Re: [saag] post-X509 cryptographic identities
Tony Rutkowski <trutkowski.netmagic@gmail.com> Fri, 14 February 2020 14:51 UTC
Return-Path: <trutkowski.netmagic@gmail.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 442CD1200B4 for <saag@ietfa.amsl.com>; Fri, 14 Feb 2020 06:51:38 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.997
X-Spam-Level:
X-Spam-Status: No, score=-1.997 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WF53YwHkYMa6 for <saag@ietfa.amsl.com>; Fri, 14 Feb 2020 06:51:35 -0800 (PST)
Received: from mail-qk1-x732.google.com (mail-qk1-x732.google.com [IPv6:2607:f8b0:4864:20::732]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 56597120041 for <saag@ietf.org>; Fri, 14 Feb 2020 06:51:35 -0800 (PST)
Received: by mail-qk1-x732.google.com with SMTP id u124so8900197qkh.13 for <saag@ietf.org>; Fri, 14 Feb 2020 06:51:35 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:reply-to:subject:to:cc:references:organization:message-id:date :user-agent:mime-version:in-reply-to:content-language; bh=j+VzPAzq7nfjYPLgaOUs9fP/61+tXJA/s8VAZzj4AsA=; b=BZeiOq1srVtmxk2hcQzk9DMkQTEdN9OBjr/uREnhJnv3pQS+NN+EmmyaD9I7sW+8E0 oiUtPnkwZjDy/p66lS3T8FKvRs8QoEHlrtXx3GEow3tK8cVcqkeabO0xw40/x8WPkCMx McHNs47tjC+DUvdXDp8Dkl8Y4axroi6+br1PQ5jDkJcoHyrePBb+pLGreBSpB3PCvv/B p4FUW1wM762bjmynmgBnWJ/lN1lQDWo/FZgRCPnsVLc+b/YH+E/U8rQr4EwsaawzZM9P YbVMXXRNHNGHmhnAxPODUkRJ1jEBcLL2xS534SykNblMAv2LERGpqHEMszQv4j4lZGZP tdzw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:reply-to:subject:to:cc:references :organization:message-id:date:user-agent:mime-version:in-reply-to :content-language; bh=j+VzPAzq7nfjYPLgaOUs9fP/61+tXJA/s8VAZzj4AsA=; b=NUx6q6hd9f/+qgjFVbDf9Afdm+Rcw47dVpGXtDzXjqOe+RQYJll/B/1g+n2EtCYuD+ oF9W7nuN7sjJEFJsGfaU50W/N+kn964vDxjVh3eZaSC5iCsPxzNIhv4gE93b/b6wJeLG JXzRMuRHv1Ss8s9cOzkjt539VNOAQeJvmBVhJu/0sBzH0Cn7wr5Hg/VH2agIBFHSveUk fhbZsyZolbweFT6TiWIH1eKllKM2p+1ZLocCjXzUprVLXatgbvK11FaWo/+mb2feDef3 Bfmo0rt9HxLu5WrvVZ3FyQm5P0Q5lifLXpGODZSsAH7tiQu+OPecJGfOWH8ycDw/Pyx3 hYsQ==
X-Gm-Message-State: APjAAAWeB73mOwNwtl3qrh/37pMP91ElArsHXGyh46+tZTHOojGtCrRL 4qRQJPeHLyQJl6YBazRZWjtDCsMY
X-Google-Smtp-Source: APXvYqwCST0vVE5wbA4tEnjLzTRalwkQnslQ7BF6ALgMQhJMzS/PZkq1lWmzvwUtLaNQ+8I3ETjlwg==
X-Received: by 2002:ae9:e006:: with SMTP id m6mr2934490qkk.94.1581691894140; Fri, 14 Feb 2020 06:51:34 -0800 (PST)
Received: from [192.168.1.53] (pool-70-106-222-98.clppva.fios.verizon.net. [70.106.222.98]) by smtp.gmail.com with ESMTPSA id f28sm3301741qkk.130.2020.02.14.06.51.33 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Fri, 14 Feb 2020 06:51:33 -0800 (PST)
From: Tony Rutkowski <trutkowski.netmagic@gmail.com>
X-Google-Original-From: Tony Rutkowski <trutkowski@netmagic.com>
Reply-To: trutkowski@netmagic.com
To: Michael Richardson <mcr+ietf@sandelman.ca>, Nico Williams <nico@cryptonector.com>
Cc: saag@ietf.org
References: <2C5DFA70-AD0E-4139-B28E-2D4EDB6E5409@sinodun.com> <46BDE9EB-6306-4194-AFFA-7E9E6604765F@sinodun.com> <825b8c8e-7ee9-9276-d09e-9c006acf3804@ericsson.com> <CABcZeBOzJ2MRS8deZqN+e-o9tFDwgSrYK3_hmV-0pfO+L9oaVw@mail.gmail.com> <53c87d6b-cad1-3a80-291d-e2a896705da5@ericsson.com> <CABcZeBNJWmFTV==6sa0qnAPyRr4=6OiCacchzobE=RozHnqPdg@mail.gmail.com> <7901248e-c7dd-8a12-65df-f40415fde5e2@cs.tcd.ie> <26497.1581418516@dooku> <20200212002125.GO18021@localhost> <alpine.DEB.2.20.2002131443470.25433@grey.csi.cam.ac.uk> <20200213171324.GP18021@localhost> <17741.1581688178@dooku>
Organization: Netmagic Associates LLC
Message-ID: <903dab44-68cc-7f84-6072-86d9fb305fee@netmagic.com>
Date: Fri, 14 Feb 2020 09:51:32 -0500
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:68.0) Gecko/20100101 Thunderbird/68.5.0
MIME-Version: 1.0
In-Reply-To: <17741.1581688178@dooku>
Content-Type: multipart/alternative; boundary="------------8DF7031BEC8D480102F4BDFF"
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/saag/EWKPW1F9MdWXZ3_TuL_-n9aeJP8>
Subject: Re: [saag] post-X509 cryptographic identities
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/saag/>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 14 Feb 2020 14:51:38 -0000
That old DNS+DARPA internet universe has become vastly more complex with all kinds of "end point objects." In the rapidly emerging 5G world of virtualised networks and alternative protocols, we are entering a new universe of alternative transport and network protocols and end point addresses. It creates potentially a new world of competitive resolver platforms. The likely winners will be those who know how to find the end points, run the scripts to create the virtual network to get to them, and provide user friendly, AI assisted interfaces like the Googles and Amazons of the world are already doing, as well as larger data centre operators. DNS clearly will become ever more irrelevant. Antitrust and national security factors will dominate. Bob Kahn knows that well - hence DONA and Handles. However, that presumes that there is some level of global support for that structure - which requires enormous administrative overhead and seems dubious at best. The brave new world of 5G resolvers will be fascinating to watch - and established in venues like 3GPP and GSMA. --tony r On 2020-02-14 8:49 AM, Michael Richardson wrote: > Nico Williams <nico@cryptonector.com> wrote: > > DNS and the Internet created realities on the ground that sovereign > > entities had to recognize. That seems likely an accident of DNS > > stepping into a vacuum. Now that the vacuum has been filled, any > > replacement may well require significantly more willpower to establish. > > And, the regulators were not paying attention, and they are now. > > > _______________________________________________ > saag mailing list > saag@ietf.org > https://www.ietf.org/mailman/listinfo/saag
- [saag] post-X509 cryptographic identities Michael Richardson
- Re: [saag] post-X509 cryptographic identities Tony Rutkowski
- Re: [saag] post-X509 cryptographic identities Derek Atkins
- Re: [saag] post-X509 cryptographic identities Michael Richardson
- Re: [saag] post-X509 cryptographic identities Michael Richardson
- Re: [saag] post-X509 cryptographic identities Derek Atkins
- Re: [saag] post-X509 cryptographic identities Tony Rutkowski
- Re: [saag] post-X509 cryptographic identities Tony Rutkowski
- Re: [saag] post-X509 cryptographic identities Watson Ladd
- Re: [saag] post-X509 cryptographic identities Nico Williams
- Re: [saag] post-X509 cryptographic identities Nico Williams
- Re: [saag] post-X509 cryptographic identities Tony Rutkowski
- Re: [saag] post-X509 cryptographic identities Nico Williams
- Re: [saag] post-X509 cryptographic identities Henry Story
- Re: [saag] post-X509 cryptographic identities Nico Williams
- Re: [saag] post-X509 cryptographic identities Nico Williams
- Re: [saag] post-X509 cryptographic identities Henry Story
- Re: [saag] post-X509 cryptographic identities Tony Rutkowski
- Re: [saag] post-X509 cryptographic identities Nico Williams
- Re: [saag] post-X509 cryptographic identities Nico Williams
- Re: [saag] post-X509 cryptographic identities Henry Story
- Re: [saag] post-X509 cryptographic identities Stephen Farrell
- Re: [saag] post-X509 cryptographic identities Tony Rutkowski
- Re: [saag] post-X509 cryptographic identities Michael Richardson
- Re: [saag] post-X509 cryptographic identities Henry Story
- Re: [saag] post-X509 cryptographic identities Michael Richardson
- Re: [saag] post-X509 cryptographic identities Eric Rescorla
- Re: [saag] post-X509 cryptographic identities Nico Williams
- Re: [saag] post-X509 cryptographic identities Stephen Farrell
- Re: [saag] post-X509 cryptographic identities Eric Rescorla
- Re: [saag] post-X509 cryptographic identities Stephen Farrell
- Re: [saag] post-X509 cryptographic identities Eric Rescorla
- Re: [saag] post-X509 cryptographic identities Stephen Farrell
- Re: [saag] post-X509 cryptographic identities Eric Rescorla
- Re: [saag] post-X509 cryptographic identities Stephen Farrell
- Re: [saag] post-X509 cryptographic identities Peter Gutmann
- Re: [saag] post-X509 cryptographic identities Tony Rutkowski
- Re: [saag] post-X509 cryptographic identities Tony Finch
- Re: [saag] post-X509 cryptographic identities Nico Williams
- Re: [saag] post-X509 cryptographic identities Tony Rutkowski
- Re: [saag] post-X509 cryptographic identities Nico Williams
- Re: [saag] post-X509 cryptographic identities Nico Williams
- Re: [saag] post-X509 cryptographic identities Tony Rutkowski
- Re: [saag] post-X509 cryptographic identities Henry Story
- Re: [saag] post-X509 cryptographic identities Nico Williams
- Re: [saag] post-X509 cryptographic identities Henry Story
- Re: [saag] post-X509 cryptographic identities Nico Williams
- Re: [saag] post-X509 cryptographic identities Henry Story
- Re: [saag] post-X509 cryptographic identities Nico Williams
- Re: [saag] post-X509 cryptographic identities Tony Rutkowski
- Re: [saag] post-X509 cryptographic identities Henry Story
- Re: [saag] post-X509 cryptographic identities Nico Williams
- Re: [saag] post-X509 cryptographic identities Tony Rutkowski
- Re: [saag] post-X509 cryptographic identities Henry Story
- Re: [saag] post-X509 cryptographic identities Michael Richardson
- Re: [saag] post-X509 cryptographic identities Michael Richardson
- Re: [saag] post-X509 cryptographic identities Tony Rutkowski
- Re: [saag] post-X509 cryptographic identities Watson Ladd
- Re: [saag] post-X509 cryptographic identities Michael Richardson
- Re: [saag] post-X509 cryptographic identities Phillip Hallam-Baker
- Re: [saag] post-X509 cryptographic identities Phillip Hallam-Baker
- Re: [saag] post-X509 cryptographic identities Tony Rutkowski
- Re: [saag] post-X509 cryptographic identities Nico Williams
- Re: [saag] post-X509 cryptographic identities Nico Williams
- Re: [saag] post-X509 cryptographic identities Nico Williams
- Re: [saag] post-X509 cryptographic identities Henry Story
- Re: [saag] post-X509 cryptographic identities Nico Williams
- Re: [saag] post-X509 cryptographic identities Phillip Hallam-Baker
- Re: [saag] post-X509 cryptographic identities Phillip Hallam-Baker
- Re: [saag] post-X509 cryptographic identities Nico Williams
- Re: [saag] post-X509 cryptographic identities Henry Story
- Re: [saag] post-X509 cryptographic identities Michael Richardson
- Re: [saag] post-X509 cryptographic identities Nico Williams
- Re: [saag] post-X509 cryptographic identities Michael Richardson
- Re: [saag] post-X509 cryptographic identities Nico Williams
- Re: [saag] post-X509 cryptographic identities Viktor Dukhovni
- Re: [saag] post-X509 cryptographic identities Nico Williams
- Re: [saag] post-X509 cryptographic identities Tony Finch
- Re: [saag] post-X509 cryptographic identities Michael Richardson