On Jul 4, 2014, at 11:04 PM, Paul Vixie <[email protected]> wrote: > by implication, then, the remainder of possible problem statement > material is "hide question from on-wire surveillance", there being no > way to hide the questioner or the time.
This is only true if you leave out "from whom." If in order to know who made a query, I have to be snooping in many places, much closer to the source of the query, that's better for avoiding pervasive monitoring than if I can very easily figure out who made the query by snooping at a relatively constrained set of places. As an example using reductio ad absurdum, you can always know everything about any given network activity if you have supervisor access on the node on which the activity is originating, but of course we still care about securing the communication on the wire in many cases. _______________________________________________ Int-area mailing list [email protected] https://www.ietf.org/mailman/listinfo/int-area
