Re: [saag] Is traffic analysis really a target (was Re: Is opportunistic unauthenticated encryption a waste of time?)

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: Mark Andrews <marka@xxxxxxx>
Subject: Re: [saag] Is traffic analysis really a target (was Re: Is opportunistic unauthenticated encryption a waste of time?)
From: "Henry B (Hank) Hotz, CISSP" <hbhotz@xxxxxxx>
Date: Mon, 25 Aug 2014 01:22:03 -0400
Archived-at: http://mailarchive.ietf.org/arch/msg/ietf/yqhOMuZCPFp5Ousn_uOI6PXu93s
Cc: "saag@xxxxxxxx" <saag@xxxxxxxx>, Eric Burger <eburger@xxxxxxxxxxxxxxxxxx>, "ietf@xxxxxxxx" <ietf@xxxxxxxx>
Delivered-to: ietf@xxxxxxxxxxxxxx
In-reply-to: <20140825023619.A28411D724E3@rock.dv.isc.org>

On Aug 24, 2014, at 10:36 PM, Mark Andrews <marka@xxxxxxx> wrote:

> In message <6461D9C5-8B0B-42D3-9877-32DB3E6150C6@xxxxxxxxxxxxxxxxxx>, Eric Burger writes:
> 
>> we have an existence proof of the mess that happens when we make
>> all traffic look benign.

By its nature all non-benign traffic will want to *look* benign.

What makes me sad are the idiots with firewalls blocking access to all traffic other than TCP and UDP. We keep trying to make ourselves secure by limiting the standards support of the network instead of using a mix of techniques (defense in depth).

Sorry. Preaching to the choir I’m sure.

Personal email.  hbhotz@xxxxxxx

References:
- Re: Adept Encryption: Was: [saag] DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment)
  - From: Stephen Farrell
- Re: Adept Encryption: Was: [saag] DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment)
  - From: Dave Crocker
- Re: Adept Encryption: Was: [saag] DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment)
  - From: Stephen Farrell
- Re: Adept Encryption: Was: [saag] DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment)
  - From: Phillip Hallam-Baker
- Re: Adept Encryption: Was: [saag] DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment)
  - From: Viktor Dukhovni
- RE: Adept Encryption: Was: [saag] DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment)
  - From: l.wood
- Re: [saag] Adept Encryption: Was: DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment)
  - From: Nico Williams
- RE: [saag] Adept Encryption: Was: DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment)
  - From: l.wood
- Re: [saag] Is opportunistic unauthenticated encryption a waste of time?
  - From: Viktor Dukhovni
- RE: [saag] Is opportunistic unauthenticated encryption a waste of time?
  - From: Bernard Aboba
- Re: [saag] Is opportunistic unauthenticated encryption a waste of time?
  - From: Nico Williams
- RE: [saag] Is opportunistic unauthenticated encryption a waste of time?
  - From: Bernard Aboba
- Re: [saag] Is opportunistic unauthenticated encryption a waste of time?
  - From: Stephen Farrell
- RE: [saag] Is opportunistic unauthenticated encryption a waste of time?
  - From: Bernard Aboba
- Re: [saag] Is opportunistic unauthenticated encryption a waste of time?
  - From: Stephen Farrell
- Re: Is traffic analysis really a target (was Re: [saag] Is opportunistic unauthenticated encryption a waste of time?)
  - From: Eric Burger
- Re: Is traffic analysis really a target (was Re: [saag] Is opportunistic unauthenticated encryption a waste of time?)
  - From: Mark Andrews

Prev by Date: Re: [saag] Protocol Design Pattern (was Re: Last Call: <draft-dukhovni-opportunistic-security-01.txt>)
Next by Date: Re: Is traffic analysis really a target (was Re: [saag] Is opportunistic unauthenticated encryption a waste of time?)
Previous by thread: Re: Is traffic analysis really a target (was Re: [saag] Is opportunistic unauthenticated encryption a waste of time?)
Next by thread: Re: Is traffic analysis really a target (was Re: [saag] Is opportunistic unauthenticated encryption a waste of time?)
Index(es):
- Date
- Thread

[Index of Archives] [IETF Annoucements] [IETF] [IP Storage] [Yosemite News] [Linux SCTP] [Linux Newbies] [Fedora Users]