<div dir="ltr">for the military applications of the Internet, there was attention paid to authentication and cryptography. RFC 1108 codified some of this and, of course, there was the end/end BCR project sponsored by ARPA that explored packet encryption technology (and the earlier Private Line Interface that was built by BBN to secure communication on the ARPANET). <div><br></div><div>Authentication was implicit for the cases where symmetric key cryptography was used since both ends had to have the same key and this implied authenticity (leaving out the possibility that the key had been cracked, of course). </div><div><br></div><div>v</div><div><br></div></div><div class="gmail_extra"><br><div class="gmail_quote">On Mon, Aug 22, 2016 at 6:32 AM, John Day <span dir="ltr"><<a href="mailto:jeanjour@comcast.net" target="_blank">jeanjour@comcast.net</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">As far as who was on the Net, the same was true and even more so in 1973, when FTP and the RJE protocols were done. Yet there, there was very strong arguments that login should be necessary. In fact, as I said, the Multics guys were very insistent on it. They really didn’t like the anonymous login.<br>
<br>
If anything, the reason for not doing it by the time SMTP was done was more the recognition that the process was more like the trusted postman delivering mail (as Dave points out), rather than just anyone. That sort of discussion had actually taken place when mail was part of FTP. And of course, we make special accommodation for the postman with a mail slot in the door or a mailbox and a law that makes it very illegal for tampering with the mailbox.<br>
<br>
As far as the telephone analogy, the last thing we were trying to do was to be like the telephone system, there was much more talk about modeling things after operating systems. If there were any two things that drew immediate resistance from that early group it was: this is how telephones work or this is the way IBM does it!! ;-) Both were considered (for better or worse) prime examples of how to be overly complex.<br>
<div class="HOEnZb"><div class="h5"><br>
<br>
> On Aug 21, 2016, at 23:28, Paul Vixie <<a href="mailto:paul@redbarn.org">paul@redbarn.org</a>> wrote:<br>
><br>
><br>
><br>
> Ofer Inbar wrote:<br>
>> SMTP and NNTP came with no auth or access control or any sort of<br>
>> security that I recall in the early days, and weren't they both<br>
>> designed consciously and deliberately for a distributed network<br>
>> with independent management of each node?<br>
><br>
> at the time smtp was defined, everyone who could make a tcp/ip<br>
> connection to you was trustworthy. government agencies and contractors<br>
> including universities. there was no reason to authenticate or secure it<br>
> at that stage. the idea of netcom or alternet where someone who could<br>
> make tcp/ip sessions toward your server might have nothing to lose (in<br>
> terms of their internet access or their government contract) was rarely<br>
> considered, and when it was considered, one set of folks said it was a<br>
> bad idea and the network should remain mostly closed, and another set of<br>
> folks said it was a great idea and we should not make the rest of<br>
> humanity jump through any special authentication hoops in order to<br>
> access our services. so, all of us were wrong, about everything, but<br>
> differently.<br>
><br>
> --<br>
> P Vixie<br>
> _______<br>
> internet-history mailing list<br>
> <a href="mailto:internet-history@postel.org">internet-history@postel.org</a><br>
> <a href="http://mailman.postel.org/mailman/listinfo/internet-history" rel="noreferrer" target="_blank">http://mailman.postel.org/<wbr>mailman/listinfo/internet-<wbr>history</a><br>
> Contact <a href="mailto:list-owner@postel.org">list-owner@postel.org</a> for assistance.<br>
<br>
<br>
_______<br>
internet-history mailing list<br>
<a href="mailto:internet-history@postel.org">internet-history@postel.org</a><br>
<a href="http://mailman.postel.org/mailman/listinfo/internet-history" rel="noreferrer" target="_blank">http://mailman.postel.org/<wbr>mailman/listinfo/internet-<wbr>history</a><br>
Contact <a href="mailto:list-owner@postel.org">list-owner@postel.org</a> for assistance.<br>
</div></div></blockquote></div><br><br clear="all"><div><br></div>-- <br><div class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr">New postal address:<div>Google<br><div>1875 Explorer Street, 10th Floor</div><div>Reston, VA 20190</div></div></div></div>
</div>