Report from the Strengthening the Internet (STRINT) Workshop
RFC 7687
Document | Type |
RFC - Informational
(December 2015; No errata)
Was draft-iab-strint-report (iab)
|
|
---|---|---|---|
Authors | Stephen Farrell , Rigo Wenning , Bert Bos , Marc Blanchet , Hannes Tschofenig | ||
Last updated | 2018-12-20 | ||
Stream | IAB | ||
Formats | plain text html pdf htmlized bibtex | ||
Stream | IAB state | Published RFC | |
Consensus Boilerplate | Yes | ||
RFC Editor Note | (None) |
Internet Architecture Board (IAB) S. Farrell Request for Comments: 7687 Trinity College, Dublin Category: Informational R. Wenning ISSN: 2070-1721 B. Bos W3C M. Blanchet Viagenie H. Tschofenig ARM Ltd. December 2015 Report from the Strengthening the Internet (STRINT) Workshop Abstract The Strengthening the Internet (STRINT) workshop assembled one hundred participants in London for two days in early 2014 to discuss how the technical community, and in particular the IETF and the W3C, should react to Pervasive Monitoring and more generally how to strengthen the Internet in the face of such attacks. The discussions covered issues of terminology, the role of user interfaces, classes of mitigation, some specific use cases, transition strategies (including opportunistic encryption), and more. The workshop ended with a few high-level recommendations, that it is believed could be implemented and could help strengthen the Internet. This is the report of that workshop. Note that this document is a report on the proceedings of the workshop. The views and positions documented in this report are those of the workshop participants and do not necessarily reflect IAB views and positions. Status of This Memo This document is not an Internet Standards Track specification; it is published for informational purposes. This document is a product of the Internet Architecture Board (IAB) and represents information that the IAB has deemed valuable to provide for permanent record. Documents approved for publication by the IAB are not a candidate for any level of Internet Standard; see Section 2 of RFC 5741. Information about the current status of this document, any errata, and how to provide feedback on it may be obtained at http://www.rfc-editor.org/info/rfc7687. Farrell, et al. Informational [Page 1] RFC 7687 STRINT Workshop Report December 2015 Copyright Notice Copyright (c) 2015 IETF Trust and the persons identified as the document authors. All rights reserved. This document is subject to BCP 78 and the IETF Trust's Legal Provisions Relating to IETF Documents (http://trustee.ietf.org/license-info) in effect on the date of publication of this document. Please review these documents carefully, as they describe your rights and restrictions with respect to this document. Table of Contents 1. Context . . . . . . . . . . . . . . . . . . . . . . . . . . . 2 2. Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . 3 3. Workshop Goals . . . . . . . . . . . . . . . . . . . . . . . 4 4. Workshop Structure . . . . . . . . . . . . . . . . . . . . . 5 5. Topics . . . . . . . . . . . . . . . . . . . . . . . . . . . 6 6. After the Workshop . . . . . . . . . . . . . . . . . . . . . 20 7. Security Considerations . . . . . . . . . . . . . . . . . . . 21 8. Informative References . . . . . . . . . . . . . . . . . . . 21 Appendix A. Logistics . . . . . . . . . . . . . . . . . . . . . 25 Appendix B. Agenda . . . . . . . . . . . . . . . . . . . . . . . 26 Appendix C. Workshop Chairs and Program Committee . . . . . . . 29 Appendix D. Participants . . . . . . . . . . . . . . . . . . . . 29 Authors' Addresses . . . . . . . . . . . . . . . . . . . . . . . 32 1. Context The technical plenary session at IETF 88 [vancouverplenary] concluded that Pervasive Monitoring (PM) represents an attack on the Internet, and the IETF has begun to carry out the more obvious actions required to try to handle this attack. However, there are much more complex questions arising that need further consideration before any additional concrete plans can be made. The W3C (<https://www.w3.org>) and IAB (<https://www.iab.org>) therefore decided to host a workshop on the topic of "Strengthening the Internet Against Pervasive Monitoring" [STRINT] before IETF 89 in London in March 2014. The FP7-funded STREWS project (<https://www.strews.eu/>) organised the STRINT workshop on behalf of the IAB and W3C. The main workshop goal was to discuss what can be done, especially by the two standards organisations IETF and W3C, against PM, both for existing Internet protocols (HTTP/1, SMTP, etc.) and for new ones (WebRTC, HTTP/2, etc.). Farrell, et al. Informational [Page 2]Show full document text