Report from the Strengthening the Internet (STRINT) Workshop
RFC 7687
| Document | Type |
RFC - Informational
(December 2015; No errata)
Was draft-iab-strint-report (iab IETF)
|
|
|---|---|---|---|
| Last updated | 2018-12-20 | ||
| Stream | IAB | ||
| Formats | plain text html pdf htmlized bibtex | ||
| Stream | IAB state | Published RFC | |
| Consensus Boilerplate | Yes | ||
| RFC Editor Note | (None) | ||
Internet Architecture Board (IAB) S. Farrell
Request for Comments: 7687 Trinity College, Dublin
Category: Informational R. Wenning
ISSN: 2070-1721 B. Bos
W3C
M. Blanchet
Viagenie
H. Tschofenig
ARM Ltd.
December 2015
Report from the Strengthening the Internet (STRINT) Workshop
Abstract
The Strengthening the Internet (STRINT) workshop assembled one
hundred participants in London for two days in early 2014 to discuss
how the technical community, and in particular the IETF and the W3C,
should react to Pervasive Monitoring and more generally how to
strengthen the Internet in the face of such attacks. The discussions
covered issues of terminology, the role of user interfaces, classes
of mitigation, some specific use cases, transition strategies
(including opportunistic encryption), and more. The workshop ended
with a few high-level recommendations, that it is believed could be
implemented and could help strengthen the Internet. This is the
report of that workshop.
Note that this document is a report on the proceedings of the
workshop. The views and positions documented in this report are
those of the workshop participants and do not necessarily reflect IAB
views and positions.
Status of This Memo
This document is not an Internet Standards Track specification; it is
published for informational purposes.
This document is a product of the Internet Architecture Board (IAB)
and represents information that the IAB has deemed valuable to
provide for permanent record. Documents approved for publication by
the IAB are not a candidate for any level of Internet Standard; see
Section 2 of RFC 5741.
Information about the current status of this document, any errata,
and how to provide feedback on it may be obtained at
http://www.rfc-editor.org/info/rfc7687.
Farrell, et al. Informational [Page 1]
RFC 7687 STRINT Workshop Report December 2015
Copyright Notice
Copyright (c) 2015 IETF Trust and the persons identified as the
document authors. All rights reserved.
This document is subject to BCP 78 and the IETF Trust's Legal
Provisions Relating to IETF Documents
(http://trustee.ietf.org/license-info) in effect on the date of
publication of this document. Please review these documents
carefully, as they describe your rights and restrictions with respect
to this document.
Table of Contents
1. Context . . . . . . . . . . . . . . . . . . . . . . . . . . . 2
2. Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . 3
3. Workshop Goals . . . . . . . . . . . . . . . . . . . . . . . 4
4. Workshop Structure . . . . . . . . . . . . . . . . . . . . . 5
5. Topics . . . . . . . . . . . . . . . . . . . . . . . . . . . 6
6. After the Workshop . . . . . . . . . . . . . . . . . . . . . 20
7. Security Considerations . . . . . . . . . . . . . . . . . . . 21
8. Informative References . . . . . . . . . . . . . . . . . . . 21
Appendix A. Logistics . . . . . . . . . . . . . . . . . . . . . 25
Appendix B. Agenda . . . . . . . . . . . . . . . . . . . . . . . 26
Appendix C. Workshop Chairs and Program Committee . . . . . . . 29
Appendix D. Participants . . . . . . . . . . . . . . . . . . . . 29
Authors' Addresses . . . . . . . . . . . . . . . . . . . . . . . 32
1. Context
The technical plenary session at IETF 88 [vancouverplenary] concluded
that Pervasive Monitoring (PM) represents an attack on the Internet,
and the IETF has begun to carry out the more obvious actions required
to try to handle this attack. However, there are much more complex
questions arising that need further consideration before any
additional concrete plans can be made.
The W3C (<https://www.w3.org>) and IAB (<https://www.iab.org>)
therefore decided to host a workshop on the topic of "Strengthening
the Internet Against Pervasive Monitoring" [STRINT] before IETF 89 in
London in March 2014. The FP7-funded STREWS project
(<https://www.strews.eu/>) organised the STRINT workshop on behalf of
the IAB and W3C.
The main workshop goal was to discuss what can be done, especially by
the two standards organisations IETF and W3C, against PM, both for
existing Internet protocols (HTTP/1, SMTP, etc.) and for new ones
(WebRTC, HTTP/2, etc.).
Farrell, et al. Informational [Page 2]
Show full document text