Behind Live Mesh: Authorization and encryption

anyone else in the Mesh? - Page 8 - StrafeRight Forums

anyone else in the Mesh? - Page 8 - StrafeRight Forums — Fri, 30 May 2008 00:10:38 GMT

PingBack from http://www.straferight.com/forums/pc-hardware-software/177232-anyone-else-mesh-8.html#post2554807

Authorization And Encryption In Live Mesh

//steve clayton: geek in disguise — Fri, 30 May 2008 06:55:59 GMT

digg_url = 'http://blogs.msdn.com/stevecla01/archive/2008/05/30/authorization-and-encryption-in-live-mesh.aspx';

re: Behind Live Mesh: Authorization and encryption

ashok hingorani — Mon, 02 Jun 2008 09:38:22 GMT

The unasked question is how is data saved on each device - in Groove this data is fragmented and encrypted and cannot be "found" - so if i add a file called ashok.doc to a workspace no document with this filename will be found on the local hard disk

as far as we can see from current trials mesh simply dumps an unencrypted file in a shared folder, whcih can be accessed without mesh intervention hence zero security compared to groove.

i am one of the oldest groove users and MVP so my questions are biased towards something that does it right and new stuff must come up to that standard at least ?

re: Behind Live Mesh: Authorization and encryption

nsmoly — Mon, 02 Jun 2008 18:22:58 GMT

Mesh does not split files nor encrypt them on local hard drives at the moment. I think this is OK for most of people, but you are right that there are special cases where it needs to be even more secure. I guess this feature may be added in the future, based on customer feedback. So Mesh will be able to operate in the "normal" security mode and in the "hightened" security mode.

re: Behind Live Mesh: Authorization and encryption

iceanfire — Tue, 03 Jun 2008 22:05:04 GMT

Hi,

i'm wondering why the process wlcrasvc.exe doesn't quit?

When I first saw it I thought it was malware (nice job naming it) and tried pretty hard to end the task but it kept popping up. I then checked the registry and found out it was a live mesh ware...but kept running despite the fact I had quit the moe client on my pc.

re: Behind Live Mesh: Authorization and encryption

jsbenjamin — Wed, 04 Jun 2008 20:21:36 GMT

@iceanfire

This is the service that supports Live Mesh Remote Desktop. It runs as a service by design, so that you’re able to use remote desktop when another user is logged in to Live Mesh (or no user is logged in.) It’s configured as an auto-start service, so killing the process means a new one just starts up in its place. If you wish to temporarily disable the service, you can do “net stop wlcrasvc” from an elevated command prompt. To prevent the service from running, open the Services control panel and set the Startup Type for “Live Mesh Remote Desktop” service to Disabled. If the service is not running, though, you will not be able to connect to the computer remotely using Live Mesh.

re: Behind Live Mesh: Authorization and encryption

Craig — Mon, 09 Jun 2008 22:53:47 GMT

How is it possible that Apple is able to make their MobileMe work on Mac/PC and have their iDisk Show up as a mapped network drive in Windows yet Microsoft cant even figure out how to do this yet in SkyDrive or Mesh with their own technology (windows). Let alone getting it to work in a mac environment

re: Behind Live Mesh: Authorization and encryption

Erik — Tue, 10 Jun 2008 00:31:46 GMT

Have you heard, instead of thorough betas and public testing...

Apple is just magically revealing their me.com, I geuss our me(sh).com is sneakier in name alone.

A comparable product, that I hope gets dumptrucked after release and outgunned by mesh and mesh mobile :)

re: Behind Live Mesh: Authorization and encryption

Craig — Tue, 10 Jun 2008 19:57:45 GMT

In response to Erik,

Hardly a comparable product, in my opinion Apples MobileMe is far superior. You get Push calendar, Push email, push contacts, and synching of photos and idisk. And they are EASY to use. MobileMe is available in July and is a complete product - ie Not in beta like all the Windows Live offerings.

1) To get the same functionality on windows you have to sign into Hotmail, Live Spaces,Skydrive, sign up for Mesh tech preview, participate in the Live Calendar beta and have the Live Mobile client installed on your phone.

All these windows services are not easily accessable from a single interface that is easy to use

2) Live Calendar doesnt work with Windows Mobile, so theres no Push Calendaring there. Nor does Live Calendar work on the Live Mail Desktop client

3) iDisk has the ability to map as a network drive in windows and mac. Skydrive does neither.

4) None of the Windows Live stuff works on mac.

I was a real windows fan, but im getting tired of all these Windows Live products that have no cohesion and are difficult to use together. Who is running this ship?

re: Behind Live Mesh: Authorization and encryption

Chris — Wed, 11 Jun 2008 05:30:23 GMT

@Craig

I second this. Now, granted, LiveMesh is still in beta status, but it would be great if all of these things worked together instead of these tiny little islands that they currently are.

I'm still using Google for almost everything, but if all this Live stuff starts to integrate more between the different peices, I'll have a good reason to move.

re: Behind Live Mesh: Authorization and encryption

Bruce — Wed, 11 Jun 2008 07:50:46 GMT

Craig, I'm sorry that our Live suite has been a disappointment to you so far. We're continually refining and improving our products and their integration, so I hope you come back occasionally to give us another look. You're right that the Live suite is more directly comparable to Mobile.Me than our mesh technology preview, which is more of an early platform demo.

re: Behind Live Mesh: Authorization and encryption

Pablo — Thu, 12 Jun 2008 14:47:31 GMT

how can I try the Live mesh? I already sumit my participation throught the connect web site but no response. I have a lot of devices to sync and I wish try the live mesh :-)

re: Behind Live Mesh: Authorization and encryption

Michael Herman (Parallelspace) — Mon, 16 Jun 2008 15:41:32 GMT

Why is Desktop.ini not synchronized between machines? is there an alternate way to customize the icon for each of my Mesh-managed folders?

Michael Herman

re: Behind Live Mesh: Authorization and encryption

jsbenjamin — Mon, 16 Jun 2008 22:06:41 GMT

@Michael Herman

If you haven't done so already, you might want to visit our forums, particularly our Wish List sticky thread where you can throw in your vote for different features (such as customized icons).

http://forums.community.microsoft.com/en/LiveMesh/threads

re: Behind Live Mesh: Authorization and encryption

anonymous — Wed, 18 Jun 2008 08:50:27 GMT

The protocol looks very similar to SSL ,with assymetric keys used to negotiate a symmetric keys and then moving ahead from there.

But you go on to add that the relay can't see the data. Few questions :

Can HTTPS be used from me to relay and relay to other client?

if relay can't read data, you seem to have cracked message level encryption (unlike SSL which is envelope level encryption) , can you give us more details on what you have done? I can't wait for you guys to release this into markets and let loose the hax0rs on this .

re: Behind Live Mesh: Authorization and encryption

Mohamed — Thu, 19 Jun 2008 07:31:47 GMT

me.com is $99 a year, I don't think Microsoft is going to charge you for it, Apple rip you off first.

Let's give them time to do it right, and then we judge them.

re: Behind Live Mesh: Authorization and encryption

Joby Kent — Mon, 23 Jun 2008 11:52:54 GMT

I think it's really brilliant to see Microsoft services becoming "Good" again. Companies which want to be a top company, will be doing new "Cloud" services. I think Live Mesh is a totally nice fresh idea which - I think should/will be in the next Windows. I hope the same for Sidebar, integrated into Windows Explorer.

Keep it coming MS.

re: Behind Live Mesh: Authorization and encryption

jsbenjamin — Tue, 24 Jun 2008 22:27:07 GMT

@anonymous

You are right that the protocol is similar to SSL, in the sense that we use asymmetric key pairs to bootstrap a negotiation of a symmetric session key, which is used to encrypt data. In our case, the negotiation is between client devices, and since no one but the client knows the client’s private key, the cloud can’t intercept or interpret any of the traffic, including the data exchange. This is true of direct P2P traffic, as well as relayed traffic. To take your analogy with SSL one step further: often SSL goes from a client to the server via a proxy. The proxy can forward traffic in either direction, but cannot decrypt it. In the same way, our relays can forward data between clients, but cannot crack the data.

SMU talk on pervasive computing

Evangelism Rythms.... — Wed, 03 Sep 2008 06:47:51 GMT

Hi All, Yesterday, I along with Chris ( from my team) delivered a talk onpervasive computing in a classroom

Behind Live Mesh: The Pub-Sub System

Live Mesh — Thu, 09 Oct 2008 06:34:05 GMT

Hey there! I’m Viraj Mody , a developer on the Live Mesh services team. I bet some of you are curious