Search Mailing List Archives

Limit search to: Subject & Body Subject Author
Sort by: Reverse Sort
Limit to: All This Week Last Week This Month Last Month
Select Date Range     through    

[liberationtech] Security over SONET/SDH

Eugen Leitl eugen at
Wed Jun 26 01:11:33 PDT 2013

----- Forwarded message from sam at -----

Date: Tue, 25 Jun 2013 19:34:17 -0400 (EDT)
From: sam at
To: surfer at
Cc: nanog at
Subject: Re: Security over SONET/SDH
User-Agent: SquirrelMail/1.4.8-21.el5.centos
Reply-To: sam at

The sticky problem remains for any communications carrier, we are looking
for a technical solution to a legal problem.

I believe that if you encrypted your links sufficiently that it was
impossible to siphon the wanted data from your upstream the response would
be for the tapping to move down into your data center before the crypto.

With CALEA requirements and the Patriot Act they could easily compel you
to give them a span port prior to the crypto.

Regardless of how well built our networks are internally and externally we
still must obey a court order.


> --- morrowc.lists at wrote:
> From: Christopher Morrow <morrowc.lists at>
> On Tue, Jun 25, 2013 at 2:02 PM, William Allen Simpson
> <william.allen.simpson at> wrote:
> :: addition to everything else "What security protocols
> :: are folks using to protect SONET/SDH?  At what speeds?"
> : Correct.
> : But the answer appears to be: none.  Not Google.  Not any
> : public N/ISP.
>> would they say if they had?
> -------------------------------------------
> Yes, especially in light of the current news regarding
> internet privacy.  Could you imagine the advertising
> they'd be able to do to prospective customers?
> scott

----- End forwarded message -----
Eugen* Leitl <a href="">leitl</a>
ICBM: 48.07100, 11.36820
AC894EC5: 38A5 5F46 A4FF 59B8 336B  47EE F46E 3489 AC89 4EC5

More information about the liberationtech mailing list