Spitballing IoT Security

tim at pelican.org tim at pelican.org
Thu Oct 27 08:53:31 UTC 2016

On Thursday, 27 October, 2016 00:40, "Ronald F. Guilmette" <rfg at tristatelogic.com> said:

> Point:  I have a DSL line which is limited to 6Mbps down and 756Kbps up.
> My guess is that if any typical/average user is seen to be using more
> than, say, 1/10 of that amount of "up" bandwidth in any one given 10
> minute time period, then something is really really REALLY wrong.

This sounds like a horrible view of the Internet as "TV, only with more funny cat pictures", where most users are in a second-tier that is only expected / allowed to consume.

One of the reasons I'm very grateful for FTTC / VDSL is that I can finally get a useful upstream speed.  Going from 10-14M downstream to 80M was very nice, but going from 1M to 20M upstream was an absolute game-changer.

I back up to the cloud - and there are plenty of services that allow regular, non-technical users to do this.  The initial run saturated my upstream for days, and the incrementals are sometimes 20 or 30 minute bursts.  I wouldn't even have tried on ADSL.

Every time I get back from a day out, or even more so from a holiday, I upload the photos from my PC to one or more cloud services.  I'll max my uplink for anywhere between 10 minutes and an hour - on the old ADSL, it was easily an overnight task.

Working from home, I can now work directly with files on network shares, rather than copying everything to the laptop before I leave the office and trying to sync changes when I get back.  I know the exact figures for this case, but there are a *lot* of spikes over the course of a day.  With ADSL, I could go and make tea every time I needed to save a large Word doc or Powerpoint back to the network.  On top of that, I can spend anything up to 3 or 4 hours in videoconferences, which will have a steady stream of a few hundred Kb/s.

Spotting atypical (or ideally malicious) traffic is a valid goal, but I think we need to be a whole lot smarter than "customer is using upstream".


More information about the NANOG mailing list