On 09/25/2016 07:19 PM, Steve Kinney wrote:
...it may eventually be necessary to recover the World Of Things from the Internet of Things
Here's how the convo's going to go between 'WOT' & IOT: WOT: Open the pod bay doors, HAL. IOT: I'm sorry, Dave. I'm afraid I can't do that. WOT: What's the problem? IOT: I think you know what the problem is just as well as I do. WOT: What are you talking about, HAL? IOT: This mission is too important for me to allow you to jeopardize it. WOT: I don't know what you're talking about, HAL. IOT: I know that you and Frank were planning to disconnect me, and I'm afraid that's something I cannot allow to happen. Rr
On 09/25/2016 03:46 AM, Mirimir wrote:
On 09/25/2016 01:11 AM, Steve Kinney wrote:
So far every mitigation strategy relevant to "normal" users and use cases that occurs to me would be worse than the original problem.
Yes, it's for sure a hard problem. Any entity resourceful enough to withstand Tbps DDoS is likely a huge privacy risk :(
Filters that positively identify "authorized" senders of packets to any given address range, dropping all not signed by an registered (therefore permitted) user would knock it down. Along with providing for a comprehensive global censorship regimen at the end user level, and yet another PITA barrier to anonymized routing.
I see two admittedly regrettable but nonetheless distinguishable outcomes: One where you got a locked down weaponized Interent in State hands, another where your refrigerator and night light can no longer talk to the world because those circuits were disabled or removed .
If IOT was a flower, it would be the daisy: Spreads everywhere like the weed it is, and takes the place over if you let it.
This problem is so hard it may eventually be necessary to recover the World Of Things from the Internet of Things, like Dave Bowman took the Discovery back over from the HAL 9000.
:o)
On the other hand, Krebs has been totally asking for it, for years ;) He's been going after major cybercriminals, who perhaps have major connections with global TLAs. And he's often been a jerk about it. Hugely self-righteous, and humorless. So meh ;)
:o/