[afnog] privacy vs caching

Andrew Alston Andrew.Alston at liquidtelecom.com
Mon Dec 22 10:39:35 UTC 2014


Personally, I¹d be very unhappy with losing the ability to do end to end
encryption and having an ISP fake certificates etc.  In my mind, this
would be a form of mis-representation.

With regards to the latency tradeoff.  I can understand the needs to solve
the latency problems, though I would ask at what cost when introducing
these types of solutions.  My experience with caching at an ISP level has
not been positive.  The benefits in terms of traffic saved were
questionable at best when considering the cost of the devices, and the
performance improvement I saw in my testing didn¹t justify the expense.
I¹d rather spend the money improving the network to drive down the
latencies.

With the advent of GGC caches, Facebook caches, and large scale CDN
devices on net and on continent, I¹m just not sure that caching to the
point of breaking encryption is really worth it.  Especially when in
Africa, we are busy moving away from the paradigm of 500ms latencies and
traffic all looping back through Europe, and into an era where real
bandwidth, decent latencies and proper on-continent peering is a reality.

(With regards to the perspective I speak from for clarity, I¹m resident in
Kenya and operate networks in South Africa, Zimbabwe, Mozambique, Zambia,
Tanzania, Kenya, Uganda, Rwanda, Burundi and Somalia)

Just my thoughts.

Andrew Alston
Group Head of IP Strategy


Sameer business Park, Block A, Mombasa Road. Nairobi, Kenya

T: +254 205000000 -  M: +254 733 2222 04 - E:
andrew.alston at liquidtelecom.com








On 12/21/14, 8:54 PM, "Randy Bush" <randy at psg.com> wrote:

>caching is very difficult with end-to-end encryption as the cache does
>not have the private keys of the server.  the ietf is in a bit of a
>muddle on this.  should one allow middle-boxes to break the encryption
>and fake it?
>
>so which is more important to you and your customers (think consumers,
>banks, news sites, ...), end-to-end encryption to ensure privacy, or
>caching to reduce bandwidth consumption and improve latency?
>
>randy
>
>_______________________________________________
>afnog mailing list
>http://afnog.org/mailman/listinfo/afnog


DISCLAIMER:  This email contains proprietary information some or all of which may be legally privileged. It is for the intended recipient only. If an addressing or transmission error has misdirected this email, please notify the author by replying to this email. If you are not the intended recipient, you must not use, disclose, copy, print, or rely on this email.  We cannot accept liability for any statements made which are clearly the sender's own and not expressly made on behalf of this company or one of its agents.




More information about the afnog mailing list