GUADEC: Danny O'Brien on privacy, encryption, and the desktop
Posted Aug 4, 2010 16:40 UTC (Wed) by farnz
In reply to: GUADEC: Danny O'Brien on privacy, encryption, and the desktop
Parent article: GUADEC: Danny O'Brien on privacy, encryption, and the desktop
Thing is that at a deeper level, we have IPSec. It has issues in a NATted world that need fixing (whether by enhancing NAT traversal of IPSec, or by going to IPv6 and removing NAT while we're at it), but it should in theory let all protocols that don't care use encryption by default, whether it's part of the protocol or not. Authentication is harder to solve (due to the inherent need for some sort of out-of-band proof of identity).
And once you've solved the encryption problem once (by having all data that goes over IP encrypted in IPSec, even if it's then encrypted again inside the protocol for authentication purposes, ala HTTPS), there's no need for protocol designers to care.
to post comments)