IETF Logo Mail Archive

Re: [perpass] perpass: what next?

Mike Liebhold <mnl@well.com> Fri, 17 April 2015 19:02 UTC

Return-Path: <mnl@well.com>
X-Original-To: perpass@ietfa.amsl.com
Delivered-To: perpass@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4007F1A8965 for <perpass@ietfa.amsl.com>; Fri, 17 Apr 2015 12:02:11 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.311
X-Spam-Level:
X-Spam-Status: No, score=-2.311 tagged_above=-999 required=5 tests=[BAYES_20=-0.001, RCVD_IN_DNSWL_MED=-2.3, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id IRmXywmA_IZP for <perpass@ietfa.amsl.com>; Fri, 17 Apr 2015 12:02:09 -0700 (PDT)
Received: from newsmtp.well.com (newsmtp.well.com [107.20.247.102]) by ietfa.amsl.com (Postfix) with ESMTP id 4694F1B2F85 for <perpass@ietf.org>; Fri, 17 Apr 2015 12:01:59 -0700 (PDT)
Received: from zimbra.well.com (zimbra.well.com [10.69.72.164]) by newsmtp.well.com (8.14.3/8.14.3) with ESMTP id t3HJ1woC014853 for <perpass@ietf.org>; Fri, 17 Apr 2015 12:01:58 -0700
Received: from localhost (localhost.localdomain [127.0.0.1]) by zimbra.well.com (Postfix) with ESMTP id 8D5EA40115CB for <perpass@ietf.org>; Fri, 17 Apr 2015 12:01:58 -0700 (PDT)
Received: from zimbra.well.com ([127.0.0.1]) by localhost (zimbra.well.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Sl0ZLjtlKxh2 for <perpass@ietf.org>; Fri, 17 Apr 2015 12:01:57 -0700 (PDT)
Received: from MLiebhold.local (unknown [199.73.113.19]) by zimbra.well.com (Postfix) with ESMTPSA id 70F2840115C1 for <perpass@ietf.org>; Fri, 17 Apr 2015 12:01:57 -0700 (PDT)
Message-ID: <553158A6.3060504@well.com>
Date: Fri, 17 Apr 2015 12:01:58 -0700
From: Mike Liebhold <mnl@well.com>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.10; rv:31.0) Gecko/20100101 Thunderbird/31.6.0
MIME-Version: 1.0
To: perpass@ietf.org
References: <5530EEAB.5050601@cs.tcd.ie>
In-Reply-To: <5530EEAB.5050601@cs.tcd.ie>
Content-Type: text/plain; charset="windows-1252"; format="flowed"
Content-Transfer-Encoding: 7bit
Archived-At: <http://mailarchive.ietf.org/arch/msg/perpass/Iu8pBEtPbOlj3vDJ5emy9oUZneI>
Subject: Re: [perpass] perpass: what next?
X-BeenThere: perpass@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "The perpass list is for IETF discussion of pervasive monitoring. " <perpass.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/perpass>, <mailto:perpass-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/perpass/>
List-Post: <mailto:perpass@ietf.org>
List-Help: <mailto:perpass-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/perpass>, <mailto:perpass-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 17 Apr 2015 19:02:11 -0000

  Hi all,

Congratulations on the great work to date.  But let's understand, that 
while the workproducts to date will help shore up the security of our 
legacy internet architecture, My impression after Snowden et. is that 
the whole stack offers up a vast exploitable attack surface. and that 
IETF ought to begin _serious_ consideration of completely new secure 
architectures - e.g.  a secure onion/tor routed peer internet,  
meshnets, blockchains for cerificated authentication ., etc.     It's a 
little ironic that the  military, IC and black hats already have secure 
p2p internets,  Isn't it time for the rest of us to enjoy the same 
levels of privacy and security, and *resilience*?

Michael Liebhold
Senior Researcher, Distinguished Fellow
Institute for the Future
@mikeliebhold  @iftf


On 4/17/15 4:29 AM, Stephen Farrell wrote:
> Hiya,
>
> I think this list has been really useful since we started it back
> in August 2013. We initiated a bunch of new work on here (e.g. cfrg
> curves, tcpinc, dprive, rfc7258) and I think the concerns dealt
> with here have influenced lots of other work in the IETF as well.
> Many thanks for all that great input and of course most of the
> things above aren't finished, but even so, we're now looking for
> some more great input:-)
>
> The IESG will be meeting f2f in early May at our "retreat" and one
> of the topics on that agenda is "where next with perpass" so your
> ideas on that are very welcome.
>
> Please discuss those here and/or send 'em to the IESG or to some
> random AD or to me. But discussing 'em on this list is way better,
> and of course even betterer is to write an I-D (and please do point
> again at ones you've written, just to refresh folks' minds).
>
> While I do have some ideas, I'd rather not skew the discussion by
> throwing those out right now. I will also report back here after
> the IESG discussion.
>
> And just as a reminder, we've used this list mostly for very
> initial discussions and seen all chunky items of work handled
> elsewhere, be that in current WGs or by forming new WGs or
> whatever. I think that's been a good mode of operation so far,
> so we're not really asking here about how to change that, but
> rather for discussion of which topics we can usefully try handle
> in that same way over the coming year or two.
>
> So, fire away...
>
> Thanks,
> S.
>
> _______________________________________________
> perpass mailing list
> perpass@ietf.org
> https://www.ietf.org/mailman/listinfo/perpass
>

v2.23.0 | Report a Bug | By Email