On 10/18/2013 12:52 AM, Scott Brim wrote:
On Oct 17, 2013 2:45 AM, "SM" <[email protected] <mailto:[email protected]>>
wrote:
> If I am not mistaken IP VPN has been sold over the years as a secure
link.
"IP VPN" includes not only MPLS VPN but also e2e IPsec. Also the meaning
of "secure" has been diluted down by marketing.
The words "secure" and "security" have long lost any technical meaning.
Today they are useful only as umbrella terms as referencing an area of
effort, not an actual capability. So "working on security" rather than
"producing security".
Unfortunately, 'privacy' also lacks any serious technical meaning, since
even the IAB was not willing to define it in their RFC. Hence the term
means whatever the speaker wants it to mean, which might not be what the
listener understands it to mean.
So if someone wants to assert the presence or need for some sort of
security-related functionality, they need to use terminology that is
universally understood to be precise.
For this thread, I suspect what is mean is IP-layer Confidentiality,
which is e2e only if the application layer doesn't have any hops, where
the content will be in the clear during the relaying. Like with email
MTAs, or Web caches...
d/
--
Dave Crocker
Brandenburg InternetWorking
bbiw.net
_______________________________________________
perpass mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/perpass
