Confidentiality in the Face of Pervasive Surveillance: A Threat Model and Problem Statement
RFC 7624, “Confidentiality in the Face of Pervasive Surveillance: A Threat Model and Problem Statement”, is an Informational document published in August 2015 by R. Barnes, B. Schneier, C. Jennings, T. Hardie, B. Trammell, C. Huitema, D. Borkmann. The canonical text is published by the RFC Editor.
Abstract
Since the initial revelations of pervasive surveillance in 2013, several classes of attacks on Internet communications have been discovered. In this document, we develop a threat model that describes these attacks on Internet confidentiality. We assume an attacker that is interested in undetected, indiscriminate eavesdropping. The threat model is based on published, verified attacks.
What “Informational” means
Published for the general information of the community. It does not define an IETF standard and carries no standards-track status.
The canonical text of RFC 7624 is hosted at rfc-editor.org. Available in TXT,HTML.
- RFC 7623 Provider Backbone Bridging Combined with Ethernet VPN
- RFC 7625 Architecture of an IP/MPLS Network with Hardened Pipes
- RFC 7622 Extensible Messaging and Presence Protocol : Address Format
- RFC 7626 DNS Privacy Considerations
- RFC 7621 A Clarification on the Use of Globally Routable User Agent URIs in the SIP Event Notification Framework
- RFC 7627 Transport Layer Security Session Hash and Extended Master Secret Extension
- RFC 7620 Scenarios with Host Identification Complications
- RFC 7628 A Set of Simple Authentication and Security Layer Mechanisms for OAuth