ietf 88 update pervasive monitoring
play

IETF-88 Update: Pervasive Monitoring Jari Arkko Russ - PowerPoint PPT Presentation

Dec 19, 2022 •279 likes •402 views

IETF-88 Update: Pervasive Monitoring Jari Arkko Russ Housley IETF Chair IAB Chair I. IETF-88 hot topics II. The pervasive monitoring problem III. What is the IETF doing about it? 1 Monday, November 18,

  1. IETF-88 Update: Pervasive Monitoring Jari Arkko Russ Housley IETF Chair IAB Chair I. IETF-88 hot topics II. The pervasive monitoring problem III. What is the IETF doing about it? 1 Monday, November 18, 13

  2. Hot Topics at IETF-88 • Pervasive monitoring • HTTP 2.0 • TLS 1.3 • Codec choices for WebRTC • Evolution of transport protocols 2 Monday, November 18, 13

  3. Pervasive Monitoring - Scope for Discussion • IETF is not a forum for political discussion • Problem is actually wider issue in the world • But we MUST understand what dangers in general face Internet traffic • And we SHOULD have an idea how Internet technology can better support security and privacy 3 Monday, November 18, 13

  4. It Is an Attack from the Perspective of Internet Protocols • ... or indistinguishable from attacks • Retrieved information could be used for good or bad; consider thieves stealing passwords • Anything indistinguishable from an attack must be considered an attack 4 Monday, November 18, 13

  5. Likely Attack Vectors • Unprotected communications (duh!) • Direct access to the peer • Direct access to keys (e.g., lavabit?) • Third parties (e.g., fake certs) • Implementation backdoors (e.g., RNGs) • Vulnerable standards (e.g., Dual_EC_DBRG) 5 Monday, November 18, 13

  6. Vulnerable Standards? • Bad random number generators (case Dual_EC_DBRG withdrawn by NIST) • Weak crypto (case RC4 in TLS) • Some claims about other vulnerabilities in IETF standards (IPsec) and elsewhere but personally we believe this to be unlikely 6 Monday, November 18, 13

  7. What Can the Engineers Do? • Technology may help - to an extent - but does not help with communications to an untrusted peer • Prevent some attacks, make getting caught more likely, shift attacks from wholesale to targeted, ... • We need to do and be seen doing as much as we can - this is about the security of the Internet - and the time window is now 7 Monday, November 18, 13

  8. Some Directions for Protection • Unprotected communications - protect them! • Vulnerable standards - public review, decommissioning old algorithms, additional review • Implementation backdoors - diversity, open source, review 8 Monday, November 18, 13

  9. What Is the IETF Doing? • Discuss the topic - openly • PERPASS, Plenary, IAB WS, WGs, ... • Work on the problem: threats, potential solutions... • A list at http://down.dsg.cs.tcd.ie/misc/perpass.txt • Specific proposals: TLS algorithms & PFS • Ongoing efforts with impacts: HTTP 2.0, TLS 1.3 • Bring together the different stakeholders to discuss the different solutions 9 Monday, November 18, 13

  10. Some High-Interest Efforts • Various services turning on TLS far more in recent years than before -- this trend will now accelerate • Algorithm clean-up -- implementations & specifications • Security to be on by default for HTTP 2.0? • What about DNS? 10 Monday, November 18, 13

  11. Further Reading & Watching • Watch Bruce Schneier and others speak about the pervasive monitoring problem & technical solutions: http://www.ietf.org/live • Join the IETF “perpass” mailing list: https:// www.ietf.org/mailman/listinfo/perpass • Join various working group mailing lists: • APPSAWG: http://tools.ietf.org/wg/appsawg • HTTPBIS: http://tools.ietf.org/wg/httpbis • TLS: http://tools.ief.org/wg/tls 11 Monday, November 18, 13

  12. Thank You 12 Monday, November 18, 13

Recommend

Scaling-up SLA Monitoring in Scaling-up SLA Monitoring in Pervasive Environments Pervasive

Scaling-up SLA Monitoring in Scaling-up SLA Monitoring in Pervasive Environments Pervasive

Istituto di Scienza e Tecnologie dell'Informazione A. Faedo Software Engineering Laboratory Scaling-up SLA Monitoring in Scaling-up SLA Monitoring in Pervasive Environments Pervasive Environments Engineering of Software Services for

677 views • 22 slides
Power and Energy Monitoring MIB draft-ietf-eman-energy-monitoring-mib-01 Mouli Chandramouli, B.

Power and Energy Monitoring MIB draft-ietf-eman-energy-monitoring-mib-01 Mouli Chandramouli, B.

Power and Energy Monitoring MIB draft-ietf-eman-energy-monitoring-mib-01 Mouli Chandramouli, B. Schoening Juergen Quittek Thomas Dietz Benoit Claise 82th IETF Meeting, Taipei, 2011 What is new in version 01 ? Editorial: Consistent with

611 views • 10 slides
Power and Energy Monitoring MIB draft-ietf-eman-energy-monitoring-mib-07 Mouli Chandramouli B.

Power and Energy Monitoring MIB draft-ietf-eman-energy-monitoring-mib-07 Mouli Chandramouli B.

Power and Energy Monitoring MIB draft-ietf-eman-energy-monitoring-mib-07 Mouli Chandramouli B. Schoening Juergen Quittek Thomas Dietz Benoit Claise 88 IETF Meeting, Vancover 2013 Summary of Major Changes in 07

53 views • 3 slides
JSEP Update Justin Uberti IETF 83.5 Topics Activity since IETF 83 Implementation

JSEP Update Justin Uberti IETF 83.5 Topics Activity since IETF 83 Implementation

JSEP Update Justin Uberti IETF 83.5 Topics Activity since IETF 83 Implementation Status Issues Raised Recap from IETF 83 Offer/answer state machine specified PRANSWER's only meaning is "allow additional future

354 views • 18 slides
RTSP NAT Traversal Update RTSP NAT Traversal Update draft-ietf-mmusic-rtsp-nat-03.txt

RTSP NAT Traversal Update RTSP NAT Traversal Update draft-ietf-mmusic-rtsp-nat-03.txt

IETF-60 MMUSIC WG IETF-60 MMUSIC WG RTSP NAT Traversal Update RTSP NAT Traversal Update draft-ietf-mmusic-rtsp-nat-03.txt draft-ietf-mmusic-rtsp-nat-03.txt Magnus Westlund (Ericsson) Thomas Zeng (PVNS, an Alcatel company) Update Since

358 views • 9 slides
Cloud Privacy in a PervasivE Monitoring t Landscape pt

Cloud Privacy in a PervasivE Monitoring t Landscape pt

44 pt Cloud Privacy in a PervasivE Monitoring t Landscape pt JOHN MATTSSON

259 views • 7 slides
Pervasive Monitoring stephen.farrell@cs.tcd.ie June 2014 stephen.farrell@cs.tcd.ie 1/16 It's

Pervasive Monitoring stephen.farrell@cs.tcd.ie June 2014 stephen.farrell@cs.tcd.ie 1/16 It's

Pervasive Monitoring stephen.farrell@cs.tcd.ie June 2014 stephen.farrell@cs.tcd.ie 1/16 It's an attack The actions of NSA and their partners (nation-state or corporate, coerced or not) are a multi-faceted form of attack, or are

352 views • 16 slides
IETF Routing Area Update A Report after IETF 96 (Berlin) Alvaro Retana (aretana@cisco.com)

IETF Routing Area Update A Report after IETF 96 (Berlin) Alvaro Retana (aretana@cisco.com)

IETF Routing Area Update A Report after IETF 96 (Berlin) Alvaro Retana (aretana@cisco.com) Distinguished Engineer, Cisco Services Routing Area Director, IETF No one is in charge, anyone can contribute and everyone can benefit. IETF

564 views • 31 slides
Job Monitoring MIB Proposal for a new standards track project Developed by Printer MIB

Job Monitoring MIB Proposal for a new standards track project Developed by Printer MIB

Job Monitoring MIB Proposal for a new standards track project Developed by Printer MIB participants (Presented at 12/10/96 IETF ftp://ftp.pwg.org/pub/pwg/jmp/slides/jmp-ietf.ppt) and 4/8/97 IETF

716 views • 7 slides
Security for Pervasive Computing CS239 Kevin Eustice V. Ramakrishna 4/24/06 What is Pervasive

Security for Pervasive Computing CS239 Kevin Eustice V. Ramakrishna 4/24/06 What is Pervasive

Security for Pervasive Computing CS239 Kevin Eustice V. Ramakrishna 4/24/06 What is Pervasive Computing? One Vision of Pervasive Computing PHYSICAL INTEGRATION Coffee Shop Personal Network Change route! My location? L o c a t i

318 views • 20 slides
Pervasive Devices Pervasive Devices: Low memory, few gates Low power, no clock, little

Pervasive Devices Pervasive Devices: Low memory, few gates Low power, no clock, little

Authenticating Pervasive Devices with Human Protocols Ari Juels Stephen A. Weis RSA Laboratories MIT CSAIL Pervasive Devices Pervasive Devices: Low memory, few gates Low power, no clock, little state Low computational power

611 views • 20 slides
NADA Implementation in Mozilla Browser and Draft Update draft-ietf-rmcat-nada-11 Xiaoqing Zhu,

NADA Implementation in Mozilla Browser and Draft Update draft-ietf-rmcat-nada-11 Xiaoqing Zhu,

NADA Implementation in Mozilla Browser and Draft Update draft-ietf-rmcat-nada-11 Xiaoqing Zhu, Rong Pan, Michael A. Ramalho, Sergio Mena, Paul E. Jones, Jiantao Fu, and Stefano D'Aronco July 2019 | IETF 105 | Montreal, Canada 1 Draft Update

472 views • 28 slides
EMU IETF 74 Note Well Any submission to the IETF intended by the Contributor for publication as

EMU IETF 74 Note Well Any submission to the IETF intended by the Contributor for publication as

EMU IETF 74 Note Well Any submission to the IETF intended by the Contributor for publication as all or part of an IETF Internet-Draft or RFC and any statement made within the context of an IETF activity is considered an "IETF

940 views • 7 slides
Coastal Monitoring Update Clive Moon Engineering Manager - Environment Coastal Monitoring

Coastal Monitoring Update Clive Moon Engineering Manager - Environment Coastal Monitoring

Coastal Monitoring Update Clive Moon Engineering Manager - Environment Coastal Monitoring Background to monitoring Climate change Wales Coastal Monitoring Centre Recent Monitoring Next steps Why? 45 km of coastline 4

534 views • 18 slides
BALANCE: Towards a Usable Pervasive Wellness Application with Pervasive Wellness Application with

BALANCE: Towards a Usable Pervasive Wellness Application with Pervasive Wellness Application with

BALANCE: Towards a Usable Pervasive Wellness Application with Pervasive Wellness Application with Accurate Activity Inference Tamara Denning, Adrienne Andrew, Rohit Chaudhri, Carl Hartung, Jonathan Lester, Gaetano Borriello, Glen Duncan

584 views • 23 slides
BBR Congestion Control: IETF 100 Update: BBR in shallow buffers Neal Cardwell, Yuchung Cheng, C.

BBR Congestion Control: IETF 100 Update: BBR in shallow buffers Neal Cardwell, Yuchung Cheng, C.

BBR Congestion Control: IETF 100 Update: BBR in shallow buffers Neal Cardwell, Yuchung Cheng, C. Stephen Gunn, Soheil Hassas Yeganeh Ian Swett, Jana Iyengar, Victor Vasiliev Van Jacobson https://groups.google.com/d/forum/bbr-dev IETF 100:

477 views • 36 slides
Pervasive Computing: Opportunities and Challenges Dimitris Kalofonos Pervasive Computing Group

Pervasive Computing: Opportunities and Challenges Dimitris Kalofonos Pervasive Computing Group

Pervasive Computing: Opportunities and Challenges Dimitris Kalofonos Pervasive Computing Group (PCG) Nokia Research Center, Boston 1 ASWN04 Panel Discussion, August 10, 2004, Dimitris Kalofonos The Vision for Pervasive Computing (PC)

128 views • 9 slides
Monitoring Update: USGS Monitoring Efforts 2009 - 2014 In Cooperation With: U.S. Department of

Monitoring Update: USGS Monitoring Efforts 2009 - 2014 In Cooperation With: U.S. Department of

Monitoring Update: USGS Monitoring Efforts 2009 - 2014 In Cooperation With: U.S. Department of the Interior U.S. Geological Survey Outline Lower Boise Tributary monitoring 2009-2012 Fivemile and Tenmile Creeks WY2009 Indian Creek

431 views • 20 slides
PERVASIVE Home ! Work ! Play 2 2 Pervasive (Home) TURBOCHEF www.turbochef.com MOXI

PERVASIVE Home ! Work ! Play 2 2 Pervasive (Home) TURBOCHEF www.turbochef.com MOXI

Embedded Systems Silicon Valley 2011 ESC-202 Implementing Secure Remote Firmware Updates Tuesday May 3 rd , 8:00 9:15 Loren Shade loren@allegrosoft.com 1 1 PERVASIVE Home ! Work ! Play 2 2 Pervasive (Home) TURBOCHEF

435 views • 14 slides
ALTO Incremental Updates draft ietf alto incr update sse 01 W. Roome

ALTO Incremental Updates draft ietf alto incr update sse 01 W. Roome

ALTO Incremental Updates draft ietf alto incr update sse 01 W. Roome Alcatel-Lucent/Bell Labs (NJ) R. Yang X. Shi Yale IETF 94 (Virtual) October 27, 2015 IETF-94 (virtual) ALTO Incremental Updates 1 10/27/2015

78 views • 7 slides
IETF Status at IETF 85 Russ Housley IETF Chair 1 IETF 85 Participants l 1098 people l 195

IETF Status at IETF 85 Russ Housley IETF Chair 1 IETF 85 Participants l 1098 people l 195

IETF Status at IETF 85 Russ Housley IETF Chair 1 IETF 85 Participants l 1098 people l 195 newcomers l IETF 82 was 948 people l 55 countries l IETF 82 was 48 countries IETF 82 was held in US JP CN FR UK Taipei, Taiwan DE

327 views • 8 slides
BBR Congestion Control: IETF 99 Update Neal Cardwell, Yuchung Cheng, C. Stephen Gunn, Soheil

BBR Congestion Control: IETF 99 Update Neal Cardwell, Yuchung Cheng, C. Stephen Gunn, Soheil

BBR Congestion Control: IETF 99 Update Neal Cardwell, Yuchung Cheng, C. Stephen Gunn, Soheil Hassas Yeganeh Ian Swett, Jana Iyengar, Victor Vasiliev Van Jacobson https://groups.google.com/d/forum/bbr dev IETF 99: Prague, July 17, 2017 1

717 views • 49 slides
MobiDIS A Pervasive A Pervasive MobiDIS Architecture for Emergency Architecture for

MobiDIS A Pervasive A Pervasive MobiDIS Architecture for Emergency Architecture for

MobiDIS A Pervasive A Pervasive MobiDIS Architecture for Emergency Architecture for Emergency Management Management Massimiliano de Leoni Fabio De Rosa Massimo Mecella Univ. Roma LA SAPIENZA, Italy Dipartimento di Informatica e

1.18k views • 33 slides
Welcome to the IETF! Would you like instructions? Mike StJohns IETF 97 Seoul, South Korea 1

Welcome to the IETF! Would you like instructions? Mike StJohns IETF 97 Seoul, South Korea 1

Welcome to the IETF! Would you like instructions? Mike StJohns IETF 97 Seoul, South Korea 1 IETF Note Well Any submission to the IETF intended by the Contributor for publication as all or part of an IETF Internet-Draft or RFC and any

637 views • 29 slides

More recommend