Re: [perpass] tcpcrypt applicability
"Christian Huitema" <huitema@huitema.net> Sat, 25 January 2014 21:11 UTC
Return-Path: <huitema@huitema.net>
X-Original-To: perpass@ietfa.amsl.com
Delivered-To: perpass@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4DDE11A003A for <perpass@ietfa.amsl.com>; Sat, 25 Jan 2014 13:11:09 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.001
X-Spam-Level:
X-Spam-Status: No, score=-0.001 tagged_above=-999 required=5 tests=[BAYES_40=-0.001, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8SFhnkSbal3D for <perpass@ietfa.amsl.com>; Sat, 25 Jan 2014 13:11:03 -0800 (PST)
Received: from xsmtp03.mail2web.com (xsmtp03.mail2web.com [168.144.250.223]) by ietfa.amsl.com (Postfix) with ESMTP id 8A4701A0039 for <perpass@ietf.org>; Sat, 25 Jan 2014 13:11:03 -0800 (PST)
Received: from [10.5.2.35] (helo=xmail10.myhosting.com) by xsmtp03.mail2web.com with esmtps (TLS-1.0:DHE_RSA_AES_256_CBC_SHA1:32) (Exim 4.63) (envelope-from <huitema@huitema.net>) id 1W7AVI-00041F-U4 for perpass@ietf.org; Sat, 25 Jan 2014 16:11:01 -0500
Received: (qmail 12328 invoked from network); 25 Jan 2014 21:10:59 -0000
Received: from unknown (HELO HUITEMA5) (Authenticated-user:_huitema@huitema.net@[24.16.156.113]) (envelope-sender <huitema@huitema.net>) by xmail10.myhosting.com (qmail-ldap-1.03) with ESMTPA for <dcrocker@bbiw.net>; 25 Jan 2014 21:10:59 -0000
From: Christian Huitema <huitema@huitema.net>
To: 'Dave Crocker' <dcrocker@bbiw.net>, 'Stephen Farrell' <stephen.farrell@cs.tcd.ie>
Date: Sat, 25 Jan 2014 13:10:58 -0800
Message-ID: <012101cf1a11$f23cc9b0$d6b65d10$@huitema.net>
MIME-Version: 1.0
Content-Type: text/plain; charset="Windows-1252"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook 15.0
Thread-Index: Ac8aDzOiXC3A69wOQdSedKL5r1l8SQ==
Content-Language: en-us
Cc: 'perpass' <perpass@ietf.org>
Subject: Re: [perpass] tcpcrypt applicability
X-BeenThere: perpass@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "The perpass list is for IETF discussion of pervasive monitoring. " <perpass.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/perpass>, <mailto:perpass-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/perpass/>
List-Post: <mailto:perpass@ietf.org>
List-Help: <mailto:perpass-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/perpass>, <mailto:perpass-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 25 Jan 2014 21:11:09 -0000
From: Dave Crocker, Monday, January 20, 2014 7:27 AM > On 1/20/2014 7:19 AM, Stephen Farrell wrote: >> I'd expect that if tcpcrypt were implemented in >> some kernels then it'd be useful in places where you can't >> feasibly use TLS. > > > what are some examples of when this could occur? > > as long as there is speculation about this as a legitimate alternative, > it would help to have the speculation include plausible examples. TCPCRYPT is a very good way to do opportunistic encryption. It will negotiate encryption by default at the beginning of the TCP session, without any attempt to provide authentication. At the same time, the stack provides a unique identifier of the encryption session, which can be used by the application protocol to perform authentication and detect MITM by any way they see fit -- PKI, EKE, PGP, some application specific scheme, or even nothing if the application does not care. The architecture looks what we should have done 20 years ago. Kudos to the authors of the spec. But then, the big question is, is it deployable? First, it pretty much requires OS implementation. I can foresee interesting discussions before big development teams decide to do this. It also supposes a communication API between app and stack, and also some yet-to-be-standardized application protocols for managing the encryption identifiers. That too will take time. And then it requires new TCP options, which many NAT and firewalls are known to block by default. In short, high potential, but likely to remain a small deployment for several years. If I were a transport AD, I would charter the group and give them time to grow... but of course I know better than give advice to the folks actually doing the work. -- Christian Huitema
- Re: [perpass] tcpcrypt applicability Christian Huitema
- Re: [perpass] tcpcrypt applicability Phillip Hallam-Baker