[IP] more on Verizon "Broadband Router" the perfect Trojan Horse

To: ip@xxxxxxxxxxxxxx
Subject: [IP] more on Verizon "Broadband Router" the perfect Trojan Horse
From: David Farber <dave@xxxxxxxxxx>
Date: Fri, 30 Jun 2006 08:42:46 -0400
List-help: <http://v2.listbox.com/doc/help_sub?list_name=ip@v2.listbox.com>
List-id: <ip@xxxxxxxxxxxxxx>
List-software: listbox.com v2.0
List-subscribe: <mailto:subscribe-ip@v2.listbox.com>, <http://v2.listbox.com/subscribe/?listname=ip@v2.listbox.com>
List-unsubscribe: <mailto:unsubscribe-ip@v2.listbox.com>, <http://v2.listbox.com/member/unsubscribe/?listname=ip@v2.listbox.com>
References: <091e01c69bdd$e3ba1a60$0202fea9@xxxxxxxxxxxxxxxxxxxxxx>
Reply-to: dave@xxxxxxxxxx



Begin forwarded message:

From: Bob Frankston <Bob2-19-0501@xxxxxxxxxxxxxxxxxx>
Date: June 29, 2006 8:41:12 PM EDT
To: dave@xxxxxxxxxx, ip@xxxxxxxxxxxxxx
Cc: "'David P. Reed'" <dpreed@xxxxxxxx>

Subject: RE: [IP] more on Verizon "Broadband Router" the perfectTrojan Horse

Ideally NN is really an expression of basic antitrust principles. Theproblem is that the current Regulatorium has companies fund ourcommon infrastructure by selling services. Were this an effectivemarketplace this wouldn’t be an issue because we wouldn’t havegatekeepers.

I see NN as a principle rather than as something that can belegislated. Ideally the FTC should be able to apply antitrustprinciples but the FCC is, in a sense, an anti-enforcer. The factthat the carriers control how we communicate or speech makes it alsoa free speech issue but we can put the emphasis on the antitrustprinciples.

This is why I keep arguing for infrastructure as the framing model –trying to legislate corporations’ internal behavior is impossiblebecause the nature of the business is implicit in every decision. ButNN is useful to emphasize that the carriers have a responsibility aslong as they are given such control over our infrastructure.

The good news, as David notes, many of the worst excesses won’t forother reasons.

But … there is a big exception … the entire cellular industry startedout smart software that has become smarter. They have control and, asI point out in http://www.frankston.com/?name=AssuringScarcity theirfear is that they may lose their control once people realize theydon’t need a gatekeeper in order to communicate. NN works bestpreventing new excesses than correcting old ones.

NN is a basically a parent saying “No No” to children who need tolearn that the universe doesn’t revolve around them.




-----Original Message-----
From: David Farber [mailto:dave@xxxxxxxxxx]
Sent: Thursday, June 29, 2006 19:45
To: ip@xxxxxxxxxxxxxx

Subject: [IP] more on Verizon “Broadband Router” the perfect TrojanHorse

and if some company finds a good use for the capability, under a NNlaw, who will decide if it violates the law—the FCC/FTC?

A wise company will not offer any capability that could be mis-usedeven if just someone just thinks of the possility.


Dave

Begin forwarded message:

From:   “David P. Reed” <dpreed@xxxxxxxx>

Date:    June 29, 2006 6:22:35 PM EDT

To:       “David P. Reed” <dpreed@xxxxxxxx>

Cc:       David Farber <dave@xxxxxxxxxx>, Dewayne-Net Technology List

            <dewayne-net@xxxxxxxxxxxxx>

Subject: Re: Verizon “Broadband Router” the perfect TrojanHorse

Some of the reaction to my earlier note suggests that people thoughtI had discovered Verizon actually doing something bad. I did notmean in any way to imply that, so I hope if you have forwarded myearlier note you will pass on this clarification.

My comment was based on studying the TR-069 standard, *in the contextof the current “Net Neutrality” debate* in which both I and Verizonare involved, and noting that it is possible to exploit the featuresof that standard to redirect traffic and monitor traffic under thecontrol of the access provider.

I do not mean that the router itself is a bad product, or that ithas no good purpose. I also am not accusing Verizon of actuallydoing those things that I worry about - I have no such evidence.

But the possibility is real, and we have no assurances from Verizonor other providers that they will not exploit those possibilities.(In fact, many in the Net Neutrality debate who claim to be actingfor the Bells seem to be arguing that it will be necessary andappropriate for Verizon to do so.)

I would hope that Verizon would make a clear policy statement aboutwhat it will do to make sure that such features are not usedinappropriately.

It is surely a good thing for router equipment to provide facilitiesfor remote diagnosis and maintenence. When communicationsequipment is concerned, such tools need to be used with care,however. The data being carried is sensitive and personal, and isNOT the property of the carrier of the data. It may not even bethe case that the user has the right to disclose the data inquestion (as is the case in HIPAA and European data protectionregimes).

Thus features that redirect, block, and otherwise interfere withcommunications must be used carefully, with clear authorization fromall concerned parties, and (here it is my opinion only) withrecognition that the the users’ communications belong to the usersand their counterparties, not the operator of the communications system.











You are subscribed as BobIP@xxxxxxxxxxxxxxxxxx

To manage your subscription, go to

http://v2.listbox.com/member/?listname=ip

Archives at: http://www.interesting-people.org/archives/interesting-people/




-------------------------------------
You are subscribed as roessler@xxxxxxxxxxxxxxxxxx
To manage your subscription, go to
 http://v2.listbox.com/member/?listname=ip

Archives at: http://www.interesting-people.org/archives/interesting-people/

Prev by Date: [IP] The Newbie's Guide to Detecting the NSA
Next by Date: [IP] more on Verizon "Broadband Router" the perfect Trojan Horse
Previous by thread: [IP] The Newbie's Guide to Detecting the NSA
Next by thread: [IP] more on Verizon "Broadband Router" the perfect Trojan Horse
Index(es):
- Date
- Thread