nanog mailing list archives

Re: PGP/SSL/TLS really as secure as one thinks?

From: Joe Abley <jabley () hopcount ca>
Date: Fri, 7 Jun 2013 11:25:36 -0400


On 2013-06-07, at 11:14, Jeroen Massar <jeroen () massar ch> wrote:

On 2013-06-07 06:50, Dan White wrote:
[..]

A nice 'it is Friday' kind of thought....

OpenPGP and other end-to-end protocols protect against all nefarious
actors, including state entities.


If you can't trust the entities where your data is flowing through
because you are unsure if and where they are tapping you, why do you
trust any of the crypto out there that is allowed to exist? :)


Defence in depth. PGP-encrypt your transport stream and send it over TLS with client- and server-side certificate 
validation with a restricted CA list on each endpoint. Using IPSec. Through tor. With the plain-text littered with code 
words that are meaningless except to your intended recipient, taken from a pre-shared (in-person) code book that 
changes every day.

Then your facebook sessions will be secure.


Joe

Current thread:

Re: PRISM: NSA/FBI Internet data mining project, (continued)
- - - Re: PRISM: NSA/FBI Internet data mining project Phil Fagan (Jun 21)
    - Re: PRISM: NSA/FBI Internet data mining project William Herrin (Jun 21)
    - Re: PRISM: NSA/FBI Internet data mining project Phil Fagan (Jun 21)
    - Re: PRISM: NSA/FBI Internet data mining project Warren Bailey (Jun 21)
    - Re: PRISM: NSA/FBI Internet data mining project Phil Fagan (Jun 21)
    - Re: PRISM: NSA/FBI Internet data mining project Warren Bailey (Jun 21)
    - Re: PRISM: NSA/FBI Internet data mining project Owen DeLong (Jun 21)
    - PGP/SSL/TLS really as secure as one thinks? Jeroen Massar (Jun 07)
    - Re: PGP/SSL/TLS really as secure as one thinks? Leo Bicknell (Jun 07)
    - Re: PGP/SSL/TLS really as secure as one thinks? David Walker (Jun 07)
    - Re: PGP/SSL/TLS really as secure as one thinks? Joe Abley (Jun 10)
    - Re: PGP/SSL/TLS really as secure as one thinks? Matthew Petach (Jun 10)
    - Re: PRISM: NSA/FBI Internet data mining project Måns Nilsson (Jun 06)
    - Re: PRISM: NSA/FBI Internet data mining project Jimmy Hess (Jun 08)
    - Re: PRISM: NSA/FBI Internet data mining project Matthew Petach (Jun 08)
    - Re: PRISM: NSA/FBI Internet data mining project Jay Ashworth (Jun 08)
    - Re: PRISM: NSA/FBI Internet data mining project Tom Taylor (Jun 09)
    - Re: PRISM: NSA/FBI Internet data mining project Mike Jones (Jun 08)
    - Re: PRISM: NSA/FBI Internet data mining project Warren Bailey (Jun 08)
    - Re: PRISM: NSA/FBI Internet data mining project Eugen Leitl (Jun 07)
    - RE: PRISM: NSA/FBI Internet data mining project Alex Rubenstein (Jun 07)

(Thread continues...)