|
Hi
looking at your comments, it is true that standards
without real implementation is only a document. However there is always in
engineering the first mile problem and the last mile problem. Per say we need
standards to go beyond. I would say that the early pioneers of IPsec did
something and no one should say it is not countable
Ahmed Adas
----- Original Message -----
Sent: Saturday, March 16, 2002 4:25
AM
Subject: Re: 10 years and no ubiquitous
security
> Today, IPSec has insignificant deployment, and the WG
goeth on forever.
>
> ...
>
> Should I remind folks
that at that same San Diego IETF, JI and Phil and
> Steve Deering and
others of us had a lunch BOF on Mobile-IP?
You're not the only one who
was "around back then". I think most of us
remember the world slightly
differently from you. Whatever.
People still can't get basic DNS
deployment right, and that's quite a
bit older than IPsec or Mobile-IP. (I
deployed my first nameserver 14
years ago).
Unfortunately, standards
are irrelevant without ubiquitous deployment of
software that is
(reasonably) easy to use; it hasn't been a
inter-geek-net for a long
time.
Look at SSH; it *still* isn't completely standardized, but it is
much
easier to use (and more important, deploy) than IPsec. On the
other
hand, there's pkix; heavily documented and standardised, but
hideously
difficult to deploy and use.
Of course, IPsec doesn't
solve many problems, either, but that's an
entirely separate debate.
<ducking>
--
Harald Koch <chk@pobox.com>
"It takes a child to
raze a village."
-Michael T. Fry
|