[discuss] Transiting e-mails
JFC Morfin
jefsey at jefsey.com
Wed Jan 8 17:33:12 UTC 2014
At 01:27 08/01/2014, Michel Gauthier wrote:
>This is why the question is: will the balkanization of the internet
>result from the IAB governance? If people do not trust the internet
>anymore it is because they trust the NSA, as being fully able to
>make it insecure. Why is the NSA able to do it so easily? Whose
>fault? The internet is broken, who can fix it? What is the cost? If
>the fault is with the IAB governance, can we trust the IAB
>governance to fix it?
Michel,
The problem you raise does not really belong to the IAB/IETF. The
IETF's scope is end to end information transport through datagrams.
1. For your documentation
The IUCG gathers documents, works, and positions on Digital Security
and Awareness at
<http://iucg.org/wiki/Main_Page#Digital_Security_and_Awareness>http://iucg.org/wiki/Main_Page#Digital_Security_and_Awareness.
You will find the RFCs and Drafts on the matter there as well as the
founding rationales (you can add others if you wish). Please note
that anything the IETF can do in this area is obviously
architecturally limited by RFC 3914 on OPES, which explains how
to
bypass everything!
2. IAB Governance
Brian has some difficulty understanding what "governance" is,
especially in considering the Governance of/by the IAB, you also
consider his IAB implication as a Chair. Let's forget about it. The
IAB and IETF will never help your security. All they have to do is to
ensure that you receive the datagrams, as all the ITU has to do is to
make sure the bandwidth is available and active. The ITU is about
basic electric services, and the IETF is about value added data
services. We are interested in extended intelligent services. You
have no more/no less reason to involve the IETF than the ITU (unless
you want to pollute them or get polluted by their possible errors).
The problem certainly comes from the IAB and its lack of innovation
dynamism. The IAB has not provided the IETF with the necessary
motivation and guidance for it to stay abreast of the other
technologies (lines, hardware, software programming, usership
brainware) and of their own progresses (like benefiting from subsidiarity).
This way the IAB/ITF has correctly plaid its role: to provide a
transport reliable security vulnerable network system that would
provide global, controllable, and controlled access. However, it has
not scaled and the system has become technically and politically too
weak. Corrective actions were necessary to restore control on the
technical and political governance.
3. Internet I*consolidation strategy
This was conducted by Lynn and the 11 CEOs during the last two years,
including ICANN in the 2013 falls. Montevideo weekend and meeting
with Dilma. Nnow ICANN could probably pretend it has bitten the IoT
leadership bait; and give a good reason for working on network
security consolidation without alarming the other national cyber
security agencies (let's call them NCSAs for not always talking of
the US one, and not immediately stepping-up at Cyber-Commands R&D
procurement budgets, like DARPA, and their intellition projects, like
<http://www.darpa.mil/Our_Work/I2O/Programs/Cyber_Grand_Challenge_%28CGC%29.aspx>http://www.darpa.mil/Our_Work/I2O/Programs/Cyber_Grand_Challenge_%28CGC%29.aspx)
After the "Variant WG", and the DNSSEC ploy, we will probably see a
GAC CyberSecurity/EDI Advisory Commitee
4. The Snowden interlude operation
With RFC 6852 and its Modern Paradigm for Standard, the IAB has
stepped down from its de facto architectonic guidance undesired
obligations. This is now supposed to be assumed by whoever will be
able to authoritatively read the "economics of the global markets
fueled by technological advancements". There is no one designated yet
for that (hence my pending appeal): we will see who are the Sao Paulo
co-chairs.
The three candidates (with coding capacity) I would consider would be:
* IEEE,
* DARPA,
* and the grassroots "intelligent use" community we need to inform
and probably fruitfully ally with Govs (as per the good reasons
detailed by IAB in RFC 3869).
By design, in the network pile, security issues are to be addressed
at the (purposely) missing layer six presentation. Initially it was a
good move for a proof of concept; eventually it has become the IAB
"internet BUG" in not keeping in tune with the implications of the
conceptual validation success that were hinted at in IEN 48.
The Snowden Show came one year after OpenStand agreement and six
month after the WCIT clash. It was to reunite the two halfes of the
world (OECD/BRICS) in an ICANN led project in fear that
uncontrollable grassroots could become influent. Snowden is to make
people aware that these issues are serious issues for Tax
paid/evaders experts rather than Tax payers professionnals.
5. Let get real: the global cyberwar
The real difficulty for us today is that enforcing security on the
network is affecting the security of the USA and other main countries
(we are talking of real cyberwar issues) unless the way the layer six
is introduced is coordinated with the Cyber Defense community;
according to the CyberWar laws and conventions. Protecting HRs,
developing business, fighting crime, etc. is nice but useless if one
does not first keep people alive...
One has to realize that most of the existing digital protections are
obsolete and that the cyber world war is a currently ongoing endemic
global war, where precaution is quasi unheard of by its artificial
battlefield designers, hence the difficulty to proceed without a
cultural leap (searched Snowden's effect?) because the tools have not
been developed, defenses have not been built, and the brainware is
absent. The real problem is that the US status quo digital dominance
and the IAB lack of innovative dynamism have left the vital,
business, and personal processes of the digital Empires without
serious digital fortifications.
6. The Sao Paulo deal
This is why BRICS economies feel really concerned. They do not want
to be digitally dependent. They want to empower themselves, not
wishing to be e-colonized like Europe. Sao Paulo is a second round
that they organize after the WCIT, to settle the deal. Let go ahead
together and not separately with Internet 2.0, layer six and
intellition. Within a globalized ICANN framework. Opposing together
any Open IUse independant innovation initiative.
- Being Govs, they will have political, industrial and military objectives.
- Being commercial sponsors (ISOC) having been sold influence on the
IETF affiliate technology their interest is in financial results.
- Being users (lead users, FLOSS, small corporations, developing
countries) our interest is to build our own person-centric third
global community (as per RFC 6852) based on technological leadership
and self-protection.
Our interest is to be on the innovation side in order to protect/win
our independence from the US/Asian/European industry and their
possible monetary/business collapse. (How can you make a digital
economy built on advertising sustainable when our user interest is to
build advertisement firewalls, and when we are the product?)
jfc
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://1net-mail.1net.org/pipermail/discuss/attachments/20140108/f288f336/attachment.html>
More information about the discuss
mailing list