Linux Ready to Upstream Support for Google's PSP Encryption for TCP Connections

https://www.phoronix.com/news/PSP-Encryption-Linux-6.18

44•Bender•4mo ago

Comments

phoronixrly•4mo ago

Source https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net-n...

Documentation https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net-n...

kasabali•4mo ago

Why would Google have encryption for Playstation Portable?

reactordev•4mo ago

Why would you associate Sony with Google?

homarp•4mo ago

psp =psp security protocol = PlayStation Portable security protocol

hence the question

kasabali•4mo ago

Lol, I've decided to look up and saw Wikipedia have 8 entries under computing for PSP acronym, none of them are Google's protocol :D

[0] https://en.wikipedia.org/wiki/PSP#Computing

doublerabbit•4mo ago

Both as evil as each other?

SloopJon•4mo ago

The blog post announcing the PSP Security Protocol as open source:

https://cloud.google.com/blog/products/identity-security/ann...

HN discussion at the time:

https://news.ycombinator.com/item?id=31437033

notherhack•4mo ago

For anyone else who's wondering what PSP is, from the Google spec[1]:

  The PSP Security Protocol (PSP) is a security protocol created by Google for encryption in
  transit. PSP uses several of the concepts from IPsec ESP to provide an encryption
  encapsulation layer on-top of IP that is streamlined and custom-built to address the
  requirements of large-scale data centers.

So "PSP" really is a recursive acronym for "PSP Security Protocol". eyeroll

[1] https://raw.githubusercontent.com/google/psp/main/doc/PSP_Ar...

pkulak•4mo ago

Oh good. They made up an acronym, yet managed to find one of the ones already in the heaviest (computing) use: https://en.wikipedia.org/wiki/PSP

mobilemidget•4mo ago

Should the acronym not be 'PSPSP'? Or that sounds too much like luring a cat?

c45y•4mo ago

It should be exactly that for exactly that reason

IshKebab•4mo ago

Not only that but since they chose a super original and totally not cringeworthy recursive acronym the first letter could have been literally anything.

Ok in fairness it was probably originally something like Paul's Security Protocol and they felt that that wasn't professional enough or something.

Polizeiposaune•4mo ago

It appears to be referred to as the "Paddywhack Security Protocol" in some documents:

https://dl.acm.org/doi/10.1145/3708821.3710829

https://csrc.nist.gov/CSRC/media/projects/cryptographic-modu...

https://github.com/opencomputeproject/OCP-NET-Falcon

IshKebab•4mo ago

Good sleuthing. What a weird name, I wonder where it came from. The nursery rhyme somehow?

Veserv•4mo ago

While PSP seems like a reasonable protocol on its own, it is such a prime example of the left hand not knowing what the right is doing.

QUIC (over UDP) also requires encryption at its protocol layer in addition to encoding a encryption context identifier that is comparable, but non-compatible with the PSP header. So, a implementation that properly conforms to both standards would double encrypt the same data and send redundant headers/identifiers with no added security.

They could relatively easily restructure QUIC and PSP to be fully compatible, letting PSP do connection identification and encryption and then layering QUIC framing on top. But no. What a mess.

Show HN: Mermaid Formatter – CLI and library to auto-format Mermaid diagrams

RFCs vs. READMEs: The Evolution of Protocols

Kanchipuram Saris and Thinking Machines

Chinese chemical supplier causes global baby formula recall

I've used AI to write 100% of my code for a year as an engineer

Looking for 4 Autistic Co-Founders for AI Startup (Equity-Based)

AI-native capabilities, a new API Catalog, and updated plans and pricing

What changed in tech from 2010 to 2020?

From Human Ergonomics to Agent Ergonomics

Advanced Inertial Reference Sphere

Toyota Developing a Console-Grade, Open-Source Game Engine with Flutter and Dart

Typing for Love or Money: The Hidden Labor Behind Modern Literary Masterpieces

Show HN: A longitudinal health record built from fragmented medical data

CoreWeave's $30B Bet on GPU Market Infrastructure

Creating and Hosting a Static Website on Cloudflare for Free

"The Stanford scam proves America is becoming a nation of grifters"

Elon Musk on Space GPUs, AI, Optimus, and His Manufacturing Method

X (Twitter) is back with a new X API Pay-Per-Use model

Zlob.h 100% POSIX and glibc compatible globbing lib that is faste and better

Show HN: Deterministic signal triangulation using a fixed .72% variance constant

Scientists Discover Levitating Time Crystals You Can Hold, Defy Newton’s 3rd Law

When Michelangelo Met Titian

Solving NYT Pips with DLX

Baldur's Gate to be turned into TV series – without the game's developers

Interview with 'Just use a VPS' bro (OpenClaw version) [video]

EchoJEPA: Latent Predictive Foundation Model for Echocardiography

Disablling Go Telemetry

Effective Nihilism

The UK government didn't want you to see this report on ecosystem collapse

No 10 blocks report on impact of rainforest collapse on food prices