From nobody Thu Jul 9 00:38:17 2015 Return-Path: X-Original-To: perpass@ietfa.amsl.com Delivered-To: perpass@ietfa.amsl.com Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 95AAE1AC43B for ; Thu, 9 Jul 2015 00:38:16 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.909 X-Spam-Level: X-Spam-Status: No, score=-1.909 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, T_RP_MATCHES_RCVD=-0.01, WEIRD_PORT=0.001] autolearn=ham Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id q1HnZo8EC6oh for ; Thu, 9 Jul 2015 00:38:15 -0700 (PDT) Received: from smtprelay.restena.lu (smtprelay.restena.lu [158.64.1.62]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D1DFA1AC42F for ; Thu, 9 Jul 2015 00:38:14 -0700 (PDT) Received: from aragorn.restena.lu (aragorn.restena.lu [IPv6:2001:a18:1:8::155]) by smtprelay.restena.lu (Postfix) with ESMTPS id 64DC74395D; Thu, 9 Jul 2015 09:38:13 +0200 (CEST) Message-ID: <559E24E5.7040306@restena.lu> Date: Thu, 09 Jul 2015 09:38:13 +0200 From: Stefan Winter User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.7.0 MIME-Version: 1.0 To: perpass@ietf.org References: <5530EEAB.5050601@cs.tcd.ie> <25042.1429279352@sandelman.ca> <5541D7DD.9010504@restena.lu> <30883.1430401937@sandelman.ca> In-Reply-To: <30883.1430401937@sandelman.ca> OpenPGP: id=AD3091F3AB24E05F4F722C03C0DE6A358A39DC66; url=http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xC0DE6A358A39DC66 Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="3nR4tJMHe3iwkC51Bme8ar5BsHim8MdB6" Archived-At: Cc: Michael Richardson Subject: Re: [perpass] perpass: what next? X-BeenThere: perpass@ietf.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: "The perpass list is for IETF discussion of pervasive monitoring. " List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 09 Jul 2015 07:38:16 -0000 This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --3nR4tJMHe3iwkC51Bme8ar5BsHim8MdB6 Content-Type: multipart/mixed; boundary="------------070906010105070003030303" This is a multi-part message in MIME format. --------------070906010105070003030303 Content-Type: text/plain; charset=windows-1252 Content-Transfer-Encoding: quoted-printable Hello, > I agree that we do a poor job here, and I think that we should make thi= s kind > of interaction smoother. I spent four years working on rfc4332 (OE for= IPsec/IKE), > and version 1 was always going to be on the ISE. >=20 > > BTW, the current draft is here; as it happens, it expires today, = and > > honestly I'm wondering if it's worth refreshing it: >=20 > > https://tools.ietf.org/html/draft-winter-opsawg-eap-metadata-01 >=20 > I would say yes. I was going to ask if there were implementations, and = you > clearly have some... Okay. I've refreshed the draft with minor changes, and am going to try and hunt down ADs for ISE sponsoring :-) I'm aiming at either Stephen (as he's on the list and so is informed on the general topic already; plus he's an eduroam user and sees .1X in real life every day - now if he is also proud owner of an Android device, where we've implemented the draft already, he's a role-model AD for this draft :-) ) or Kathleen (I originally presented this for the OPS area where Kathleen is now partly involved; but since the topic also improves end-user security it also has a security AD touch). I can also present this at saag if a security AD or two see value in this= ? In any case, Stephen and Kathleen should prepare to run and hide if they see me approaching in Prague :-) The refreshed draft is at https://www.ietf.org/internet-drafts/draft-winter-opsawg-eap-metadata-02.= txt Greetings, Stefan Winter --=20 Stefan WINTER Ingenieur de Recherche Fondation RESTENA - R=E9seau T=E9l=E9informatique de l'Education National= e et de la Recherche 6, rue Richard Coudenhove-Kalergi L-1359 Luxembourg Tel: +352 424409 1 Fax: +352 422473 PGP key updated to 4096 Bit RSA - I will encrypt all mails if the recipient's key is known to me http://pgp.mit.edu:11371/pks/lookup?op=3Dget&search=3D0xC0DE6A358A39DC66 --------------070906010105070003030303 Content-Type: application/pgp-keys; name="0x8A39DC66.asc" Content-Transfer-Encoding: quoted-printable Content-Disposition: attachment; filename="0x8A39DC66.asc" -----BEGIN PGP PUBLIC KEY BLOCK----- Version: GnuPG v2 mQINBFIplEwBEADTSz+DS8nio+RSvfSLLfaOnCGi1nqpn8Pb1laVUyEvnAAzZ5je miS88GxfiDH6hUGlWzcaW0hCfUHGiohr485adbjxRksPngWgAt/1bRxpifsW3zOb Fjgog01WWQV5Sihlwc4zr8zvYbFA5BJZ6YdkR9C5J015riv5OS30WTjA65SSXgYr b7zJWPwmegTFwE093uBFvC39waz3xYpVu5j87nO6w2MVQt/8sY2/2BFPEq+xfOaj l18UEwc7w8SCgnZdlVNcmEK4UBvJuwS/1lsR2JeQa8Gu1EDxC7PRgMgNXsDSWnnB e9aVmfG54+6ILe1QH2dwk9sPBQT5w2+vjijrb3Dv9ur+1kN+TNU2XE436jVpnnY/ 3OsLdix30STQn4Q/XOm7YoVMeDwwviefilRxzK0dXA+wKj92T68Od82CFxuZqPAg BCVmWfQM91iK9piqFK+QP+R3vF6+NGDBdwbe68iVKs0v5L8XmbxBQndjpmo+lo2a smBR2TAIfZHaKdgtBw13u3GPVVKlg/Mpko8ki9JOSem2aFyi3kQEVKptWgXT3POl 97DWJzsR5VyKz6GOx9kJAEISRyLZwm0wqh8+9LCza5oeIKW381lzq1b9x30vOh8C BSQQJ+cG9ko0yPHAj7Suw2TmPXx1qMctmE6Ahq82ZW30SljdZby8WQuR2wARAQAB tDxTdGVmYW4gV2ludGVyIChSRVNURU5BIGtleSAyMDEzKykgPHN0ZWZhbi53aW50 ZXJAcmVzdGVuYS5sdT6JAjkEEwECACMFAlIplEwCGwMHCwkIBwMCAQYVCAIJCgsE FgIDAQIeAQIXgAAKCRDA3mo1ijncZj7/D/99hVS+mJr8dSPCaDaUFFxBiT2eI1Lo R8VKEerTCRw5BsdL6pN2eRJZ9NmsqWo1ynWVHEzO91bNZ+oZGgyoNohcBAI7p+r0 qUTzkyqwdZO4kMm0pqKoM9xkP3tf2mjGujKjOz4Y7S7wnz2ZFokeUsecoRVJF/++ /qHnmeWLn44J1HUKLHYCjMu+QXGOgGXgz024jQ5eUrnPwzNp0Z90AFVHlWC+bymt y/ToIUUCQqS5Ff0jzdWLd8U695OG9iGvjBQT1LdEjsfbAwuKV5UcnpxNqUpUwKa5 9hdX5/2cMZP07FI1UXwnBlxa8rJfdb13FLjSKX4vUUHedYUZMjMPgcwl1a+zGE22 lHiSQWgP8QLA/W3BLsi22ERCEPZBfexOeOtaWIItDIz18fIaQoMDoRPshzar0JI2 CzLYsyeKySAtYJEHFVoLmMvhkwzBmgqA/BEswUA67CfCr1jFHRXdpmWM7YkyAmMa 9q6LwquWKS5+MXlUXe/3oZUcgpw/T9Uuy3Jo3RdS7B3jFcWaVr6KsO/A9u1gr/aY n5M+iJTQSj4vzqtkQaJTpSspRZoKa66HZt3IwSYiDiYZqtM83ynuj9kjnZzGfnuT aNIi996q6Mptr33mOzIE1wmMqnJYwTr3EcNtf483q/qrJwh5ES8Q9xY7aat/ZcSl 8fKubW4TlfVr8YhGBBARAgAGBQJSKZUGAAoJEPo5vdH/HhVmYTgAn24eoqO/O98o vNpt08Uab/+/tmYKAJ9kjXm9Njz5h33efzeelZUa484rr7kCDQRSKZRMARAAvBPp n7FQq7LQ5glohtbL6XIEo1U4X67S0TzUYieENSWSVYuWYIhCBldmWdmH8Bpj/qHe qdon7v+SLtR4WngzMR9toupKcFfHnbP9kpazTSB2ySHxXWGX1gJOpPXdCcg9iveK BHEsDn00ThTcPsvtXpnnzET16pXIvOXO0bxTmVZ4INIF1SWgvYma/g8kBbgXLpkj 8tOywBqFiiYPEZlDeCxDHiMgUDh6olda9K/0TZFTdMPUgjKuubfAeaDNCOrVt4Rj mFOaRLikcZocmgJhm3z/j25x7/mnNu+0di1H/S67YGQJ+pqCFInzIXDx7aRW2+JC iqsY2X3xOPWZZzjyis5SNnfOcPH3gt2hYz1fy+thsBGf4NgCN01JRqIJ2/MOQCgU dwh+9l8xqaJvCkUHM4hVh4W62MAe1u7UEqQbvvNEqxM5034vcvlE+/LRkrDCspw+ 2YJ9QyroLerVRwW5DVleP8Ifi8VB3yD80nqXYs9aqRy0BkDNIQ43ERhESMt8dJqr NkxgC6pemZrhNwyDh+hy2kPNGQh/iBpdKuH1o3E24TIZoV2v3YHvzob7aAYHddE/ PofAXhJW7I9mAs+HdWDmnI8ckuPDFpFH+Y/BFGvEXgcnJAJ1wEvf+4LuiIi0MHjR 4EWFn9vvoFDAIqD10h3FSd3D59HGtdSsNn4XaCsAEQEAAYkCHwQYAQIACQUCUimU TAIbDAAKCRDA3mo1ijncZhBtEACL036ddjc5pFoYIdoUY1vT8SMXJNquewCnL1qu DADzqDZFU5GNlQEy10krSfBwlTb9ahTtE0JFrOdZwUZtoa1Pgfr8nU6KOgrXPHbN jS/9dyc5CwGVVIpOavIm2CsMVDJ9LCF/NT+u/t1k6eGfHhPVl3dUQyDa/lzc1chK UIVQYQkFmr0A/iXP+29lFCaI+IeyU0bSdZhezDwUROn5vEx+fiPZyHDShCb+BxJv /o2LQp9JHenCiSbO+ioRZdxgbWfoKBuXOfmSStqMWXas/gZ5vS3xq72LNtKPRxgp jX3P8Zml1XDqpcBau7eK75VKE0Yd06YxnUIsbcEzInUc3uzW/u0DFpXYkMJb0XIv JyUt5yYPKfV13N8kSkPi5pLxm8yuftXMzfgeFMR7nafY3glTVj/TxElzg6xeZNqf C2ZjIbBtZg9ylHU8u8wwB+dX282crs0R3N9A064C71/cXlBqcjzjlKH2NUIWGxr+ od3TXFIFjszSU3NgMPKrWNhFLLwS81MpbkOe73s6aDhS8RDyNucoxtKXriLR+4Xi u4+pyj5ukYP1JqpB3ZobY/XZgCnJMye+7xeTpIDJ1LPORxM3NNAElyb26lxAK2P+ km+EpI0Zzz6rNSCfg5jYQ474+e/GBgaSG4MlaPoZ+XAfN46u1Xjjv1/AkkA4IA6m 5zP5og=3D=3D =3D3NUt -----END PGP PUBLIC KEY BLOCK----- --------------070906010105070003030303-- --3nR4tJMHe3iwkC51Bme8ar5BsHim8MdB6 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCgAGBQJVniTlAAoJEMDeajWKOdxm4x4P/2kP2o8071R2e3bG6GOoz+28 jJYIOrT2d3nbKSh/wMfnBNC8EU2CvAZz+x9M/01ywTMGU6NP6U1FiEa3R31N27UW +FkuBSiItd6sDAQywB0/98gYBRMjSe7vpIhxa1/jQ/w6DCYoj3dJY9ffAT6wKBQC lM3zxk313CcENV6/tinEM2NLUhQTgsIBZ+T0kl5CJHwtzEAI6ZczwkomJlcUe1x8 RS/TDVbZnkzGLxabd7d2YjyJtfke8kNYQ+yY9u2xcvTdb/++QvTjESDRQXmC8q2U +pC9e//nm0054qhXDgX2dKcwnNUDtOOhE9rkLmrCCxoE8GdmUVCeE7EbpKbQFcV0 pe7km+ZgUTPFVkL0fX+7shz16+/DHG97f9wCte419rpCieoTiCQp9jFHZV4RsO9N ron7yBTahltXiLat2AO1NMu+w3PAv3kuVHa6UkepD8hc8y+5PdnOwjUQv6ixPFk6 tsmzZoN5/22Mzay0ZFbV5ME9O3CR0Gn3QhhZA08PyknBs9ZquBv7FkxweRxWYKFa GWfpFWpLRsj3eFCXzqXyEx1esHZFkSnVlxR8DKYT2Dk26hvVnEADz6GaPCO2S5Mx tY3zlslIL5U/3TTQ6T2ZWLLqXhYHfCt7VnHWt8hM5e+H/0VKhmyMzXZIG7P2LYKj JGzdYqiMMI+K2IWPqfRY =5tql -----END PGP SIGNATURE----- --3nR4tJMHe3iwkC51Bme8ar5BsHim8MdB6-- From nobody Thu Jul 9 00:45:21 2015 Return-Path: X-Original-To: perpass@ietfa.amsl.com Delivered-To: perpass@ietfa.amsl.com Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 41CDE1AC43D for ; Thu, 9 Jul 2015 00:45:19 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.909 X-Spam-Level: X-Spam-Status: No, score=-1.909 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, T_RP_MATCHES_RCVD=-0.01, WEIRD_PORT=0.001] autolearn=ham Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id OjBQAvHBMhYe for ; Thu, 9 Jul 2015 00:45:17 -0700 (PDT) Received: from smtprelay.restena.lu (smtprelay.restena.lu [IPv6:2001:a18:1::62]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 982531AC44D for ; Thu, 9 Jul 2015 00:45:17 -0700 (PDT) Received: from aragorn.restena.lu (aragorn.restena.lu [IPv6:2001:a18:1:8::155]) by smtprelay.restena.lu (Postfix) with ESMTPS id 720F843976; Thu, 9 Jul 2015 09:45:16 +0200 (CEST) Message-ID: <559E268C.60306@restena.lu> Date: Thu, 09 Jul 2015 09:45:16 +0200 From: Stefan Winter User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.7.0 MIME-Version: 1.0 To: Michael Richardson References: <5530EEAB.5050601@cs.tcd.ie> <25042.1429279352@sandelman.ca> <5541D7DD.9010504@restena.lu> <30883.1430401937@sandelman.ca> In-Reply-To: <30883.1430401937@sandelman.ca> OpenPGP: id=AD3091F3AB24E05F4F722C03C0DE6A358A39DC66; url=http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xC0DE6A358A39DC66 Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="NWLDNKLl1qHL9TRR0T9HptEUjiHWFlQdO" Archived-At: Cc: perpass@ietf.org Subject: Re: [perpass] perpass: what next? X-BeenThere: perpass@ietf.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: "The perpass list is for IETF discussion of pervasive monitoring. " List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 09 Jul 2015 07:45:19 -0000 This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --NWLDNKLl1qHL9TRR0T9HptEUjiHWFlQdO Content-Type: multipart/mixed; boundary="------------060506000109010902050000" This is a multi-part message in MIME format. --------------060506000109010902050000 Content-Type: text/plain; charset=windows-1252 Content-Transfer-Encoding: quoted-printable Hello, > Would there be value to deploy this at IETF meeting networks? There was a very long and for me depessing thread on this question; once on attendees of a meeting where I reached out to get 1X security done; once on ietf@ietf.org (thread starting 27 April 2014 "Security for the IETF wireless network"). It seems like the use case at IETF meetings is so different from normal corporate use that attendees don't see significant enough value in security the 1X network properly. The story goes like this... Since the network uses username+password =3D=3D"ietf/ietf" there is no risk to leak personal credentials. So there= is no need to authenticate the network to the user. My argument that users could fall into a rogue 1X evil clone if they don't get provisioned proper security settings was waved away with statements such as that nobody should trust the network anyway, and that the situation is no different on the open ietf network. Needless to say that I was extremely unhappy with that way of thinking, but at some point I gave up (I considered to set up an evil twin myself, but don't want to be overly nasty). It's like... everybody should eat our dogfood, except ourselves. :-( Stefan --=20 Stefan WINTER Ingenieur de Recherche Fondation RESTENA - R=E9seau T=E9l=E9informatique de l'Education National= e et de la Recherche 6, rue Richard Coudenhove-Kalergi L-1359 Luxembourg Tel: +352 424409 1 Fax: +352 422473 PGP key updated to 4096 Bit RSA - I will encrypt all mails if the recipient's key is known to me http://pgp.mit.edu:11371/pks/lookup?op=3Dget&search=3D0xC0DE6A358A39DC66 --------------060506000109010902050000 Content-Type: application/pgp-keys; name="0x8A39DC66.asc" Content-Transfer-Encoding: quoted-printable Content-Disposition: attachment; filename="0x8A39DC66.asc" -----BEGIN PGP PUBLIC KEY BLOCK----- Version: GnuPG v2 mQINBFIplEwBEADTSz+DS8nio+RSvfSLLfaOnCGi1nqpn8Pb1laVUyEvnAAzZ5je miS88GxfiDH6hUGlWzcaW0hCfUHGiohr485adbjxRksPngWgAt/1bRxpifsW3zOb Fjgog01WWQV5Sihlwc4zr8zvYbFA5BJZ6YdkR9C5J015riv5OS30WTjA65SSXgYr b7zJWPwmegTFwE093uBFvC39waz3xYpVu5j87nO6w2MVQt/8sY2/2BFPEq+xfOaj l18UEwc7w8SCgnZdlVNcmEK4UBvJuwS/1lsR2JeQa8Gu1EDxC7PRgMgNXsDSWnnB e9aVmfG54+6ILe1QH2dwk9sPBQT5w2+vjijrb3Dv9ur+1kN+TNU2XE436jVpnnY/ 3OsLdix30STQn4Q/XOm7YoVMeDwwviefilRxzK0dXA+wKj92T68Od82CFxuZqPAg BCVmWfQM91iK9piqFK+QP+R3vF6+NGDBdwbe68iVKs0v5L8XmbxBQndjpmo+lo2a smBR2TAIfZHaKdgtBw13u3GPVVKlg/Mpko8ki9JOSem2aFyi3kQEVKptWgXT3POl 97DWJzsR5VyKz6GOx9kJAEISRyLZwm0wqh8+9LCza5oeIKW381lzq1b9x30vOh8C BSQQJ+cG9ko0yPHAj7Suw2TmPXx1qMctmE6Ahq82ZW30SljdZby8WQuR2wARAQAB tDxTdGVmYW4gV2ludGVyIChSRVNURU5BIGtleSAyMDEzKykgPHN0ZWZhbi53aW50 ZXJAcmVzdGVuYS5sdT6JAjkEEwECACMFAlIplEwCGwMHCwkIBwMCAQYVCAIJCgsE FgIDAQIeAQIXgAAKCRDA3mo1ijncZj7/D/99hVS+mJr8dSPCaDaUFFxBiT2eI1Lo R8VKEerTCRw5BsdL6pN2eRJZ9NmsqWo1ynWVHEzO91bNZ+oZGgyoNohcBAI7p+r0 qUTzkyqwdZO4kMm0pqKoM9xkP3tf2mjGujKjOz4Y7S7wnz2ZFokeUsecoRVJF/++ /qHnmeWLn44J1HUKLHYCjMu+QXGOgGXgz024jQ5eUrnPwzNp0Z90AFVHlWC+bymt y/ToIUUCQqS5Ff0jzdWLd8U695OG9iGvjBQT1LdEjsfbAwuKV5UcnpxNqUpUwKa5 9hdX5/2cMZP07FI1UXwnBlxa8rJfdb13FLjSKX4vUUHedYUZMjMPgcwl1a+zGE22 lHiSQWgP8QLA/W3BLsi22ERCEPZBfexOeOtaWIItDIz18fIaQoMDoRPshzar0JI2 CzLYsyeKySAtYJEHFVoLmMvhkwzBmgqA/BEswUA67CfCr1jFHRXdpmWM7YkyAmMa 9q6LwquWKS5+MXlUXe/3oZUcgpw/T9Uuy3Jo3RdS7B3jFcWaVr6KsO/A9u1gr/aY n5M+iJTQSj4vzqtkQaJTpSspRZoKa66HZt3IwSYiDiYZqtM83ynuj9kjnZzGfnuT aNIi996q6Mptr33mOzIE1wmMqnJYwTr3EcNtf483q/qrJwh5ES8Q9xY7aat/ZcSl 8fKubW4TlfVr8YhGBBARAgAGBQJSKZUGAAoJEPo5vdH/HhVmYTgAn24eoqO/O98o vNpt08Uab/+/tmYKAJ9kjXm9Njz5h33efzeelZUa484rr7kCDQRSKZRMARAAvBPp n7FQq7LQ5glohtbL6XIEo1U4X67S0TzUYieENSWSVYuWYIhCBldmWdmH8Bpj/qHe qdon7v+SLtR4WngzMR9toupKcFfHnbP9kpazTSB2ySHxXWGX1gJOpPXdCcg9iveK BHEsDn00ThTcPsvtXpnnzET16pXIvOXO0bxTmVZ4INIF1SWgvYma/g8kBbgXLpkj 8tOywBqFiiYPEZlDeCxDHiMgUDh6olda9K/0TZFTdMPUgjKuubfAeaDNCOrVt4Rj mFOaRLikcZocmgJhm3z/j25x7/mnNu+0di1H/S67YGQJ+pqCFInzIXDx7aRW2+JC iqsY2X3xOPWZZzjyis5SNnfOcPH3gt2hYz1fy+thsBGf4NgCN01JRqIJ2/MOQCgU dwh+9l8xqaJvCkUHM4hVh4W62MAe1u7UEqQbvvNEqxM5034vcvlE+/LRkrDCspw+ 2YJ9QyroLerVRwW5DVleP8Ifi8VB3yD80nqXYs9aqRy0BkDNIQ43ERhESMt8dJqr NkxgC6pemZrhNwyDh+hy2kPNGQh/iBpdKuH1o3E24TIZoV2v3YHvzob7aAYHddE/ PofAXhJW7I9mAs+HdWDmnI8ckuPDFpFH+Y/BFGvEXgcnJAJ1wEvf+4LuiIi0MHjR 4EWFn9vvoFDAIqD10h3FSd3D59HGtdSsNn4XaCsAEQEAAYkCHwQYAQIACQUCUimU TAIbDAAKCRDA3mo1ijncZhBtEACL036ddjc5pFoYIdoUY1vT8SMXJNquewCnL1qu DADzqDZFU5GNlQEy10krSfBwlTb9ahTtE0JFrOdZwUZtoa1Pgfr8nU6KOgrXPHbN jS/9dyc5CwGVVIpOavIm2CsMVDJ9LCF/NT+u/t1k6eGfHhPVl3dUQyDa/lzc1chK UIVQYQkFmr0A/iXP+29lFCaI+IeyU0bSdZhezDwUROn5vEx+fiPZyHDShCb+BxJv /o2LQp9JHenCiSbO+ioRZdxgbWfoKBuXOfmSStqMWXas/gZ5vS3xq72LNtKPRxgp jX3P8Zml1XDqpcBau7eK75VKE0Yd06YxnUIsbcEzInUc3uzW/u0DFpXYkMJb0XIv JyUt5yYPKfV13N8kSkPi5pLxm8yuftXMzfgeFMR7nafY3glTVj/TxElzg6xeZNqf C2ZjIbBtZg9ylHU8u8wwB+dX282crs0R3N9A064C71/cXlBqcjzjlKH2NUIWGxr+ od3TXFIFjszSU3NgMPKrWNhFLLwS81MpbkOe73s6aDhS8RDyNucoxtKXriLR+4Xi u4+pyj5ukYP1JqpB3ZobY/XZgCnJMye+7xeTpIDJ1LPORxM3NNAElyb26lxAK2P+ km+EpI0Zzz6rNSCfg5jYQ474+e/GBgaSG4MlaPoZ+XAfN46u1Xjjv1/AkkA4IA6m 5zP5og=3D=3D =3D3NUt -----END PGP PUBLIC KEY BLOCK----- --------------060506000109010902050000-- --NWLDNKLl1qHL9TRR0T9HptEUjiHWFlQdO Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCgAGBQJVniaMAAoJEMDeajWKOdxm9OwQAIidhWs4ukXm0ZV1jelwrlFj dHWUprgiDrZNYKt1VuYViwv+UNmNsCLfnCXsZJngbWv6Q3oD51I4iERHjpVdIYg7 Fgrea8ptQTQ2xZwWxiOcHTCYcDGTvu6C3fVN2zEbUOLdkVtaTOTtA1nSPcPkbGlN aYICnLYO7+T+saSvZCFyPawMH2zwDhdQ5C7tJcSbyBWnaj+gKzlenNnSNooWsEYX e9DMLIaZZ9J/Z2G32wNaHE+hF9ATqF4lUcDn9xMm1sIU550LmvuchclGPwr/4SUW 046pBpQX3lSxa4IClYqdSC0fJoBj85Vjga8f30LKonGvG0rObQKFwNECtFWypLkr Cw9PVvLbBjXdBGPS7U5vwHR+WsG9Nl87BqogxNzSoQfEOoUdyrr3UOIQjaSWrtmQ MZaMgFXiX60UHQ5FRBj0G81/8WbPTys/Yj36koGyH6N+CTWfUSCvtAKsw1DGtdK2 tXor1hYz+PcWksoxPqIJ+sXCDHmYAKTuhr442TqswuFrURq6MmiHouvmbKyenLPN HrTgddf/iZ63dhKBwQFQCdLnfwabFY9+7ETM0UR3USy+x44wNRcBiG85jTc2u70b 2aqjX26cYvaCzyFQF1ynFCU1Jfm+iB5C36nHXkQoVuHYk6kdjB1mNzWlaB79dBT/ YSpKIVgCwwed9cC1a5Fo =g7D6 -----END PGP SIGNATURE----- --NWLDNKLl1qHL9TRR0T9HptEUjiHWFlQdO-- From nobody Thu Jul 9 01:24:51 2015 Return-Path: X-Original-To: perpass@ietfa.amsl.com Delivered-To: perpass@ietfa.amsl.com Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E80B31ACE3E for ; Thu, 9 Jul 2015 01:24:50 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -4.311 X-Spam-Level: X-Spam-Status: No, score=-4.311 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jmwNAVYHnrDm for ; Thu, 9 Jul 2015 01:24:50 -0700 (PDT) Received: from mercury.scss.tcd.ie (mercury.scss.tcd.ie [134.226.56.6]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D89961ACE37 for ; Thu, 9 Jul 2015 01:24:49 -0700 (PDT) Received: from localhost (localhost [127.0.0.1]) by mercury.scss.tcd.ie (Postfix) with ESMTP id 4B62CBE50; Thu, 9 Jul 2015 09:24:48 +0100 (IST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cs.tcd.ie; s=mail; t=1436430288; bh=Wy0WjKvqrfPWkP8SfD8P63wVLIJzJ10ljL6E42oFfIQ=; h=Date:From:To:CC:Subject:References:In-Reply-To:From; b=gT5o6bwyrDqJ7XnEjriyHEE3KMel7O5m9WEot5tu+pOQbx27iYhXwLTCPWHXOKOSz z41g6EIOilbhMp+4jpSLN5vgZMQMsMV3SBEI4v84ShYcwjrpb7LouqKbBCl0wtiuhN ChSFRthUMPlReh4eDbYCyBjPB1hC79nHpAFpuCcA= X-Virus-Scanned: Debian amavisd-new at scss.tcd.ie Received: from mercury.scss.tcd.ie ([127.0.0.1]) by localhost (mercury.scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JhKTbgM_p3WB; Thu, 9 Jul 2015 09:24:47 +0100 (IST) Received: from [10.87.48.73] (unknown [86.42.23.241]) by mercury.scss.tcd.ie (Postfix) with ESMTPSA id F18A2BE35; Thu, 9 Jul 2015 09:24:46 +0100 (IST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cs.tcd.ie; s=mail; t=1436430287; bh=Wy0WjKvqrfPWkP8SfD8P63wVLIJzJ10ljL6E42oFfIQ=; h=Date:From:To:CC:Subject:References:In-Reply-To:From; b=PUFCzz4U5O914ryYk++eY5q+yVB9QLMrXp48pK+ao1OLWVtsdtj6MJwI60zeUT58O 9LtBLiM/1ThF3E3pqStiFE3C79Q53pECGv8KcFR9ywCK0hvFvC0NYoHv8P2go8Zyjm k/zZNUc39Km243PP29vtmXzIjSoZMisruVSnHIQ4= Message-ID: <559E2FCD.204@cs.tcd.ie> Date: Thu, 09 Jul 2015 09:24:45 +0100 From: Stephen Farrell User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.7.0 MIME-Version: 1.0 To: Stefan Winter , perpass@ietf.org References: <5530EEAB.5050601@cs.tcd.ie> <25042.1429279352@sandelman.ca> <5541D7DD.9010504@restena.lu> <30883.1430401937@sandelman.ca> <559E24E5.7040306@restena.lu> In-Reply-To: <559E24E5.7040306@restena.lu> OpenPGP: id=D66EA7906F0B897FB2E97D582F3C8736805F8DA2; url= Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="RNPSHGE4FGaFT5sFDTrBAvjiFw13eg1LR" Archived-At: Cc: Michael Richardson Subject: Re: [perpass] perpass: what next? X-BeenThere: perpass@ietf.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: "The perpass list is for IETF discussion of pervasive monitoring. " List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 09 Jul 2015 08:24:51 -0000 This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --RNPSHGE4FGaFT5sFDTrBAvjiFw13eg1LR Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable On 09/07/15 08:38, Stefan Winter wrote: > I'm aiming at either Stephen (as he's on the list and so is informed on= > the general topic already; plus he's an eduroam user and sees .1X in > real life every day - now if he is also proud owner of an Android > device, where we've implemented the draft already, he's a role-model AD= > for this draft :-) Heh. I'm currently not an android user (using a jolla for now and quirkily loving it) but it is eduroam season for me now - TCD expire that password and I only need the system for exam mark entry. So I'm a partial match:-) I'm happy to play about with your linux stuff when it's ready since this seems like a fine thing to standardise to me - I have seen enough silly web pages with mad EAP setup instructions that improving on that should be quite doable. Cheers, S. --RNPSHGE4FGaFT5sFDTrBAvjiFw13eg1LR Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQEcBAEBCAAGBQJVni/OAAoJEC88hzaAX42iFFsH/js7Eg6yd625r7b8MO+daAsJ P23CJDhyHh7Ykz/FCUGsfccGbJVjAPZVfYOF15GzGjNo3uvhBwmIKeev/+wnA0lf 3QxG2+QFFY//hmPKc//sdCaDGZrCq6oDC9p+VHnErTWH169Jr5hACfi69HK7AZgi CCO8NywyG77zutPmAuF0u4mLfIp3O+b8MVL9zD2FtVy2Imaaq3GeJnZkG15HRauq +SrrCVzR4papQaiItjtH4L5daRQEcR/UjgM3w2OjOyZlAVDOlg8GbIZ/6QJvtGIR 8Tcfh0Lf/ZNLNYap6JGMYqtwSDznb8yo3V1sdMl05ABSvgJi/XYTocDxTrHO2Zc= =92Kt -----END PGP SIGNATURE----- --RNPSHGE4FGaFT5sFDTrBAvjiFw13eg1LR-- From nobody Thu Jul 9 14:17:39 2015 Return-Path: X-Original-To: perpass@ietfa.amsl.com Delivered-To: perpass@ietfa.amsl.com Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1040E1A036A for ; Thu, 9 Jul 2015 14:17:39 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: 0.8 X-Spam-Level: X-Spam-Status: No, score=0.8 tagged_above=-999 required=5 tests=[BAYES_50=0.8] autolearn=ham Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0YENgVa5kueb for ; Thu, 9 Jul 2015 14:17:37 -0700 (PDT) Received: from mx.nohats.ca (mx.nohats.ca [IPv6:2a03:6000:1004:1::68]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C8E1E1A0354 for ; Thu, 9 Jul 2015 14:17:36 -0700 (PDT) Received: from localhost (localhost [IPv6:::1]) by mx.nohats.ca (Postfix) with ESMTP id 3mS9M231j0zCrK for ; Thu, 9 Jul 2015 23:17:34 +0200 (CEST) X-OPENPGPKEY: Message passed unmodified X-Virus-Scanned: amavisd-new at mx.nohats.ca Received: from mx.nohats.ca ([IPv6:::1]) by localhost (mx.nohats.ca [IPv6:::1]) (amavisd-new, port 10024) with ESMTP id 3duEBLwpVz_O for ; Thu, 9 Jul 2015 23:17:33 +0200 (CEST) Received: from bofh.nohats.ca (206-248-139-105.dsl.teksavvy.com [206.248.139.105]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by mx.nohats.ca (Postfix) with ESMTPS for ; Thu, 9 Jul 2015 23:17:33 +0200 (CEST) Received: from bofh.nohats.ca (bofh.nohats.ca [127.0.0.1]) by bofh.nohats.ca (Postfix) with ESMTP id 9D34A80042 for ; Thu, 9 Jul 2015 17:17:32 -0400 (EDT) Received: from localhost (paul@localhost) by bofh.nohats.ca (8.15.1/8.15.1/Submit) with ESMTP id t69LHWBY009743 for ; Thu, 9 Jul 2015 17:17:32 -0400 X-Authentication-Warning: bofh.nohats.ca: paul owned process doing -bs Date: Thu, 9 Jul 2015 17:17:32 -0400 (EDT) From: Paul Wouters X-X-Sender: paul@bofh.nohats.ca To: perpass Message-ID: User-Agent: Alpine 2.11 (LFD 23 2013-08-11) MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Archived-At: Subject: [perpass] Caspar Bowden has died X-BeenThere: perpass@ietf.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: "The perpass list is for IETF discussion of pervasive monitoring. " List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 09 Jul 2015 21:17:39 -0000 Privacy activist Caspar Bowden has died http://www.theregister.co.uk/2015/07/09/caspar_bowden_dies_cancer_battle/ Caspar was instrumental to achieving privacy and fighting the surveillance state. If you think we are in a bad situation now, you have Caspar to thank that we're not in a far worse position. His life achievements speak for themselves. Personally, when I met him about 15 years ago when he was at FIPR, he was an inspiration to me to keep working on privacy and ubiguous encryption. That the fight for privacy is much bigger than a few crypto geeks coding in their basement. He inspired and motivated me to keep doing my little bits in the grand scheme of things. Caspar will be missed, Paul From nobody Thu Jul 9 23:52:11 2015 Return-Path: X-Original-To: perpass@ietfa.amsl.com Delivered-To: perpass@ietfa.amsl.com Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B01CD1A88B3 for ; Thu, 9 Jul 2015 23:52:10 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: 0.499 X-Spam-Level: X-Spam-Status: No, score=0.499 tagged_above=-999 required=5 tests=[BAYES_05=-0.5, HELO_EQ_DK=1.009, RCVD_IN_DNSWL_NONE=-0.0001, T_RP_MATCHES_RCVD=-0.01] autolearn=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZK8a33fGYkxZ for ; Thu, 9 Jul 2015 23:52:09 -0700 (PDT) Received: from spamfilter2.dtu.dk (spamfilter2.dtu.dk [130.225.73.113]) (using TLSv1.2 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A06771A039D for ; Thu, 9 Jul 2015 23:52:08 -0700 (PDT) Received: from ait-pexedg02.win.dtu.dk (ait-pexedg02.win.dtu.dk [192.38.82.192]) by spamfilter2.dtu.dk with ESMTP id t6A6oovD017436-t6A6oovL017436 (version=TLSv1.0 cipher=AES128-SHA bits=128 verify=CAFAIL); Fri, 10 Jul 2015 08:51:57 +0200 Received: from ait-pex02mbx05.win.dtu.dk (192.38.82.185) by ait-pexedg02.win.dtu.dk (192.38.82.192) with Microsoft SMTP Server (TLS) id 14.3.235.1; Fri, 10 Jul 2015 08:51:45 +0200 Received: from ait-pex01mbx01.win.dtu.dk ([169.254.1.107]) by ait-pex02mbx05.win.dtu.dk ([169.254.5.121]) with mapi id 14.03.0235.001; Fri, 10 Jul 2015 08:51:52 +0200 From: Hugo Maxwell Connery To: Paul Wouters , perpass Thread-Topic: [perpass] Caspar Bowden has died Thread-Index: AQHQuoy13Oq4UM+xGE2CMdIWWq1MQp3UQ0LI Date: Fri, 10 Jul 2015 06:51:51 +0000 Message-ID: <6CB05D82CE245B4083BBF3B97E2ED470C2A029@ait-pex01mbx01.win.dtu.dk> References: In-Reply-To: Accept-Language: en-AU, da-DK, en-US Content-Language: en-AU X-MS-Has-Attach: X-MS-TNEF-Correlator: x-originating-ip: [130.225.73.250] Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 Archived-At: Subject: Re: [perpass] Caspar Bowden has died X-BeenThere: perpass@ietf.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: "The perpass list is for IETF discussion of pervasive monitoring. " List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 10 Jul 2015 06:52:10 -0000 Thank you Paul for this sad information. May Caspar continue to serve as an inspiration for many years to come. As an indication of the length and depth of his efforts here are 4 presenta= tions made to the Chaos Computer Club Congress over the years, going back to 2006 and most recently just 6 months ago: http://media.ccc.de/search/?q=3Dbowden Regards, Hugo ________________________________________ From: perpass [perpass-bounces@ietf.org] on behalf of Paul Wouters [paul@cy= pherpunks.ca] Sent: Thursday, 9 July 2015 23:17 To: perpass Subject: [perpass] Caspar Bowden has died Privacy activist Caspar Bowden has died http://www.theregister.co.uk/2015/07/09/caspar_bowden_dies_cancer_battle/ Caspar was instrumental to achieving privacy and fighting the surveillance state. If you think we are in a bad situation now, you have Caspar to thank that we're not in a far worse position. His life achievements speak for themselves. Personally, when I met him about 15 years ago when he was at FIPR, he was an inspiration to me to keep working on privacy and ubiguous encryption. That the fight for privacy is much bigger than a few crypto geeks coding in their basement. He inspired and motivated me to keep doing my little bits in the grand scheme of things. Caspar will be missed, Paul _______________________________________________ perpass mailing list perpass@ietf.org https://www.ietf.org/mailman/listinfo/perpass From nobody Tue Jul 14 08:56:09 2015 Return-Path: X-Original-To: perpass@ietfa.amsl.com Delivered-To: perpass@ietfa.amsl.com Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 54B381A1A8B for ; Tue, 14 Jul 2015 08:56:08 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.999 X-Spam-Level: X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_PASS=-0.001] autolearn=ham Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pUYFwYgdSJFk for ; Tue, 14 Jul 2015 08:56:06 -0700 (PDT) Received: from mail-wi0-x22c.google.com (mail-wi0-x22c.google.com [IPv6:2a00:1450:400c:c05::22c]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6E3D31A1A58 for ; Tue, 14 Jul 2015 08:56:06 -0700 (PDT) Received: by wiga1 with SMTP id a1so103715557wig.0 for ; Tue, 14 Jul 2015 08:56:05 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=zoz7aUwoZLgegHjzgiPEHdh2Ej4SRgcopePfE5FpMtY=; b=jQtIlRgXXATDckuwSA+beDTkNk+CvY88hpQd3eCpyAJ1e9kL7sFdo77VmEhgl28jwk rthl00AWSnbWSOoBkUdxCAXTa/jBxQ+Da3OhAD7zfsqZ1sDPhF8PewskeGl9HYIV0BqK a7eHX79Sgx1fUdxfAcACJvDTZ2STgSAwk7t1ZiyhXZThaAV8bRYsTqZ81XfNWB1L18rK HfSLgTkIXBftJ0hL7D6mbh1OuHYV3WU86YMoHKpZqPwO/F3sDEZlTT+5QdQ2AkjJIcts opG0LSX5eHj5u+q+g9KRY0wmwx8BZpRQHnGraBie3kvsgWfnr18HvpeEdyTe/UiMkfY9 n2Cg== MIME-Version: 1.0 X-Received: by 10.180.95.67 with SMTP id di3mr6676382wib.78.1436889365244; Tue, 14 Jul 2015 08:56:05 -0700 (PDT) Received: by 10.28.31.194 with HTTP; Tue, 14 Jul 2015 08:56:05 -0700 (PDT) In-Reply-To: <559E2FCD.204@cs.tcd.ie> References: <5530EEAB.5050601@cs.tcd.ie> <25042.1429279352@sandelman.ca> <5541D7DD.9010504@restena.lu> <30883.1430401937@sandelman.ca> <559E24E5.7040306@restena.lu> <559E2FCD.204@cs.tcd.ie> Date: Tue, 14 Jul 2015 11:56:05 -0400 Message-ID: From: Kathleen Moriarty To: Stephen Farrell Content-Type: multipart/alternative; boundary=f46d044287e23270ce051ad7e07c Archived-At: Cc: Stefan Winter , "perpass@ietf.org" , Michael Richardson Subject: Re: [perpass] perpass: what next? X-BeenThere: perpass@ietf.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: "The perpass list is for IETF discussion of pervasive monitoring. " List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 14 Jul 2015 15:56:08 -0000 --f46d044287e23270ce051ad7e07c Content-Type: text/plain; charset=UTF-8 Stefan, Could you send me a title for your talk on this draft and let me know how much time you'd like on the SAAG agenda? We'll need slides soon too, preferably in PDF format. It would be good to have the mix of security and OPS. Thanks! On Thu, Jul 9, 2015 at 4:24 AM, Stephen Farrell wrote: > > > On 09/07/15 08:38, Stefan Winter wrote: > > I'm aiming at either Stephen (as he's on the list and so is informed on > > the general topic already; plus he's an eduroam user and sees .1X in > > real life every day - now if he is also proud owner of an Android > > device, where we've implemented the draft already, he's a role-model AD > > for this draft :-) > > Heh. I'm currently not an android user (using a jolla for > now and quirkily loving it) but it is eduroam season for me > now - TCD expire that password and I only need the system > for exam mark entry. So I'm a partial match:-) > > I'm happy to play about with your linux stuff when it's > ready since this seems like a fine thing to standardise to > me - I have seen enough silly web pages with mad EAP setup > instructions that improving on that should be quite doable. > > Cheers, > S. > > > _______________________________________________ > perpass mailing list > perpass@ietf.org > https://www.ietf.org/mailman/listinfo/perpass > > -- Best regards, Kathleen --f46d044287e23270ce051ad7e07c Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable
Stefan,

Could you send me a title for y= our talk on this draft and let me know how much time you'd like on the = SAAG agenda?=C2=A0 We'll need slides soon too, preferably in PDF format= .=C2=A0 It would be good to have the mix of security and OPS.
Thanks!

On Thu, Jul 9, 2015 at 4:24 AM, Stephen Farrell <ste= phen.farrell@cs.tcd.ie> wrote:


On 09/07/15 08:38, Stefan Winter wrote:
> I'm aiming at either Stephen (as he's on the list and so is in= formed on
> the general topic already; plus he's an eduroam user and sees .1X = in
> real life every day - now if he is also proud owner of an Android
> device, where we've implemented the draft already, he's a role= -model AD
> for this draft :-)

Heh. I'm currently not an android user (using a jolla for
now and quirkily loving it) but it is eduroam season for me
now - TCD expire that password and I only need the system
for exam mark entry. So I'm a partial match:-)

I'm happy to play about with your linux stuff when it's
ready since this seems like a fine thing to standardise to
me - I have seen enough silly web pages with mad EAP setup
instructions that improving on that should be quite doable.

Cheers,
S.


_______________________________________________
perpass mailing list
perpass@ietf.org
https://www.ietf.org/mailman/listinfo/perpass




--

Best regards,
Ka= thleen
--f46d044287e23270ce051ad7e07c-- From nobody Sun Jul 26 03:40:04 2015 Return-Path: X-Original-To: perpass@ietfa.amsl.com Delivered-To: perpass@ietfa.amsl.com Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2A49A1B2AB8 for ; Sun, 26 Jul 2015 03:40:03 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -4.311 X-Spam-Level: X-Spam-Status: No, score=-4.311 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GL7pGOuOU3vV for ; Sun, 26 Jul 2015 03:40:01 -0700 (PDT) Received: from mercury.scss.tcd.ie (mercury.scss.tcd.ie [134.226.56.6]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 89F631B2AB5 for ; Sun, 26 Jul 2015 03:40:01 -0700 (PDT) Received: from localhost (localhost [127.0.0.1]) by mercury.scss.tcd.ie (Postfix) with ESMTP id 57CBABE8A for ; Sun, 26 Jul 2015 11:40:00 +0100 (IST) X-Virus-Scanned: Debian amavisd-new at scss.tcd.ie Received: from mercury.scss.tcd.ie ([127.0.0.1]) by localhost (mercury.scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lz-9YCf_vYka for ; Sun, 26 Jul 2015 11:39:59 +0100 (IST) Received: from [10.87.48.73] (unknown [86.46.19.103]) by mercury.scss.tcd.ie (Postfix) with ESMTPSA id 0ABDBBE55 for ; Sun, 26 Jul 2015 11:39:59 +0100 (IST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cs.tcd.ie; s=mail; t=1437907199; bh=68uySBUBb+zbQ2k640dulD8WJdaQFtKRJ066ON4tG2c=; h=Date:From:To:Subject:References:In-Reply-To:From; b=pNd5ixPFIotj5AYkHM8efVT0NATvfJCqIFtK5y/wrRXDH/KO8ZdZ0mF/z8ZAL/9zd 9iIr8l7vB/aIPwJ5utxTg62mF735XEcuygaeKVceSGYCZGXuU2QQKuhqC5z8dnAZLN NoBDpKc4ZQAbkpvsN84qRiKOjkQUfR1XUslMTne4= Message-ID: <55B4B8FE.40800@cs.tcd.ie> Date: Sun, 26 Jul 2015 11:39:58 +0100 From: Stephen Farrell User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.8.0 MIME-Version: 1.0 To: perpass References: <20150724055535.15765.33361.idtracker@ietfa.amsl.com> In-Reply-To: <20150724055535.15765.33361.idtracker@ietfa.amsl.com> OpenPGP: id=D66EA7906F0B897FB2E97D582F3C8736805F8DA2; url= X-Forwarded-Message-Id: <20150724055535.15765.33361.idtracker@ietfa.amsl.com> Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit Archived-At: Subject: [perpass] Fwd: [mpls] I-D Action: draft-ietf-mpls-opportunistic-encrypt-00.txt X-BeenThere: perpass@ietf.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: "The perpass list is for IETF discussion of pervasive monitoring. " List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 26 Jul 2015 10:40:03 -0000 Hiya, In closing-the-loop mode - the MPLS WG have adopted our draft on how to do OS for MPLS. They're considering this as an experiment, so if we can get some implementer experience with (even s/w) implementations that'd be great and would help the WG evaluate this. If you're able to help with anything like that, please do get in touch with Adrian or I, Cheers, S. -------- Forwarded Message -------- Subject: [mpls] I-D Action: draft-ietf-mpls-opportunistic-encrypt-00.txt Date: Thu, 23 Jul 2015 22:55:35 -0700 From: internet-drafts@ietf.org To: i-d-announce@ietf.org CC: mpls@ietf.org A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Multiprotocol Label Switching Working Group of the IETF. Title : Opportunistic Security in MPLS Networks Authors : Adrian Farrel Stephen Farrell Filename : draft-ietf-mpls-opportunistic-encrypt-00.txt Pages : 34 Date : 2015-07-23 Abstract: This document describes a way to apply opportunistic security between adjacent nodes on an MPLS Label Switched Path (LSP) or between end points of an LSP. It explains how keys may be agreed to enable encryption, and how key identifiers are exchanged in encrypted MPLS packets. Finally, this document describes the applicability of this approach to opportunistic security in MPLS networks with an indication of the level of improved security as well as the continued vulnerabilities. This document does not describe security for MPLS control plane protocols. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-mpls-opportunistic-encrypt/ There's also a htmlized version available at: https://tools.ietf.org/html/draft-ietf-mpls-opportunistic-encrypt-00 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ _______________________________________________ mpls mailing list mpls@ietf.org https://www.ietf.org/mailman/listinfo/mpls