Re: [homenet] HNCP security?

Sun, 14 Sep 2014 07:49:12 -0700 

On 09/14/2014 02:04 AM, Markus Stenberg wrote:

On 13.9.2014, at 23.30, Brian E Carpenter <brian.e.carpen...@gmail.com> wrote:


All true (as are the subsequent comments by Acee and Michael).
But the fact remains that we can't assume L2 is secure in the
normal case, which is a much worse situation than we traditionally
assumed for wired networks.

Ok, so your stance is that we can’t assume secure L2, but neither can we do 
anything useful without fully encrypted traffic.

As fully encrypted traffic is not an option (computational overhead, 
not-so-littleconf on routers and probably impossible on current hosts), what, 
exactly, do you propose then? Not deploy routed home networks at all until we 
can assume L2 security?





I think you're throwing up your hands way too prematurely. I don't know 
what "fully encrypted traffic"
means in this context. If you're talking about the router-router 
signaling traffic itself (eg, ospf), symmetric
crypto (eg, aes+sha256 -- note all you might need is just integrity too) 
adds trivial process load these
days. Public key operations are similarly a drop in the bucket these 
days when used sparingly (eg, for
enrollment, session establishment, etc). Modern router boxes are not 
microvax 1's  with two fat ethernet

ports, after all.


Also: I think that HNCP needs to take care of HNCP and not worry about 
boiling the homenet security

ocean. Even if we end up with layers of crypto via L2. That's ok.


Last, without actually knowing what threats/attacks we're trying to 
defend against, it's *way* to early
to say how much configuration might be required.  Remember: WPA2 
requires the input of exactly one
passphrase per SSID. That is manifestly not an insurmountable burden. 
And that's just for starters: we
may be able to get away with leap of faith kinds of enrollment depending 
on the threats which may require

minimal user intervention (eg: "should I do this, Y|n").


So the real job here is to consider what the threats are first and 
foremost before making blanket

statements about l2, l3, processor speed, etc, etc.

Mike

_______________________________________________
homenet mailing list
homenet@ietf.org
https://www.ietf.org/mailman/listinfo/homenet






















					Reply via email to