Snowden (2013 … Dino Farinacci
Re: [Pearg] [saag] Ten years after Snowden (2013 … Dino Farinacci
Re: [Pearg] [saag] Ten years after Snowden (2013 … Dino Farinacci
Re: [Pearg] [saag] Ten years after Snowden (2013 … Eliot Lear
Re: [Pearg] [saag] Ten years after Snowden (2013 … Brian E Carpenter
Re: [Pearg] [saag] Ten years after Snowden (2013 … Phillip Hallam-Baker
Re: [Pearg] [saag] Ten years after Snowden (2013 … Tony Rutkowski
Re: [Pearg] [saag] Ten years after Snowden (2013 … Vittorio Bertola
Re: [Pearg] [saag] Ten years after Snowden (2013 … Ted Hardie
Re: [Pearg] [saag] Ten years after Snowden (2013 … John Mattsson
Re: [Pearg] [saag] Ten years after Snowden (2013 … Tony Rutkowski
Re: [Pearg] [saag] Ten years after Snowden (2013 … Brad Chen
Re: [Pearg] [saag] Ten years after Snowden (2013 … Kyle Rose
Re: [Pearg] [saag] Ten years after Snowden (2013 … Antoine FRESSANCOURT
Re: [Pearg] [saag] Ten years after Snowden (2013 … Eric Rescorla
Re: [Pearg] [saag] Ten years after Snowden (2013 … Brad Chen
Re: [Pearg] [saag] Ten years after Snowden (2013 … Tony Rutkowski
Re: [Pearg] [saag] Ten years after Snowden (2013 … Alan DeKok
Re: [Pearg] [saag] Ten years after Snowden (2013 … Tony Rutkowski
Re: [Pearg] [saag] Ten years after Snowden (2013 … Phillip Hallam-Baker
Re: [Pearg] [EXT] Re: [saag] Ten years after Snow… Vittorio Bertola
Re: [Pearg] [saag] Ten years after Snowden (2013 … Alan DeKok
Re: [Pearg] [saag] Ten years after Snowden (2013 … Dave Taht
Re: [Pearg] [saag] Ten years after Snowden (2013 … Tony Rutkowski
Re: [Pearg] [hrpc] Ten years after Snowden (2013 … Stephen Farrell
Re: [Pearg] [saag] Ten years after Snowden (2013 … Dino Farinacci
Re: [Pearg] [saag] Ten years after Snowden (2013 … Deen, Glenn (NBCUniversal)
Re: [Pearg] [hrpc] [saag] Ten years after Snowden… bzs
Re: [Pearg] [saag] Ten years after Snowden (2013 … Phillip Hallam-Baker
Re: [Pearg] [saag] Ten years after Snowden (2013 … Dino Farinacci
Re: [Pearg] [hrpc] [saag] Ten years after Snowden… Laurence Lundblade
Re: [Pearg] [saag] Ten years after Snowden (2013 … Mark Nottingham
Re: [Pearg] [hrpc] [saag] Ten years after Snowden… Abdussalam Baryun
Re: [Pearg] [saag] Ten years after Snowden (2013 … Brad Chen
Re: [Pearg] [hrpc] [saag] Ten years after Snowden… Laurence Lundblade
Re: [Pearg] [saag] Ten years after Snowden (2013 … Phillip Hallam-Baker
Re: [Pearg] [saag] Ten years after Snowden (2013 … Phillip Hallam-Baker
Re: [Pearg] [hrpc] [saag] Ten years after Snowden… Adrian Gropper
Re: [Pearg] [saag] Ten years after Snowden (2013 … Dino Farinacci
Re: [Pearg] [saag] [hrpc] Ten years after Snowden… Tony Rutkowski
[Pearg] times square 15 sec delay new years Dave Taht
Re: [Pearg] [saag] Ten years after Snowden (2013 … Dan Harkins
Re: [Pearg] [saag] Ten years after Snowden (2013 … Vittorio Bertola
Re: [Pearg] [saag] Ten years after Snowden (2013 … Alec Muffett
Re: [Pearg] [saag] Ten years after Snowden (2013 … Tony Rutkowski
Re: [Pearg] [saag] Ten years after Snowden (2013 … Alec Muffett
Re: [Pearg] [saag] Ten years after Snowden (2013 … Mark Nottingham
Re: [Pearg] [hrpc] [saag] Ten years after Snowden… Vittorio Bertola
Re: [Pearg] [hrpc] [saag] Ten years after Snowden… Ted Lemon
Re: [Pearg] [saag] Ten years after Snowden (2013 … Phillip Hallam-Baker
Re: [Pearg] [hrpc] [saag] Ten years after Snowden… Phillip Hallam-Baker
Re: [Pearg] [saag] Ten years after Snowden (2013 … Tony Rutkowski
Re: [Pearg] [saag] Ten years after Snowden (2013 … Phillip Hallam-Baker
Re: [Pearg] [saag] Ten years after Snowden (2013 … Tony Rutkowski
Re: [Pearg] [saag] Ten years after Snowden (2013 … Lloyd W
Re: [Pearg] [saag] Ten years after Snowden (2013 … Phillip Hallam-Baker
Re: [Pearg] Ten years after Snowden (2013 - 2023)… Fernando Gont
Re: [Pearg] [saag] Ten years after Snowden (2013 … Fernando Gont
Re: [Pearg] [saag] Ten years after Snowden (2013 … Luigi Iannone
Re: [Pearg] [saag] Ten years after Snowden (2013 … Christian Huitema