Re: [Tcpcrypt] Initial questions
Tony Arcieri <bascule@gmail.com> Wed, 18 June 2014 21:20 UTC
Return-Path: <bascule@gmail.com>
X-Original-To: tcpcrypt@ietfa.amsl.com
Delivered-To: tcpcrypt@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4C76E1A0314 for <tcpcrypt@ietfa.amsl.com>; Wed, 18 Jun 2014 14:20:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.906
X-Spam-Level:
X-Spam-Status: No, score=-1.906 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, HTML_OBFUSCATE_10_20=0.093, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1qqNVsGC0JOL for <tcpcrypt@ietfa.amsl.com>; Wed, 18 Jun 2014 14:20:38 -0700 (PDT)
Received: from mail-ve0-x235.google.com (mail-ve0-x235.google.com [IPv6:2607:f8b0:400c:c01::235]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id ED1561A0303 for <tcpcrypt@ietf.org>; Wed, 18 Jun 2014 14:20:37 -0700 (PDT)
Received: by mail-ve0-f181.google.com with SMTP id db11so1460518veb.12 for <tcpcrypt@ietf.org>; Wed, 18 Jun 2014 14:20:37 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-type; bh=HXxVkj1a3JY8Fw+miduJkLYjBhi0qphpeL5BCuw3+lA=; b=scDvayFjpj9gNiiLvroIf7MAtRcO48HSrVVaPKG5UR6d8/whctNexQMoVmXI+Q3b7y 0G5itAcHpqv6UkOplopg2yP0lj65edQ9zHEEYy3Fo4rY6Tg+/3xcPGscSV9TSvCCSHBP k7KzSaajSG8JIepePvy09aKMvsLeBrzctIiGwqtdWtkCB2Ukw0D9RJN6DlDcpTD19n5B 7V8fpnpixDQR0H2sJq2oktVO24lyKthImG6/q+WhlCRKelhz7jX9jSlbBYfD7qBE/EZw T7nJ394ju0gmimgt6DYzWY+9g2dAehkdasPnRtf0rusHeK0eSY94R9l9BcV0fBeOrcba 5CBg==
X-Received: by 10.221.59.194 with SMTP id wp2mr41224vcb.59.1403126437106; Wed, 18 Jun 2014 14:20:37 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.58.168.133 with HTTP; Wed, 18 Jun 2014 14:20:16 -0700 (PDT)
In-Reply-To: <CACXcFmmQCgTu6-QLJZdH8Q+ZST97ugoTaUWCUV0S6AWsjvCGfg@mail.gmail.com>
References: <CACXcFmmQCgTu6-QLJZdH8Q+ZST97ugoTaUWCUV0S6AWsjvCGfg@mail.gmail.com>
From: Tony Arcieri <bascule@gmail.com>
Date: Wed, 18 Jun 2014 14:20:16 -0700
Message-ID: <CAHOTMVLvF2+1GX6B44XpvpJb0Zwu7p51pyh8-9_hjQQr2nxjPg@mail.gmail.com>
To: Sandy Harris <sandyinchina@gmail.com>
Content-Type: multipart/alternative; boundary="001a11335472dbdf6c04fc22d430"
Archived-At: http://mailarchive.ietf.org/arch/msg/tcpcrypt/1-6ggYKXJ9EYXjMcKVTo9zV5zSw
Cc: "tcpcrypt@ietf.org" <tcpcrypt@ietf.org>
Subject: Re: [Tcpcrypt] Initial questions
X-BeenThere: tcpcrypt@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Discussion list for adding encryption to TCP." <tcpcrypt.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tcpcrypt>, <mailto:tcpcrypt-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tcpcrypt/>
List-Post: <mailto:tcpcrypt@ietf.org>
List-Help: <mailto:tcpcrypt-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tcpcrypt>, <mailto:tcpcrypt-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 18 Jun 2014 21:20:39 -0000
On Wed, Jun 18, 2014 at 2:15 PM, Sandy Harris <sandyinchina@gmail.com> wrote: > Why on Earth do these have "When encryption is enabled"? "Every once in a while, someone not an NSA employee, but who had longstanding ties to NSA, would make a suggestion that reduced privacy or security, but which seemed to make sense when viewed by people who didn't know much about crypto. For example, using the same IV (initialization vector) throughout a session, rather than making a new one for each packet. Or, retaining a way to for this encryption protocol to specify that no encryption is to be applied." -- John Gilmore -- Tony Arcieri
- [Tcpcrypt] Initial questions Sandy Harris
- Re: [Tcpcrypt] Initial questions Tony Arcieri
- Re: [Tcpcrypt] Initial questions Joe Touch
- Re: [Tcpcrypt] Initial questions Joe Touch
- Re: [Tcpcrypt] Initial questions marcelo bagnulo braun
- Re: [Tcpcrypt] Initial questions marcelo bagnulo braun
- Re: [Tcpcrypt] Initial questions ianG
- Re: [Tcpcrypt] Initial questions ianG
- Re: [Tcpcrypt] Initial questions ianG
- Re: [Tcpcrypt] Initial questions Joe Touch
- Re: [Tcpcrypt] Initial questions ianG
- Re: [Tcpcrypt] Initial questions Joe Touch
- Re: [Tcpcrypt] Initial questions ianG
- Re: [Tcpcrypt] Initial questions Joe Touch
- Re: [Tcpcrypt] Initial questions Tony Arcieri
- Re: [Tcpcrypt] Initial questions Derek Fawcus
- Re: [Tcpcrypt] Initial questions Derek Fawcus
- Re: [Tcpcrypt] Initial questions Joe Touch
- Re: [Tcpcrypt] Initial questions Stephen Kent
- Re: [Tcpcrypt] Initial questions Joe Touch
- Re: [Tcpcrypt] Initial questions ianG
- Re: [Tcpcrypt] Initial questions Sandy Harris
- Re: [Tcpcrypt] Initial questions Joe Touch
- Re: [Tcpcrypt] Initial questions Stephen Farrell
- Re: [Tcpcrypt] Initial questions Stephen Farrell
- Re: [Tcpcrypt] Initial questions Tero Kivinen