Main Page: Difference between revisions

From ETI
No edit summary
No edit summary
 
(23 intermediate revisions by the same user not shown)
Line 1: Line 1:
The present document is a basic reference document for undertaking the responsibilities, areas of activity, organization and working methods enumerated in the Terms of Reference for Encrypted Traffic Integration ISG. ETI is inherently diverse, dynamic, and spread across a complex array of bodies and activities worldwide, and constitutes a specialized ecosystem. The Group's effectiveness is predicated in large measure by constantly discovering, analysing, and understanding the diverse requirements and work occurring in this ecosystem in some kind of structured fashion. The present document should also be useful to the many constituents that are part of the encrypted traffic integration ecosystem.
<center>
The present document attempts to discover and assemble enumerated lists in alphabetic order of global encrypted traffic integration constituents. It attempts to be as inclusive as possible to expand collective insight into the extent and diversity of the ecosystem:
<h1>Welcome to the ETI (Encrypted Traffic Integration) Wiki</h1>
Fora that develop techniques, technical standards and operational practices.
</center>
Major IT developer forums affecting cyber security.
 
Activities for continuous information exchange.
 
• Global and national centres of excellence.
<table >
Reference libraries, continuing conferences, and publications.
<tr style="vertical-align:top">
Heritage sites and historical collections.
<td style="padding:10px">
The present document also includes an extensive list of acronym abbreviations and an annex of use cases of the relationships among the different groups.
<span style="font-size:14pt">
This ecosystem changes constantly, so URIs provide links to the activities for the latest information. The present document may also be implemented on the ETSI website to allow continuing maintenance both by the ETSI Secretariat research, outreach and cooperation with the included forums.
'''About ETSI's ETI TB'''
</span>
* '''[[ETI Activities]]''' Information about ETI (high level overview, work program and deliverables).
* '''[[ETI Planning]]''' Information about ETI (planning on meetings and future information; warning this information may change).
</td>
<td style="padding:10px">
<span style="font-size:14pt">
'''ETI Development Activity:'''
</span>
 
* '''[[Published work items]]''' Information about finalised ETI documents.
 
* '''[[Core ETI Topics]]''' Information about core topics addressed by ETI.
 
* '''[https://portal.etsi.org/Portal_WI/form1.asp?tbid=888&SubTB=888&Param=gjMSGHNSPP6776epVe9&Alone=1 Current ETI work programme]''' Information about ETI work in progress (open to members of ETSI and participants of ISG ETI).
 
* '''[https://portal.etsi.org/Portal_TBofficials/form1.asp?tbid=888&SubTB=888&Alone=1 ETI leadership team]''' From the ETSI Portal.
</td>
<td style="padding:10px">
<span style="font-size:14pt">
'''FAQ:'''
</span>
* '''[[FAQ]]''' Frequently asked questions regarding ETI (how to join, etc. ...).
</td>
</tr>
</table>
----
 
 
<center>
<h1>The ETI problem and why it needs solving</h1>
</center>
 
The role of encryption of information being transported between two end-points has three widely recognized positive purposes depending on the context:
 
* confidentiality protection of the transferred content;
* enhanced trust in the identity of the parties associated with the information; and
* enhanced trust in the integrity of the information during transport.
 
However, encryption may have a negative impact on third parties who do not have access to the encryption keys used and therefore do not have access to the content, but may have operational or legal responsibilities that require or are dependent on some level of knowledge of the information transported. Critical factors include how the keys were generated, who has knowledge of them, and how are they protected or shared.
 
The ETI problem has looked at the Going Dark phenonom in which there is a concern that the inability of a normally authorized party such as the network management entity to function because of the encryption by end-point users or third parties. For example, the intersection of the two elements, A, representing network capabilities that, when content and headers are encrypted, pose extreme challenges to network operation, and B, representing Network capabilities that are core to the development of cyber/digital business, should be minimized, whilst always seeking to eliminate A, and further complicated by ensuring that the obligations placed on operators and suppliers with respect to regulation, law or convention, or operator security policy, are fulfilled (element C in the figure). The result is that whilst maximising the benefit of encryption as above it is also essential to maximise the viability of the service, and the ability to meet obligations set by 3rd parties.
 
<div align="center">[[File:GoingDark-3.png|500px]]</div>
 
The ETI problem is therefore centred on the more existential threat of pervasive encryption. What this means is that networks can only ever achieve best effort as all the meta data they require (in signalling mainly) is not available to them to make routing decisions, or assist in the minimisation of delay and jitter. It also means losing the ability to protect users from unsolicited content, and that introduces concerns about liability in failing to protect users.
<center>
<h1>The ETI ecosystem</h1>
</center>
 
This part of the WiKi is a translation and reformatting of the ETSI ISG ETI report on the eco-system as it applies to the work area of the group. In this respect the WiKi is intended as a living reference document for undertaking the responsibilities, areas of activity, organization and working methods enumerated in the Terms of Reference for Encrypted Traffic Integration. ETI is inherently diverse, dynamic, and spread across a complex array of bodies and activities worldwide, and constitutes a specialized ecosystem. The Group's effectiveness is predicated in large measure by constantly discovering, analysing, and understanding the diverse requirements and work occurring in this ecosystem in some kind of structured fashion. The present document should also be useful to the many constituents that are part of the encrypted traffic integration ecosystem.
 
A broad summary of the problem and why there is a requirement to develop mitigations is given in the [https://www.etsi.org/deliver/etsi_gr/ETI/001_099/001/01.01.01_60/gr_ETI001v010101p.pdf ETI Problem Statement].
 
Therefore the primary purpose of this WiKi is to capture, discover, and assemble enumerated lists in alphabetic order of global encrypted traffic integration constituents. It attempts to be as inclusive as possible to expand collective insight into the extent and diversity of the ecosystem:
 
* [[Organization of the ecosystem forums and activities]]
 
* [[Fora that develop techniques, technical standards and operational practices]]
 
* [[Major IT developer forums affecting cyber security]]
 
* [[Activities for continuous information exchange]]
 
* [[Centres of excellence]]
 
* [[Reference libraries, continuing conferences, and publications]]
 
* [[Heritage sites and historical collections]]
 
*  [[Additional exchange sources and methods]]
 
 
As far as is possible the material in this WiKi is collated in pages based on the above list. These can be navigated in conventional WiKi style by clicking on the links.
 
In addition this WiKi includes an extensive list of [[Terms and definitions]], [[Abbreviations]] and some illustrative use cases of the relationships among the different groups.
 
This ecosystem changes constantly, so URIs provide links to the activities for the latest information.
 
<center>
<h1>Summary of recent updates</h1>
</center>
 
Quite a lot of the pages have had their placeholder lorem ipsum text replaced although there is still a lot remaining. As we increase the number of contributors this will change significantly. The most signficant changes recently are the pages and text surrounding Zero Trust and in particular the ZT-Kipling method that we are developing.
 
For a summary of the new publications in the field that we want to bring attention to we are citing certain Google Scholar results (other search engines will provide similar results).
 
[https://scholar.google.com/scholar?hl=en&as_sdt=0%2C5&q=middlebox+encryption&btnG=&oq=middlebox+e Middlebox encryption]
 
[https://scholar.google.com/scholar?hl=en&as_sdt=0%2C5&q=pervasive+encryption&btnG= Pervasive encryption]
 
The message here is that there is a lot of activity in the field and not all of it supportive of the wider aims of ETI.

Latest revision as of 10:42, 26 July 2024

Welcome to the ETI (Encrypted Traffic Integration) Wiki


About ETSI's ETI TB

  • ETI Activities Information about ETI (high level overview, work program and deliverables).
  • ETI Planning Information about ETI (planning on meetings and future information; warning this information may change).

ETI Development Activity:

FAQ:

  • FAQ Frequently asked questions regarding ETI (how to join, etc. ...).


The ETI problem and why it needs solving

The role of encryption of information being transported between two end-points has three widely recognized positive purposes depending on the context:

  • confidentiality protection of the transferred content;
  • enhanced trust in the identity of the parties associated with the information; and
  • enhanced trust in the integrity of the information during transport.

However, encryption may have a negative impact on third parties who do not have access to the encryption keys used and therefore do not have access to the content, but may have operational or legal responsibilities that require or are dependent on some level of knowledge of the information transported. Critical factors include how the keys were generated, who has knowledge of them, and how are they protected or shared.

The ETI problem has looked at the Going Dark phenonom in which there is a concern that the inability of a normally authorized party such as the network management entity to function because of the encryption by end-point users or third parties. For example, the intersection of the two elements, A, representing network capabilities that, when content and headers are encrypted, pose extreme challenges to network operation, and B, representing Network capabilities that are core to the development of cyber/digital business, should be minimized, whilst always seeking to eliminate A, and further complicated by ensuring that the obligations placed on operators and suppliers with respect to regulation, law or convention, or operator security policy, are fulfilled (element C in the figure). The result is that whilst maximising the benefit of encryption as above it is also essential to maximise the viability of the service, and the ability to meet obligations set by 3rd parties.

GoingDark-3.png

The ETI problem is therefore centred on the more existential threat of pervasive encryption. What this means is that networks can only ever achieve best effort as all the meta data they require (in signalling mainly) is not available to them to make routing decisions, or assist in the minimisation of delay and jitter. It also means losing the ability to protect users from unsolicited content, and that introduces concerns about liability in failing to protect users.

The ETI ecosystem

This part of the WiKi is a translation and reformatting of the ETSI ISG ETI report on the eco-system as it applies to the work area of the group. In this respect the WiKi is intended as a living reference document for undertaking the responsibilities, areas of activity, organization and working methods enumerated in the Terms of Reference for Encrypted Traffic Integration. ETI is inherently diverse, dynamic, and spread across a complex array of bodies and activities worldwide, and constitutes a specialized ecosystem. The Group's effectiveness is predicated in large measure by constantly discovering, analysing, and understanding the diverse requirements and work occurring in this ecosystem in some kind of structured fashion. The present document should also be useful to the many constituents that are part of the encrypted traffic integration ecosystem.

A broad summary of the problem and why there is a requirement to develop mitigations is given in the ETI Problem Statement.

Therefore the primary purpose of this WiKi is to capture, discover, and assemble enumerated lists in alphabetic order of global encrypted traffic integration constituents. It attempts to be as inclusive as possible to expand collective insight into the extent and diversity of the ecosystem:


As far as is possible the material in this WiKi is collated in pages based on the above list. These can be navigated in conventional WiKi style by clicking on the links.

In addition this WiKi includes an extensive list of Terms and definitions, Abbreviations and some illustrative use cases of the relationships among the different groups.

This ecosystem changes constantly, so URIs provide links to the activities for the latest information.

Summary of recent updates

Quite a lot of the pages have had their placeholder lorem ipsum text replaced although there is still a lot remaining. As we increase the number of contributors this will change significantly. The most signficant changes recently are the pages and text surrounding Zero Trust and in particular the ZT-Kipling method that we are developing.

For a summary of the new publications in the field that we want to bring attention to we are citing certain Google Scholar results (other search engines will provide similar results).

Middlebox encryption

Pervasive encryption

The message here is that there is a lot of activity in the field and not all of it supportive of the wider aims of ETI.