nanog mailing list archives
Re: Wifi Security
From: "Steven M. Bellovin" <smb () cs columbia edu>
Date: Mon, 21 Nov 2005 17:13:46 -0500
In message <Pine.LNX.4.44.0511212148070.25860-100000 () server2 tcw.telecomplete.n et>, "Stephen J. Wilcox" writes:
we relay security information and hope the user clicks 'yes' when they are told the host key has changed you dont have to break the code if the endpoints trust sessions with you and share their encryption keys
Put another way, security is as much a matter of proper usage as proper algorithms and proper code. See http://www.fas.org/irp/eprint/heath.pdf for a story of how the NSA and the US Navy got that wrong. For that matter, read Leo Marks' wonderful memoir "Between Silk and Cyanide". He's telling a story, not trying to teach, but the message is there nonetheless. As technologists, of course, it's incumbent on us to design security systems that help the user understand consequences of actions, and to help avoid dangerous situations. --Steven M. Bellovin, http://www.cs.columbia.edu/~smb
Current thread:
- Re: Wifi Security, (continued)
- Re: Wifi Security Christopher L. Morrow (Nov 21)
- Re: Wifi Security Ross Hosman (Nov 21)
- Re: Wifi Security Stephen J. Wilcox (Nov 21)
- Re: Wifi Security Joel Jaeggli (Nov 21)
- Re: Wifi Security Niels Bakker (Nov 21)
- Re: Wifi Security Randy Bush (Nov 21)
- Re: Wifi Security Jim Popovitch (Nov 21)
- Re: Wifi Security Joel Jaeggli (Nov 21)
- Re: Wifi Security william(at)elan.net (Nov 21)
- Re: Wifi Security Stephen J. Wilcox (Nov 21)
- Re: Wifi Security Steven M. Bellovin (Nov 21)
- Re: Wifi Security Joel Jaeggli (Nov 21)
- Re: Wifi Security Stephen J. Wilcox (Nov 21)
- Re: Wifi Security Joel Jaeggli (Nov 21)
- Re: Wifi Security Steven M. Bellovin (Nov 21)
- Re: Wifi Security Jeffrey I. Schiller (Nov 21)
- Re: Wifi Security Blaine Christian (Nov 21)
- BGP Security and PKI Hierarchies (was: Re: Wifi Security) Jeffrey I. Schiller (Nov 21)
- Re: Wifi Security Gadi Evron (Nov 21)
- Re: Wifi Security Gadi Evron (Nov 21)