Re: [perpass] Howdy!
SM <sm@resistor.net> Sat, 14 September 2013 14:38 UTC
Return-Path: <sm@resistor.net>
X-Original-To: perpass@ietfa.amsl.com
Delivered-To: perpass@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 97A1F11E80EA for <perpass@ietfa.amsl.com>; Sat, 14 Sep 2013 07:38:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.549
X-Spam-Level:
X-Spam-Status: No, score=-102.549 tagged_above=-999 required=5 tests=[AWL=0.050, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tNRR5T+Mb33a for <perpass@ietfa.amsl.com>; Sat, 14 Sep 2013 07:38:18 -0700 (PDT)
Received: from mx.ipv6.elandsys.com (mx.ipv6.elandsys.com [IPv6:2001:470:f329:1::1]) by ietfa.amsl.com (Postfix) with ESMTP id 3549E11E8195 for <perpass@ietf.org>; Sat, 14 Sep 2013 07:38:16 -0700 (PDT)
Received: from SUBMAN.resistor.net (IDENT:sm@localhost [127.0.0.1]) (authenticated bits=0) by mx.elandsys.com (8.14.5/8.14.5) with ESMTP id r8EEcBCh026201; Sat, 14 Sep 2013 07:38:14 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=opendkim.org; s=mail2010; t=1379169495; bh=+ebVQMmp1/hzEgIoG9IOZD5/utKeNAmVibUfo8tqxwA=; h=Date:To:From:Subject:Cc:In-Reply-To:References; b=hN+MnIU6IJwXhj7WdltdxDpMY5iAPwSGetgQzDdivZLzNl7K7CzT3mRp0FtCYfZfZ eGZ0ud7lvWvCopPzE8cv6SCNr+5KHqIKYuWdH1u1d+uDwd4S0qLzBzIwFLSyTrBB2f p3faGxgr1UdVDhT470ob8PDLmEN59leYBFFcaGxc=
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=resistor.net; s=mail; t=1379169495; i=@resistor.net; bh=+ebVQMmp1/hzEgIoG9IOZD5/utKeNAmVibUfo8tqxwA=; h=Date:To:From:Subject:Cc:In-Reply-To:References; b=rK9B6+Gg/kBy9J9tlgN1a8/3Ka+z4Lc47fpNb650co7XFm0vKT+m//eLsymz1wm0t TvSGFp/zJegZRnZUxBpGDK1HigZikx+9NXxhYRU4JUnK1f/aWCVBkbA8C5zt2w3Byt 44G25pUlwr1H0oF4dyFxC3lQl788lskFROVWpSQM=
Message-Id: <6.2.5.6.2.20130914054829.0b2a32d8@resistor.net>
X-Mailer: QUALCOMM Windows Eudora Version 6.2.5.6
Date: Sat, 14 Sep 2013 06:55:40 -0700
To: Dean Willis <dean.willis@softarmor.com>
From: SM <sm@resistor.net>
In-Reply-To: <7DA623C5-E8C4-437F-BFC9-0CDD350853A8@softarmor.com>
References: <CAOHm=4ujOYTHO63EFWMYJBgxUWq00zezYKAJ8B4Vgf_C=xRRVg@mail.gmail.com> <5224DF25.60503@cs.tcd.ie> <7C92613E-33E8-48A6-A152-E9DBB29DEC04@softarmor.com> <522A328A.5060008@cs.tcd.ie> <522E17F9.4000206@bbn.com> <7DA623C5-E8C4-437F-BFC9-0CDD350853A8@softarmor.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format="flowed"
Cc: perpass@ietf.org
Subject: Re: [perpass] Howdy!
X-BeenThere: perpass@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "The perpass list is for discussion of the privacy properties of IETF protocols and concrete ways in which those could be improved. " <perpass.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/perpass>, <mailto:perpass-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/perpass>
List-Post: <mailto:perpass@ietf.org>
List-Help: <mailto:perpass-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/perpass>, <mailto:perpass-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 14 Sep 2013 14:38:18 -0000
Hi Dean, At 10:12 13-09-2013, Dean Willis wrote: >So unless we have widespread review, from people likely to be in the >influence of multiple and conflicting actors, we really haven't had >a review. How widespread? I'm not exactly sure -- but it means more >than one review, from more than one company, from more than one >sector, and from more than one nation-state at a minimum. Trust is >really hard; our best substitute is a very widespread consensus. > >Arguably, the mode that we've operated in for many years has given >us a rather bad current situation. Perhaps we should reassess "good enough". The IETF has been operating in "good enough" mode since a long time. Some proposals do not get widespread review. There are variations of RFC 6302 in the IETF RFCs. When I raised a "privacy issue" some time back the only person who supported the argument was Stephen Farrell. The amount of effort to raise a "privacy issue" is discouraging. It's difficult to ensure review from more than one nation-state when the majority is from one nation-state. It is not always clear what the company or sector ties are. There is a report of a Tor exit node being compromised. It's unlikely that the problem could have been avoided with better encryption. The architectural aspect of the problem was mentioned in 2005. Regards, -sm
- [perpass] Howdy! Dean Willis
- Re: [perpass] Howdy! Stephen Farrell
- Re: [perpass] Howdy! Yoav Nir
- Re: [perpass] Howdy! Dean Willis
- Re: [perpass] Howdy! Stephen Farrell
- Re: [perpass] Howdy! Moriarty, Kathleen
- Re: [perpass] Howdy! Rene Struik
- Re: [perpass] Howdy! Stephen Kent
- Re: [perpass] Howdy! Hannes Tschofenig
- Re: [perpass] Howdy! Theodore Ts'o
- Re: [perpass] Howdy! Jacob Appelbaum
- Re: [perpass] Howdy! Dean Willis
- Re: [perpass] Howdy! Dean Willis
- Re: [perpass] Howdy! Dean Willis
- Re: [perpass] Howdy! Dean Willis
- Re: [perpass] Howdy! Randy Bush
- Re: [perpass] Howdy! Phillip Hallam-Baker
- Re: [perpass] Howdy! Stephen Farrell
- Re: [perpass] Howdy! SM
- Re: [perpass] Howdy! Jacob Appelbaum
- Re: [perpass] Howdy! Norbert Bollow
- Re: [perpass] Howdy! SM
- Re: [perpass] Howdy! Phil Karn
- Re: [perpass] Howdy! Stephen Kent
- Re: [perpass] Howdy! Stephen Farrell
- Re: [perpass] Howdy! Dean Willis
- Re: [perpass] Howdy! Dean Willis