ietf
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Security for various IETF services

2014-04-08 21:13:11
from [l.wood] [Permanent Link] 
Gee, you don't need a threat analysis when you're going to protect against 
EVERYTHING!

That's SECURITY!

Lloyd Wood
http://about.me/lloydwood
________________________________________
From: ietf [ietf-bounces(_at_)ietf(_dot_)org] On Behalf Of Dick Franks 
[rwfranks(_at_)acm(_dot_)org]
Sent: 09 April 2014 01:02
To: t.p.
Cc: IETF-Discussion
Subject: Re: Security for various IETF services

On 8 April 2014 09:32, t.p. 
<daedulus(_at_)btconnect(_dot_)com<mailto:daedulus(_at_)btconnect(_dot_)com>> 
wrote:


The path that I have seen several Security ADs steer Working Groups down
is to start with a threat analysis before deciding what counter measures
are appropriate.


Several contributors have been saying exactly that for almost a week.

These suggestions have been answered by dismissive emails and a relentless 
bombardment of magic pixie dust.
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Request for a code point assignment for ED25519 - draft-moonesamy-sshfp-ed25519-01, S Moonesamy
Next by Date:  Re: Security for various IETF services, Yoav Nir
Previous by Thread:  Re: Security for various IETF services, Dick Franks
Next by Thread:  Re: Security for various IETF services, Stephen Farrell
Indexes:  [Date] [Thread] [Top] [All Lists]