IETF Logo Mail Archive

Re: [Tcpcrypt] Initial questions

Tony Arcieri <bascule@gmail.com> Wed, 18 June 2014 21:20 UTC

Return-Path: <bascule@gmail.com>
X-Original-To: tcpcrypt@ietfa.amsl.com
Delivered-To: tcpcrypt@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4C76E1A0314 for <tcpcrypt@ietfa.amsl.com>; Wed, 18 Jun 2014 14:20:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.906
X-Spam-Level:
X-Spam-Status: No, score=-1.906 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, HTML_OBFUSCATE_10_20=0.093, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1qqNVsGC0JOL for <tcpcrypt@ietfa.amsl.com>; Wed, 18 Jun 2014 14:20:38 -0700 (PDT)
Received: from mail-ve0-x235.google.com (mail-ve0-x235.google.com [IPv6:2607:f8b0:400c:c01::235]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id ED1561A0303 for <tcpcrypt@ietf.org>; Wed, 18 Jun 2014 14:20:37 -0700 (PDT)
Received: by mail-ve0-f181.google.com with SMTP id db11so1460518veb.12 for <tcpcrypt@ietf.org>; Wed, 18 Jun 2014 14:20:37 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-type; bh=HXxVkj1a3JY8Fw+miduJkLYjBhi0qphpeL5BCuw3+lA=; b=scDvayFjpj9gNiiLvroIf7MAtRcO48HSrVVaPKG5UR6d8/whctNexQMoVmXI+Q3b7y 0G5itAcHpqv6UkOplopg2yP0lj65edQ9zHEEYy3Fo4rY6Tg+/3xcPGscSV9TSvCCSHBP k7KzSaajSG8JIepePvy09aKMvsLeBrzctIiGwqtdWtkCB2Ukw0D9RJN6DlDcpTD19n5B 7V8fpnpixDQR0H2sJq2oktVO24lyKthImG6/q+WhlCRKelhz7jX9jSlbBYfD7qBE/EZw T7nJ394ju0gmimgt6DYzWY+9g2dAehkdasPnRtf0rusHeK0eSY94R9l9BcV0fBeOrcba 5CBg==
X-Received: by 10.221.59.194 with SMTP id wp2mr41224vcb.59.1403126437106; Wed, 18 Jun 2014 14:20:37 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.58.168.133 with HTTP; Wed, 18 Jun 2014 14:20:16 -0700 (PDT)
In-Reply-To: <CACXcFmmQCgTu6-QLJZdH8Q+ZST97ugoTaUWCUV0S6AWsjvCGfg@mail.gmail.com>
References: <CACXcFmmQCgTu6-QLJZdH8Q+ZST97ugoTaUWCUV0S6AWsjvCGfg@mail.gmail.com>
From: Tony Arcieri <bascule@gmail.com>
Date: Wed, 18 Jun 2014 14:20:16 -0700
Message-ID: <CAHOTMVLvF2+1GX6B44XpvpJb0Zwu7p51pyh8-9_hjQQr2nxjPg@mail.gmail.com>
To: Sandy Harris <sandyinchina@gmail.com>
Content-Type: multipart/alternative; boundary="001a11335472dbdf6c04fc22d430"
Archived-At: http://mailarchive.ietf.org/arch/msg/tcpcrypt/1-6ggYKXJ9EYXjMcKVTo9zV5zSw
Cc: "tcpcrypt@ietf.org" <tcpcrypt@ietf.org>
Subject: Re: [Tcpcrypt] Initial questions
X-BeenThere: tcpcrypt@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Discussion list for adding encryption to TCP." <tcpcrypt.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tcpcrypt>, <mailto:tcpcrypt-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tcpcrypt/>
List-Post: <mailto:tcpcrypt@ietf.org>
List-Help: <mailto:tcpcrypt-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tcpcrypt>, <mailto:tcpcrypt-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 18 Jun 2014 21:20:39 -0000

On Wed, Jun 18, 2014 at 2:15 PM, Sandy Harris <sandyinchina@gmail.com>
wrote:

> Why on Earth do these have "When encryption is enabled"?


 "Every once in a while, someone not an NSA employee, but who had
  longstanding ties to NSA, would make a suggestion that reduced privacy
  or security, but which seemed to make sense when viewed by people who
  didn't know much about crypto. For example, using the same IV
  (initialization vector) throughout a session, rather than making a new
  one for each packet. Or, retaining a way to for this encryption
  protocol to specify that no encryption is to be applied."

    -- John Gilmore

-- 
Tony Arcieri

v2.23.0 | Report a Bug | By Email