Re: [Stackevo] draft-thomson-use-it-or-lose-it

Martin Thomson <martin.thomson@gmail.com> Mon, 06 August 2018 10:56 UTC

Return-Path: <martin.thomson@gmail.com>
X-Original-To: stackevo@ietfa.amsl.com
Delivered-To: stackevo@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C167D1277C8 for <stackevo@ietfa.amsl.com>; Mon, 6 Aug 2018 03:56:48 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9rF8ac9B-56r for <stackevo@ietfa.amsl.com>; Mon, 6 Aug 2018 03:56:47 -0700 (PDT)
Received: from mail-oi0-x236.google.com (mail-oi0-x236.google.com [IPv6:2607:f8b0:4003:c06::236]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id ED05F12D949 for <stackevo@iab.org>; Mon, 6 Aug 2018 03:56:46 -0700 (PDT)
Received: by mail-oi0-x236.google.com with SMTP id d189-v6so21343017oib.6 for <stackevo@iab.org>; Mon, 06 Aug 2018 03:56:46 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=GSFc+yDE2ozkXMAFnwi9ugIoy7hxs5Rvos0jts8Gk/o=; b=n+qUGZQigtg2EQmzx7sMJ2vEZd1KHoirumPIDfa1+rejpGsbeJToOYB5W3ElDB0q4S QFJXsWV/bxaD293bC0y9qYHQakq3HX1kfCzqek5IGZ5g3CKAS0pkYGWiVe13k/pj8jgE UK5s68VycdAv2ViU7t8NXm4/66Ln8wq2P1J47MVcuipchW1jbUorN+CZ1AwEhkTQjGoX bC37SjjiqJAZNfIdAnet5fWFzCcV/bJEvWaLivu20cqxroTou98hu6kJw/w0T4qv23sF wTaWBiaahgM8eNeOBQwDEb2z8QrpEKKqkt7Ijp0P+5TZ6mTdIg2FCcKzrJhD4DUb4zRR +m6A==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=GSFc+yDE2ozkXMAFnwi9ugIoy7hxs5Rvos0jts8Gk/o=; b=e7KgGR/ClN5ho0XaxfNvqxF8/FUCI/2+HiIz9JP7zMevkoINHGu4N9a6NsiRpFYRga 5Y01ud1xJ5alN+3A8P0NiVoiFKzkdn64gPYRHGv2sMuZdmwzFXZDWhOBxyV8iP1Yu7cv 1yfNcFFEUdgioJBqBIr4+ipHqIgsfOweeS3SvDD2HQggWDs9HTP33kcFMvrSV2n+dmjx wP/FtwEJvNyONJEXdchztbEJKZejatzkbibmHImkeAadMqmb7l/xF+lMrMFFu00N+5Ea 1rSL0ey1+1UbONWNK7t1k74M/67vAhz23NSm5CJNHBZswUgS4yzpNVUJBw/nxwMDlfDx aenw==
X-Gm-Message-State: AOUpUlG+7486O+bVFGMbNjKH139LqMAnF8465hmKhPq7YlbpPz6NF7Co oNyvCl+v+9yUywF74Yh1EYeYqlLRPbBwVT/NFl4=
X-Google-Smtp-Source: AA+uWPwCb/e0QucqnjfBNBU6hMkHeg8Vi7gXzAdefUscVeooRKWE5h42xCOoefsiisbfo08aWocOG5Cm/dmKQlPfqlc=
X-Received: by 2002:aca:b208:: with SMTP id b8-v6mr13295867oif.144.1533553006201; Mon, 06 Aug 2018 03:56:46 -0700 (PDT)
MIME-Version: 1.0
References: <991AD90C-A84A-4302-BB25-C5FAB33C8E80@trammell.ch> <3C07107C-D373-4E4B-ABBA-B025AC3A7B2A@tik.ee.ethz.ch> <CABkgnnXyNAHHTCx_pWtuNdQmFkSjt2b+ytGr7G636-_VtG6mTA@mail.gmail.com> <5BDD973D-BEA3-41A8-8555-975143177415@trammell.ch>
In-Reply-To: <5BDD973D-BEA3-41A8-8555-975143177415@trammell.ch>
From: Martin Thomson <martin.thomson@gmail.com>
Date: Mon, 06 Aug 2018 20:56:36 +1000
Message-ID: <CABkgnnWsosERt1erX-bQ-HzNh=hX+R+nB+dPJioc+Em7kfmgew@mail.gmail.com>
To: Brian Trammell <ietf@trammell.ch>
Cc: Mirja Kühlewind <mirja.kuehlewind@tik.ee.ethz.ch>, Stackevo <stackevo@iab.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/stackevo/BEK1OXWx8M6i5uVxzY6jpSJWl6o>
Subject: Re: [Stackevo] draft-thomson-use-it-or-lose-it
X-BeenThere: stackevo@iab.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: IP Stack Evolution Program Mailing List <stackevo.iab.org>
List-Unsubscribe: <https://www.iab.org/mailman/options/stackevo>, <mailto:stackevo-request@iab.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/stackevo/>
List-Post: <mailto:stackevo@iab.org>
List-Help: <mailto:stackevo-request@iab.org?subject=help>
List-Subscribe: <https://www.iab.org/mailman/listinfo/stackevo>, <mailto:stackevo-request@iab.org?subject=subscribe>
X-List-Received-Date: Mon, 06 Aug 2018 10:56:49 -0000

On Mon, Aug 6, 2018 at 8:51 PM Brian Trammell <ietf@trammell.ch> wrote:
> IMO the challenge here is to make sure that the cost of the complexity added is much less than the amortized cost of the complexity of dealing with ossification after the fact. The encrypted state/codepoint space idea is reductio ad absurdum: iirc the POC for the encrypted instruction set (basically valgrind-as-VM) made it into one of the top three security conferences because it only induced a four-order-of-magnitude performance penalty.

:) TLS is easier than that, and almost cost free.  Flip any bit and
everything changes.  The only trick is to ensure that you have a human
making the changes at the other end, so the changes you make need to
be different every time in different ways.