RE: [saag] Is opportunistic unauthenticated encryption a waste of time?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: "Theodore Ts'o" <tytso@xxxxxxx>, Bernard Aboba <bernard_aboba@xxxxxxxxxxx>
Subject: RE: [saag] Is opportunistic unauthenticated encryption a waste of time?
From: Christian Huitema <huitema@xxxxxxxxxxxxx>
Date: Sat, 23 Aug 2014 03:57:22 +0000
Accept-language: en-US
Archived-at: http://mailarchive.ietf.org/arch/msg/ietf/yU6mLBFBcgXYAJMjYW2PSfhAkfI
Cc: "saag@xxxxxxxx" <saag@xxxxxxxx>, "ietf@xxxxxxxx" <ietf@xxxxxxxx>
Delivered-to: ietf@xxxxxxxxxxxxxx
In-reply-to: <20140823030250.GT11085@thunk.org>
Thread-index: AQHPvhF40HplM2hILkOzAbbw4a9vopvdc6MAgAANrACAAA6XoA==
Thread-topic: [saag] Is opportunistic unauthenticated encryption a waste of time?

> This assumes that the telecom carriers and/or the suppliers of the
> carrier grade equipment would cooperate with the nation-states in
> question.  That could happen, certainly, but it becomes much more
> difficult to do this surreptitiously.

It is also fairly easy for OS conscious applications to use channel binding schemes and detect the MITM. At that point, the spies have to move from covert monitoring to overt surveillance, which should have some noticeable political consequences.

-- Christian Huitema

References:
- Re: Adept Encryption: Was: [saag] DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment)
  - From: Stephen Farrell
- Re: Adept Encryption: Was: [saag] DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment)
  - From: Dave Crocker
- Re: Adept Encryption: Was: [saag] DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment)
  - From: Stephen Farrell
- Re: Adept Encryption: Was: [saag] DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment)
  - From: Phillip Hallam-Baker
- Re: Adept Encryption: Was: [saag] DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment)
  - From: Viktor Dukhovni
- RE: Adept Encryption: Was: [saag] DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment)
  - From: l.wood
- Re: [saag] Adept Encryption: Was: DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment)
  - From: Nico Williams
- RE: [saag] Adept Encryption: Was: DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment)
  - From: l.wood
- Re: [saag] Is opportunistic unauthenticated encryption a waste of time?
  - From: Viktor Dukhovni
- RE: [saag] Is opportunistic unauthenticated encryption a waste of time?
  - From: Bernard Aboba
- Re: [saag] Is opportunistic unauthenticated encryption a waste of time?
  - From: Theodore Ts'o

Prev by Date: Re: [saag] Is opportunistic unauthenticated encryption a waste of time?
Next by Date: Re: [saag] Is opportunistic unauthenticated encryption a waste of time?
Previous by thread: Re: [saag] Is opportunistic unauthenticated encryption a waste of time?
Next by thread: Re: [saag] Is opportunistic unauthenticated encryption a waste of time?
Index(es):
- Date
- Thread

[Index of Archives] [IETF Annoucements] [IETF] [IP Storage] [Yosemite News] [Linux SCTP] [Linux Newbies] [Fedora Users]