[NCAP-Discuss] Defining CI/CE
Rubens Kuhl
rubensk at nic.br
Wed Aug 2 23:53:53 UTC 2023
> Em 2 de ago. de 2023, à(s) 19:28, Jeff Schmidt via NCAP-Discuss <ncap-discuss at icann.org> escreveu:
>
> This reminded me about SSL/certificate issues. Has been discussed before, but here it is again so folks can think about it before we meet.
If I understood correctly the idea of a minimal honeypot, no connection will ever be established… either due to it being RST or never answered.
So no certificates will ever be presented or requested from either side.
But it provides no visible notification, just like CI… it only gathers more data. If it answers anything, then it’s not a minimal honeypot, it’s a plain honeypot. Considering what you mentioned about most collisions causing M2M traffic, with no humans actually seeing the result, the minimal honeypot sounds like a better data privacy x data collection trade-off.
Rubens
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mm.icann.org/pipermail/ncap-discuss/attachments/20230802/1cd922f8/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: Message signed with OpenPGP
URL: <https://mm.icann.org/pipermail/ncap-discuss/attachments/20230802/1cd922f8/signature.asc>
More information about the NCAP-Discuss
mailing list