IPv6 at Dawn [IPv6 Technical Summit 2003 in Japan Report] Secure Terminals for Everyone - Realizing Plug and Play Security

IPv6 at Dawn [IPv6 Technical Summit 2003 in Japan Report] Secure Terminals for Everyone - Realizing Plug and Play Security

tags:
2003-12-19 00:06
Shin Miyakawa
NTT Communications/WIDE Project

previous 7/12 next



Shin Miyakawa talked about an interesting topic of offering transparent services for everyone in the future Internet based on IPv6. He particularly discussed the challenges in offering peer-to-peer application services. IPv6 is suitable, for example, for VoIP, as it eases the processing of incoming calls. But what actual features are desired for terminals using these applications?

As a starter, it is crucial for users to be able to start using these terminals just by plugging them to the network, pointed out Miyakawa. The autoconfiguration needs to be extensive enough from user point of view. Ideally, grand mothers should be able to set up these terminals. Plug and play in this sense is indispensable, said Miyakawa.

Second requirement is security. Authentication, privacy and anti-tampering of information are elements of security, but they all come down to the issue of how a user can identify themselves. With complete plug and play, it is impossible to incorporate user identification.

So the first and second requirements inherently contradict with each other, said Miyakawa. Other challenges include the need to poke a hole in firewall, finding and confirming the opponent with which user wants to interact with. The issue must be dealt with from a different viewpoint, he said.

Miyakawa said that conventional telephone was ultimate plug-and-play terminal. He suggested the third trusted party model for security, as an idea that had come out of comparison between telephone and Internet systems. This model, simply put, is based on trusting someone and believe what that someone says.

Usually, security and ease of use are in a trade-off relationship. But if that third trusted party can be accepted, such trade-off goes away and security can be maintained within the trust that that third party won. The trusted third party can be used for poking holes in firewalls.

Miyakawa further explained existing third trusted parties and requirements for them. Miyakawa concluded by saying that user-friendly system canbe created by taking advantages of both Internet and telephone systems.

previous 7/12 next

この記事のトラックバックURL

http://www.ipv6style.jp/trackback/406
Ads by Google