RE: The CIA mentions us

Phillip Hallam-Bakerwrote:
...

The reason I keep coming back to the data level security issue is that 

1) It is in scope for IETF. Data level security protects data at rest and 
in motion.

2) There have been recent expiries and are imminent pending expiries 
of key IPR that makes a solution much easier.

Clearly that statement is self-contradictory. If the IPR has existed long 
enough to be at expire, the 'easier solution' has existed for a long time. The 
choice of not using it is simply a cost issue. If people don't believe 
protecting the data is worth the cost, the data will be exposed.

3) It is one of the things we can fix that has the greatest security payoff.

You can "improve" it, but you will never "fix" it. As long as humans have to 
interact with the data, there has to be a mechanism to expose the data, and 
that mechanism will always be vulnerable to compromise.

Tony

<Prev in Thread]	Current Thread	[Next in Thread>
Re: The CIA mentions us, (continued) Re: The CIA mentions us, Bob Hinden Re: The CIA mentions us, Jari Arkko Re: The CIA mentions us, Phillip Hallam-Baker Re: The CIA mentions us, Stephen Farrell Re: The CIA mentions us, joel jaeggli Re: The CIA mentions us, Ted Lemon Re: The CIA mentions us, Phillip Hallam-Baker Re: The CIA mentions us, willi uebelherr Re: The CIA mentions us, Yoav Nir Re: The CIA mentions us, willi uebelherr RE: The CIA mentions us, Tony Hain <= Re: The CIA mentions us, Rich Kulawiec

Previous by Date:	Re: The CIA mentions us, willi uebelherr
Next by Date:	Review of draft-ietf-dnssd-mdns-dns-interop-04, Ines Robles
Previous by Thread:	Re: The CIA mentions us, willi uebelherr
Next by Thread:	Re: The CIA mentions us, Rich Kulawiec
Indexes:	[Date] [Thread] [Top] [All Lists]