Private Internet
The article highlights the inadequacies of current internet protocols regarding security and privacy, advocating for a new protocol with features like non-sensitive addresses and DoS resistance, while suggesting onion routing.
Read original article
The article discusses the inadequacies of existing internet protocols, particularly in terms of security and privacy. Many protocols were developed in an era of implicit trust, which is no longer applicable due to the prevalence of malicious actors online. While IPv4 and IPv6 are generally considered well-designed, they still exhibit fundamental flaws, particularly concerning privacy and susceptibility to Denial of Service (DoS) attacks. The author emphasizes the need for a new network protocol that addresses these issues, proposing features such as non-sensitive client addresses, DoS resistance, and the prevention of outgoing and incoming connection address leaks. The article also suggests potential implementations, including onion routing and fine-grained routing, while acknowledging the challenges associated with these methods. The author concludes that while encryption is desirable, it may be better managed at a higher layer due to the slow evolution of fundamental protocols. Overall, the piece serves as a call to rethink and redesign internet protocols to enhance security and privacy in the current digital landscape.
- Existing internet protocols were designed without modern security considerations.
- IPv4 and IPv6 have fundamental flaws related to privacy and DoS attacks.
- Proposed features for a new protocol include non-sensitive client addresses and revocable connections.
- Potential implementations discussed include onion routing and fine-grained routing.
- Encryption is recommended at higher layers due to the slow evolution of core protocols.
Related
Protocols, Not Platforms: A Technological Approach to Free Speech
Internet platforms struggle with managing free speech, privacy, and disinformation. Criticism includes hate speech, censorship, foreign interference, and propaganda. Advocates propose using open protocols to empower users, foster competition, innovation, and privacy, and create new business models.
The IT Industry is a disaster (2018)
The IT industry faces challenges in IoT and software reliability. Concerns include device trustworthiness, complex systems, and security flaws. Criticisms target coding practices, standards organizations, and propose accountability and skill recognition.
Six Dumbest Ideas in Computer Security
In computer security, common misconceptions like "Default Permit," "Enumerating Badness," and "Penetrate and Patch" hinder effective protection. Emphasizing a "Default Deny" policy and proactive security design is crucial.
Just Disconnect the Internet
The article argues against the belief that computer systems should be completely disconnected from the internet for security, highlighting the impracticality and complexities of modern business interconnectivity and maintenance needs.
Computer Security Is a Political Struggle
The digital landscape is increasingly controlled by a few, leading to political struggles over technology. Cybersecurity issues reflect deeper political failures, necessitating a collective response to reclaim digital rights and security.
3 commentsComplete anonymity on L3 would result in all tracking being on L7 instead. Right now at least most people can use Google/YouTube/most other websites without creating an account. With complete anonymity, it's all but certain that all of these would need to be gated by account creation to prevent abuse.
This would actively increase the ability for websites to track you, or else they'd need to be able to somehow handle abuse with exactly 0 information about where any given connection is coming from.
I don't think these proposals were seriously thought out by the OP.
Related
Protocols, Not Platforms: A Technological Approach to Free Speech
Internet platforms struggle with managing free speech, privacy, and disinformation. Criticism includes hate speech, censorship, foreign interference, and propaganda. Advocates propose using open protocols to empower users, foster competition, innovation, and privacy, and create new business models.
The IT Industry is a disaster (2018)
The IT industry faces challenges in IoT and software reliability. Concerns include device trustworthiness, complex systems, and security flaws. Criticisms target coding practices, standards organizations, and propose accountability and skill recognition.
Six Dumbest Ideas in Computer Security
In computer security, common misconceptions like "Default Permit," "Enumerating Badness," and "Penetrate and Patch" hinder effective protection. Emphasizing a "Default Deny" policy and proactive security design is crucial.
Just Disconnect the Internet
The article argues against the belief that computer systems should be completely disconnected from the internet for security, highlighting the impracticality and complexities of modern business interconnectivity and maintenance needs.
Computer Security Is a Political Struggle
The digital landscape is increasingly controlled by a few, leading to political struggles over technology. Cybersecurity issues reflect deeper political failures, necessitating a collective response to reclaim digital rights and security.