[{"author": "Jorge Amodio", "text": "No error message here, audio check ?
", "time": "2022-03-24T09:00:03Z"}, {"author": "Brendan Moran", "text": "It works for me now
", "time": "2022-03-24T09:00:52Z"}, {"author": "Richard Li", "text": "the voice is low
", "time": "2022-03-24T09:02:37Z"}, {"author": "Kiran Makhijani", "text": "@meetecho room audio is very soft for me.
", "time": "2022-03-24T09:02:42Z"}, {"author": "Jorge Amodio", "text": "same
", "time": "2022-03-24T09:02:51Z"}, {"author": "Meetecho", "text": "Checking
", "time": "2022-03-24T09:02:52Z"}, {"author": "Meetecho", "text": "Looks like they're speaking a bit far from the mic though?
", "time": "2022-03-24T09:03:04Z"}, {"author": "Richard Li", "text": "yes, better now
", "time": "2022-03-24T09:03:23Z"}, {"author": "Eliot Lear", "text": "ok
", "time": "2022-03-24T09:06:19Z"}, {"author": "cabo", "text": "(I still have to look up to find out why what our students did somehow doesn't work.)
", "time": "2022-03-24T09:13:07Z"}, {"author": "Brendan Moran", "text": "Doesn't work for dynamic IPs. :( Opens you to local attacks. :(
", "time": "2022-03-24T09:14:21Z"}, {"author": "cabo", "text": "Neither is a problem that the students had.
", "time": "2022-03-24T09:14:48Z"}, {"author": "Brendan Moran", "text": "Simple: I DoS the target resource, and put up another device with the same name. You connect to it, get \"trust on first use\" and then I have you talking to my device and trusting it.
", "time": "2022-03-24T09:15:44Z"}, {"author": "cabo", "text": "No TOFU needed.
", "time": "2022-03-24T09:15:58Z"}, {"author": "Brendan Moran", "text": "That was the premise of the previous slide
", "time": "2022-03-24T09:16:12Z"}, {"author": "cabo", "text": "Slide 4 is closer. Now just make it usable.
", "time": "2022-03-24T09:16:40Z"}, {"author": "Brendan Moran", "text": "No slide numbers, can't tell.
", "time": "2022-03-24T09:16:55Z"}, {"author": "Alexey Melnikov", "text": "Current slide is
", "time": "2022-03-24T09:17:14Z"}, {"author": "Alexey Melnikov", "text": "#4
", "time": "2022-03-24T09:17:18Z"}, {"author": "cabo", "text": "Yes, shame on chairs. But you can cheat by looking at meet echo's slide number
", "time": "2022-03-24T09:17:18Z"}, {"author": "Brendan Moran", "text": "thanks
", "time": "2022-03-24T09:17:21Z"}, {"author": "Brendan Moran", "text": "Yes, I agree, #4 is... okay... but it exposes too much information to the vendor.
", "time": "2022-03-24T09:18:09Z"}, {"author": "Brendan Moran", "text": "Same with this one.
", "time": "2022-03-24T09:18:41Z"}, {"author": "cabo", "text": "Note that a user-controlled system can sign the same PK
", "time": "2022-03-24T09:18:54Z"}, {"author": "Brendan Moran", "text": "The propagation system is an attack surface...
", "time": "2022-03-24T09:21:04Z"}, {"author": "cabo", "text": "Yes.
", "time": "2022-03-24T09:21:13Z"}, {"author": "cabo", "text": "We use lets encrypt, which is definitely a non-trivial attack surface.
", "time": "2022-03-24T09:21:41Z"}, {"author": "Brendan Moran", "text": "Is there a mechanism to protect against rogue gateways?
", "time": "2022-03-24T09:22:49Z"}, {"author": "cabo", "text": "I'm not sure about the term \"gateway\", but indeed there are servers involved.
", "time": "2022-03-24T09:23:24Z"}, {"author": "cabo", "text": "No browser mods needed.
", "time": "2022-03-24T09:24:06Z"}, {"author": "Brendan Moran", "text": "No! That lets your NAS impersonate your gaming console, etc!
", "time": "2022-03-24T09:26:57Z"}, {"author": "cabo", "text": "(That = ?)
", "time": "2022-03-24T09:29:00Z"}, {"author": "Brendan Moran", "text": "(Add Root CA to your system)
", "time": "2022-03-24T09:29:14Z"}, {"author": "cabo", "text": "It is an axiom to me that you don't do that.
", "time": "2022-03-24T09:29:32Z"}, {"author": "Brendan Moran", "text": "Even worse, it lets your NAS impersonate your bank. Anything that involves adding a root CA is the wrong answer.
", "time": "2022-03-24T09:30:10Z"}, {"author": "cabo", "text": "Indeed. Don't even think about schemes that require that.
", "time": "2022-03-24T09:30:32Z"}, {"author": "cabo", "text": "It is also unusable, because you have to do this to every client
", "time": "2022-03-24T09:30:50Z"}, {"author": "Christian Veenman", "text": "Kiran you can mute the room as well while doing the presentation
", "time": "2022-03-24T09:32:24Z"}, {"author": "cabo", "text": "(She is echoing back the echo she gets from the room\u2026)
", "time": "2022-03-24T09:33:37Z"}, {"author": "MichaelRichardson", "text": "yes, she needs a headset.
", "time": "2022-03-24T09:34:10Z"}, {"author": "cabo", "text": "(Or a proper audio system.)
", "time": "2022-03-24T09:34:33Z"}, {"author": "MichaelRichardson", "text": "I'm not convinced for all latencies that desktop systems can deal with that, but you keep saying so, so it must be true.
", "time": "2022-03-24T09:35:18Z"}, {"author": "cabo", "text": "(Only proper audio systems can do that.)
", "time": "2022-03-24T09:35:56Z"}, {"author": "Toerless Eckert", "text": "why the huge lag between audio/video. are those not transmitted synchronized by meetecho ?
", "time": "2022-03-24T09:36:13Z"}, {"author": "cabo", "text": "WFM
", "time": "2022-03-24T09:36:26Z"}, {"author": "cabo", "text": "Oh, not Really.
", "time": "2022-03-24T09:36:57Z"}, {"author": "cabo", "text": "Just make the window small enough so you don't see the lag :-)
", "time": "2022-03-24T09:37:16Z"}, {"author": "Toerless Eckert", "text": "maybe the lag is an indicator of the root problem
", "time": "2022-03-24T09:37:49Z"}, {"author": "cabo", "text": "There are two problems here:
", "time": "2022-03-24T09:38:06Z"}, {"author": "Brendan Moran", "text": "beam forming and echo cancellation?
", "time": "2022-03-24T09:38:19Z"}, {"author": "cabo", "text": "The room echo (which is a mild problem), would need to be fixed in the room
", "time": "2022-03-24T09:38:32Z"}, {"author": "cabo", "text": "The presenter echo problem, would need to be fixed at the presenter's side, using a headset or a proper audio system
", "time": "2022-03-24T09:39:12Z"}, {"author": "cabo", "text": "The slides are there. Just resync.
", "time": "2022-03-24T09:57:01Z"}, {"author": "Kiran Makhijani", "text": "Ah! sorry, I did not realize that my audio had echo - just found out from the chat.
", "time": "2022-03-24T10:04:53Z"}, {"author": "cabo", "text": "Yeah, that is the nice thing about echo \u2014 the only one who doesn't hear it is who is causing it :-)
", "time": "2022-03-24T10:07:24Z"}, {"author": "Eliot Lear", "text": "Ah! Multi-vendor enforcement mechansms != greater security. got it
", "time": "2022-03-24T10:14:10Z"}, {"author": "Matthew Gillmore", "text": "+1 to that comment, this appears to be an advertisement
", "time": "2022-03-24T10:16:59Z"}, {"author": "Doug Montgomery", "text": "https://www.ndss-symposium.org/ndss-paper/mondrian-comprehensive-inter-domain-network-zoning-architecture/
", "time": "2022-03-24T10:17:17Z"}, {"author": "MichaelRichardson", "text": "so energy is going like enterprise networks: from STP to ECMP.
", "time": "2022-03-24T10:20:01Z"}, {"author": "MichaelRichardson", "text": "if the operator drops a packet, they get electrocuted.
", "time": "2022-03-24T10:24:21Z"}, {"author": "Richard Li", "text": "For low latency, how low is low?
", "time": "2022-03-24T10:27:51Z"}, {"author": "Steffen Fries", "text": "trip messages may be <3ms
", "time": "2022-03-24T10:29:16Z"}, {"author": "Steffen Fries", "text": "at leaset within a substation
", "time": "2022-03-24T10:29:25Z"}, {"author": "Richard Li", "text": "is there any physical distance requirement?
", "time": "2022-03-24T10:30:55Z"}, {"author": "Toerless Eckert", "text": "As said: How would this relate to the architectures/work done by e.g.: naspi.org
", "time": "2022-03-24T10:31:50Z"}, {"author": "Juhamatti Kuusisaari", "text": "3 ms is quite low. commonly real-time action should be < 50 ms
", "time": "2022-03-24T10:31:50Z"}, {"author": "Toerless Eckert", "text": "Sorry, don't know what the EU equivalent is
", "time": "2022-03-24T10:31:58Z"}, {"author": "Steffen Fries", "text": "well, GOOSE specifies the transition time in different classes. Trip would be the highest class to ensure the protection works.
", "time": "2022-03-24T10:32:43Z"}, {"author": "Richard Li", "text": "3 ms is challenging, but still possible depending on the physical distance. 50 ms is easy and should not bring any new problem to solve
", "time": "2022-03-24T10:34:31Z"}, {"author": "Juhamatti Kuusisaari", "text": "3 ms over any TCP sounds a bit challenging in-deed
", "time": "2022-03-24T10:35:24Z"}, {"author": "Toerless Eckert", "text": "substation is only hundreds of meter size. network layer propagation there would be << 1 msec with non-sucking equipment
", "time": "2022-03-24T10:35:47Z"}, {"author": "Steffen Fries", "text": "oh understood. GOOSE is a layer 2 IEC 61850 protocol
", "time": "2022-03-24T10:36:09Z"}, {"author": "Richard Li", "text": "you lose a packet using TCP, you would triple the latency, so the use of TCP should be avoided
", "time": "2022-03-24T10:36:32Z"}, {"author": "Toerless Eckert", "text": "a lot of the historic latencies in this space is cause of old, software-interrupt driven gateway application-networking designs.
", "time": "2022-03-24T10:37:48Z"}, {"author": "cabo", "text": "The transition is from systems that don't have (enough) memory and therefore needs to be sent information exactly when they want to use it to systems that have a concept of time
", "time": "2022-03-24T10:38:48Z"}, {"author": "Toerless Eckert", "text": "right. not only memory, also the missing notion of time on many client systems, so you need low/zero-jitter networking
", "time": "2022-03-24T10:39:28Z"}, {"author": "Toerless Eckert", "text": "One of the directions i've been pointing out to detnet wrt. to the packet delivery options we need to support
", "time": "2022-03-24T10:39:55Z"}, {"author": "cabo", "text": "(The use of the word \"jitter\" can be an indicator of pre-memory thinking.)
", "time": "2022-03-24T10:40:36Z"}, {"author": "cabo", "text": "Obviously, you need a source of time then.
", "time": "2022-03-24T10:40:59Z"}, {"author": "Richard Li", "text": "does such a grid have a so-grained clock inside?
", "time": "2022-03-24T10:41:59Z"}, {"author": "Brendan Moran", "text": "For industrial equipment, the cost profile is such that atomic clocks are not an impossible solution.
", "time": "2022-03-24T10:42:59Z"}, {"author": "cabo", "text": "PTP also is a great way to do time distribution.
", "time": "2022-03-24T10:43:27Z"}, {"author": "Toerless Eckert", "text": "well, those traditoinal systems had the notion of time in something like the PLC that had synchronous, known latency messaging to the client devices that simply where operating in client/poll mode
", "time": "2022-03-24T10:43:29Z"}, {"author": "Steffen Fries", "text": "yes PTP is one option to address the synchronization
", "time": "2022-03-24T10:43:52Z"}, {"author": "Brendan Moran", "text": "And it costs a lot less than an atomic clock ;)
", "time": "2022-03-24T10:44:09Z"}, {"author": "Steffen Fries", "text": "There is also a PTP power system profile available
", "time": "2022-03-24T10:44:13Z"}, {"author": "Toerless Eckert", "text": "the overhead of operationalizing PTP depends on a lot of factors. Arguably, not needing PTP support in any possible client device might be an attractive design option, but it requires for the IP network to have as good quality characteristics as pre-IP network.
", "time": "2022-03-24T10:44:23Z"}, {"author": "Markus Dahlmanns", "text": "We are discussing the introduction of PTP but also think about the usage of time synchronization via GPS
", "time": "2022-03-24T10:44:24Z"}, {"author": "Markus Dahlmanns", "text": "In a way that every station receives the current time via GPS
", "time": "2022-03-24T10:44:57Z"}, {"author": "Eliot Lear", "text": "I'm already there with this document.
", "time": "2022-03-24T10:45:13Z"}, {"author": "Eliot Lear", "text": "We should adopt ;-)
", "time": "2022-03-24T10:45:18Z"}, {"author": "Toerless Eckert", "text": "I always wonder why people want to shy away from making IP networks work equal or better than those pre-IOT networks in the IoT space.
", "time": "2022-03-24T10:45:20Z"}, {"author": "cabo", "text": "Markus: local time/frequency distribution is the way to go, but you need a resilient architecture for that.
", "time": "2022-03-24T10:46:09Z"}, {"author": "cabo", "text": "People in a certain country may be able to tell you GPS alone is not resilient.
", "time": "2022-03-24T10:46:25Z"}, {"author": "Toerless Eckert", "text": "Markus: the synchrophasor solutions already should have all the solutions for clock synchronization. IETF participants where typing atomic clocks and ethernet chips together with NTP in the 90th ;-)
", "time": "2022-03-24T10:46:29Z"}, {"author": "cabo", "text": "So you add MQTT as your overlay on top of your fragmented IPv4
", "time": "2022-03-24T10:53:07Z"}, {"author": "Toerless Eckert", "text": "Brendan: You should get some light into your face, the video is just bright background and a black shadow in front (which might be you)
", "time": "2022-03-24T10:53:35Z"}, {"author": "Eliot Lear", "text": "Geoff Huston said the same thing about SIP
", "time": "2022-03-24T10:53:37Z"}, {"author": "cabo", "text": "But SIP needs RTP
", "time": "2022-03-24T10:53:53Z"}, {"author": "Brendan Moran", "text": "Sorry Toerless I have a huge backlight issue here.
", "time": "2022-03-24T10:54:51Z"}, {"author": "Eliot Lear", "text": "But the \"why\" is a bit of a next step. Different people put things together differently
", "time": "2022-03-24T10:57:03Z"}, {"author": "cabo", "text": "Brendan: You have a frontal lightning issue, actually. Get a couple of ring lights.
", "time": "2022-03-24T10:58:05Z"}, {"author": "cabo", "text": ":-)
", "time": "2022-03-24T10:58:32Z"}, {"author": "cabo", "text": "MUD \u2794 DAI-SNAC\u2026
", "time": "2022-03-24T11:01:48Z"}]