IETF Logo Mail Archive

Re: [perpass] "Guide to intranet protection"?

Phillip Hallam-Baker <hallam@gmail.com> Thu, 28 November 2013 14:50 UTC

Return-Path: <hallam@gmail.com>
X-Original-To: perpass@ietfa.amsl.com
Delivered-To: perpass@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0AEC11AE158 for <perpass@ietfa.amsl.com>; Thu, 28 Nov 2013 06:50:03 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RQrMW2ZIuf20 for <perpass@ietfa.amsl.com>; Thu, 28 Nov 2013 06:50:01 -0800 (PST)
Received: from mail-lb0-x231.google.com (mail-lb0-x231.google.com [IPv6:2a00:1450:4010:c04::231]) by ietfa.amsl.com (Postfix) with ESMTP id A34EB1AE086 for <perpass@ietf.org>; Thu, 28 Nov 2013 06:50:00 -0800 (PST)
Received: by mail-lb0-f177.google.com with SMTP id w7so6115468lbi.8 for <perpass@ietf.org>; Thu, 28 Nov 2013 06:49:59 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=VOzS+TskL31fsvF9S3eZqe7BnDLL5/9p6lVvN9ZLCUU=; b=ph3MQi9WBPr+77DQyDkw6elrnSCAmaNbE95wTdqtnzUCIo233OCqCEAu8gKqJOLJ02 wZIIXlI9XHZtaOIpRDRSpnxLnRcvl1eXObtWjiiXxT8BYYRgyBiyFllvwN+j8Za4Jt1j dX9Mh+dv/lMSgYYoaSXCa1Bl6c6psWQ8q/j5hALRigIjPYLvpCnVyZol0QNZ0lpBA8hb ZqwxlVUMqKwcdk7xlKOJTvAyUbo5/XZqtP70DSkq9KMsdGy+0cNNafuftmUQ3NUcejRv RhwDjdYY/M+cQjZ0cqQ9P6eWesLmQ0yeFM1U5aNDbP5BKu3FqQNcCfmg53dxRzF3hPAV cDwg==
MIME-Version: 1.0
X-Received: by 10.112.40.104 with SMTP id w8mr835071lbk.45.1385650199121; Thu, 28 Nov 2013 06:49:59 -0800 (PST)
Received: by 10.112.37.172 with HTTP; Thu, 28 Nov 2013 06:49:59 -0800 (PST)
In-Reply-To: <m2d2llgisa.wl%randy@psg.com>
References: <5295FC4F.7060309@dcrocker.net> <5295FDE8.5000402@cs.tcd.ie> <m2mwkpgpi0.wl%randy@psg.com> <5296C8CC.2060508@dcrocker.net> <027a01ceebfb$df99f290$9ecdd7b0$@huitema.net> <m2d2llgisa.wl%randy@psg.com>
Date: Thu, 28 Nov 2013 09:49:59 -0500
Message-ID: <CAMm+LwgEoi8o1Uc4H9sB8L7SY=XtYQYBQQD0RMXONLQXKecvEA@mail.gmail.com>
From: Phillip Hallam-Baker <hallam@gmail.com>
To: Randy Bush <randy@psg.com>
Content-Type: multipart/alternative; boundary="001a113371a0e6d54f04ec3dd324"
Cc: perpass <perpass@ietf.org>, Christian Huitema <huitema@huitema.net>, Dave Crocker <dcrocker@bbiw.net>
Subject: Re: [perpass] "Guide to intranet protection"?
X-BeenThere: perpass@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "The perpass list is for IETF discussion of pervasive monitoring. " <perpass.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/perpass>, <mailto:perpass-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/perpass/>
List-Post: <mailto:perpass@ietf.org>
List-Help: <mailto:perpass-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/perpass>, <mailto:perpass-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 28 Nov 2013 14:50:03 -0000

On Thu, Nov 28, 2013 at 1:08 AM, Randy Bush <randy@psg.com> wrote:

> > Randy is quite right.
>
> has to happen occasionally
>
> > The attacks reported in the news article were against the private
> > optical fibers linking the geographically distributed data centers of
> > large companies like Google or Yahoo. A discussion about that should
> > start with the folks in charge of securing these data centers at
> > Google, Yahoo, Facebook, Microsoft, et cetera. I can see some
> > difficulties, because a fair bit of the data centers architectures is
> > probably treated as trade secret. And I am really not sure that the
> > IETF is the best place to conduct such discussions.
>
> we had/have the same oroblem with datacenter* wgs.  the folk who really
> do it think of it as secret sauce.  so it becomes the vendors trying to
> sell solutions to problems they don't understand.  hell, i don't even
> know iij datacentr technology to any depth.
>

Just to be clear, when I said they are more willing to share than you said
earlier, I was referring to a closed door sharing in some members only
forum. That model definitely works.

The IETF might play a role in brokering the setting up of such an
organization but any sharing is not going to take place in public and not
in the IETF and it is going to take place at a certain degree of
abstraction.



-- 
Website: http://hallambaker.com/

v2.23.0 | Report a Bug | By Email