<div dir="ltr"><div><div>Mark,<br>I'm glad you raised the point, as it needs to be clarified that the purview of the s313 inquiry is "disruption" of services. It's not required to read the data stream. For the purposes of s313 it should be sufficient to read the SSL certificate, and then block by either white list or black list.<br><br></div><div>John,<br></div><div>For better or worse, we're heading to a future where SSL will not be banned, but it will be licensed. This in my view is what's driving the ongoing spat between the FBI and Apple.<br></div><div><br></div>Kind regards<br><br></div>Paul Wilkins<br></div><div class="gmail_extra"><br><div class="gmail_quote">On 2 May 2016 at 13:49, Mark Newton <span dir="ltr"><<a href="mailto:newton@atdot.dotat.org" target="_blank">newton@atdot.dotat.org</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><span class="">On May 2, 2016, at 1:41 PM, John Lindsay <<a href="mailto:johnslindsay@mac.com">johnslindsay@mac.com</a>> wrote:<br>
<br>
> This is easy. Just ban ssl. Sorted.<br>
<br>
</span>Sure, they can do that, and we’ll all keep using it. Maybe we’ll rename it “TLS” so we don’t have to tell them that their ban has been unsuccessful.<br>
<div class="HOEnZb"><div class="h5"><br>
- mark<br>
<br>
<br>
<br>
<br>
_______________________________________________<br>
AusNOG mailing list<br>
<a href="mailto:AusNOG@lists.ausnog.net">AusNOG@lists.ausnog.net</a><br>
<a href="http://lists.ausnog.net/mailman/listinfo/ausnog" rel="noreferrer" target="_blank">http://lists.ausnog.net/mailman/listinfo/ausnog</a><br>
</div></div></blockquote></div><br></div>