Re: [saag] Is opportunistic unauthenticated encryption a waste of time?

ietf

Re: [saag] Is opportunistic unauthenticated encryption a waste of time?

2014-08-24 19:10:20

On 8/24/14 4:57 PM, Fernando Gont wrote:

On 08/24/2014 05:42 PM, joel jaeggli wrote:

On 8/24/14 7:10 AM, Fernando Gont wrote:

On 08/23/2014 06:05 PM, Bernard Aboba wrote:

[...]


It is quite often the case that, under oppressive regimes, using 
encryption technology will already flag you as "suspect" (if not 
"guilty"). So in that case, you'd probably want to use something 
probably want something more like a cover channel in those
scenarios.


it's already implausible in many cases  to seperate the sheep from
the goats.

When was the last time you did a google search or accessed a
twitter feed in the clear?


Good luck explaining that to the oppressive regime.


I don't have to. They are aware for example that all twitter api calls
had a deadline over ssl since jan 1 2014. You cannot distinguish the
intentions of the user by their (involuntary) use of encryption.

signature.asc
Description: OpenPGP digital signature

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: Is traffic analysis really a target (was Re: [saag] Is opportunistic unauthenticated encryption a waste of time?), (continued) Message not available Re: Is traffic analysis really a target (was Re: [saag] Is opportunistic unauthenticated encryption a waste of time?), Eric Burger Re: Is traffic analysis really a target (was Re: [saag] Is opportunistic unauthenticated encryption a waste of time?), Michael StJohns Re: Is traffic analysis really a target (was Re: [saag] Is opportunistic unauthenticated encryption a waste of time?), Brian E Carpenter Re: Is traffic analysis really a target (was Re: [saag] Is opportunistic unauthenticated encryption a waste of time?), Ted Hardie Re: Is traffic analysis really a target (was Re: [saag] Is opportunistic unauthenticated encryption a waste of time?), Mark Andrews Re: [saag] Is traffic analysis really a target (was Re: Is opportunistic unauthenticated encryption a waste of time?), Henry B (Hank) Hotz, CISSP Re: [saag] Is opportunistic unauthenticated encryption a waste of time?, Fernando Gont Re: [saag] Is opportunistic unauthenticated encryption a waste of time?, Dave Crocker Re: [saag] Is opportunistic unauthenticated encryption a waste of time?, joel jaeggli Re: [saag] Is opportunistic unauthenticated encryption a waste of time?, Fernando Gont Re: [saag] Is opportunistic unauthenticated encryption a waste of time?, joel jaeggli <= Re: [saag] Is opportunistic unauthenticated encryption a waste of time?, Fernando Gont RE: [saag] Is opportunistic unauthenticated encryption a waste of time?, Hosnieh Rafiee Re: [saag] Is opportunistic unauthenticated encryption a waste of time?, Viktor Dukhovni Re: [saag] Adept Encryption: Was: DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment), Stephen Kent RE: Adept Encryption: Was: [saag] DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment), Christian Huitema Re: Adept Encryption: Was: [saag] DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment), Nico Williams Re: Adept Encryption: Was: [saag] DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment), Stephen Farrell Re: Adept Encryption: Was: [saag] DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment), Scott Kitterman

Previous by Date:	Re: [saag] Is opportunistic unauthenticated encryption a waste of time?, Fernando Gont
Next by Date:	Re: Vacation locations, Lou Berger
Previous by Thread:	Re: [saag] Is opportunistic unauthenticated encryption a waste of time?, Fernando Gont
Next by Thread:	Re: [saag] Is opportunistic unauthenticated encryption a waste of time?, Fernando Gont
Indexes:	[Date] [Thread] [Top] [All Lists]