IETF Logo Mail Archive

Re: [arch-d] IAB Statement on Encryption and Mandatory Client-side Scanning of Content

Mallory Knodel <mknodel@cdt.org> Mon, 18 December 2023 20:17 UTC

Return-Path: <mknodel@cdt.org>
X-Original-To: architecture-discuss@ietfa.amsl.com
Delivered-To: architecture-discuss@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2E828C14CF1E for <architecture-discuss@ietfa.amsl.com>; Mon, 18 Dec 2023 12:17:37 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.105
X-Spam-Level:
X-Spam-Status: No, score=-7.105 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cdt.org
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dxS0L-ws0L3X for <architecture-discuss@ietfa.amsl.com>; Mon, 18 Dec 2023 12:17:33 -0800 (PST)
Received: from mail-wr1-x436.google.com (mail-wr1-x436.google.com [IPv6:2a00:1450:4864:20::436]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0A66BC14E515 for <architecture-discuss@ietf.org>; Mon, 18 Dec 2023 12:17:32 -0800 (PST)
Received: by mail-wr1-x436.google.com with SMTP id ffacd0b85a97d-3365e85a4easo2232072f8f.1 for <architecture-discuss@ietf.org>; Mon, 18 Dec 2023 12:17:32 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cdt.org; s=google; t=1702930651; x=1703535451; darn=ietf.org; h=content-transfer-encoding:in-reply-to:from:references:cc:to :content-language:subject:user-agent:mime-version:date:message-id :from:to:cc:subject:date:message-id:reply-to; bh=F+Vqn+PCm4TUhwFo1Tk/A/q3RAr7uTrGIie+LQS+KaQ=; b=qiB5Ijqei9vD4EWeO9npoXIHa+Fm4rHQheF5qyaQbIOXeY4qEQKiMRkoY73D5ZNbaj j0Og/OlnyyczaUR/2oaWGp5QbXRu7puJMwh872btbI3SFV0VtUzaMIc58WS30WqeWjQp BYGP4ejIjuFWhTXt1J1SfT2/7NvUVtD3N+u7c=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1702930651; x=1703535451; h=content-transfer-encoding:in-reply-to:from:references:cc:to :content-language:subject:user-agent:mime-version:date:message-id :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=F+Vqn+PCm4TUhwFo1Tk/A/q3RAr7uTrGIie+LQS+KaQ=; b=WimG35fv8GSXrLtq4ylXvl4vK6q+vPpWKRhS7jQy3zLcELBbRMJXvhVienNcurnh1r iLUC0J3gz2bMfPtS7MCerXecMCCwRc+JjFErYzi6/zftjJasjxp4flMO2Mv+ZXeXh2i8 nTmZ+8jxkHSWTTvYdfxj3T3JhzdMsMAk71hL7tp3BcxVv77T3Wt2SL/hCTnDtFCKUGvX hJpoHl45z4KlChsSeNsVyWQV3ozVEjWQ33NMKaISQqRo2SAV8DE66DSWRRKsWayn+kVO +FXvo5Viuazbv9XA5i4DQgI97bPVgGouDW8cpIQHv5gxen5a7WEOW5BWXiEEyOKaHbPv j6Ww==
X-Gm-Message-State: AOJu0YwvZTvSJr3H6b4Taq5LvhDzCBe5GcEB/YWhhY0XXbNoEgOzN6On HQio+SLBkOGq+goJO/1dw0PHtQ==
X-Google-Smtp-Source: AGHT+IGLHAjYVubp5YZKMbD8t7dr4ZAHmxf5s9dF83HTM2gKehDX0rFiALEJPnlEZQ0pIn6B2MvIKQ==
X-Received: by 2002:a5d:5f93:0:b0:336:6602:1b5 with SMTP id dr19-20020a5d5f93000000b00336660201b5mr1943211wrb.133.1702930650871; Mon, 18 Dec 2023 12:17:30 -0800 (PST)
Received: from [172.18.30.84] (p50999264.dip0.t-ipconnect.de. [80.153.146.100]) by smtp.gmail.com with ESMTPSA id m16-20020a056000009000b003366811fd6bsm3713945wrx.14.2023.12.18.12.17.29 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Mon, 18 Dec 2023 12:17:30 -0800 (PST)
Message-ID: <fadd9250-4b31-4bf5-aa76-4f37d24fd650@cdt.org>
Date: Mon, 18 Dec 2023 15:17:25 -0500
MIME-Version: 1.0
User-Agent: Mozilla Thunderbird
Content-Language: en-US
To: Brian E Carpenter <brian.e.carpenter@gmail.com>, Andrew Campling <andrew.campling@419.consulting>, George Michaelson <ggm@algebras.org>
Cc: "iab@iab.org" <iab@iab.org>, "architecture-discuss@ietf.org" <architecture-discuss@ietf.org>, S Moonesamy <sm+ietf@elandsys.com>
References: <170266952162.33107.14325064798861197261@ietfa.amsl.com> <6.2.5.6.2.20231216110256.18d0acd0@elandnews.com> <CWXP265MB5153610FBB98A7B06AF81040C290A@CWXP265MB5153.GBRP265.PROD.OUTLOOK.COM> <CAKr6gn2Hf4N+DgKHKyO+i3T3OJyYRBJhH1AdQf-uXZ0xKmJ4Eg@mail.gmail.com> <CWXP265MB515381523714FF99524410CFC290A@CWXP265MB5153.GBRP265.PROD.OUTLOOK.COM> <790032a6-24f6-60d1-fb60-4b44bd447bde@gmail.com>
From: Mallory Knodel <mknodel@cdt.org>
In-Reply-To: <790032a6-24f6-60d1-fb60-4b44bd447bde@gmail.com>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/architecture-discuss/U85FVv4CnEDeRRLQlFrrD3sW8Cw>
Subject: Re: [arch-d] IAB Statement on Encryption and Mandatory Client-side Scanning of Content
X-BeenThere: architecture-discuss@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: open discussion forum for long/wide-range architectural issues <architecture-discuss.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/architecture-discuss>, <mailto:architecture-discuss-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/architecture-discuss/>
List-Post: <mailto:architecture-discuss@ietf.org>
List-Help: <mailto:architecture-discuss-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/architecture-discuss>, <mailto:architecture-discuss-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 18 Dec 2023 20:17:37 -0000

Hi,

On 12/18/23 2:22 PM, Brian E Carpenter wrote:
> Andrew,
>
> On 18-Dec-23 23:43, Andrew Campling wrote:
>
> ...
>> Reflecting further on the IAB statement, I do believe that the lack 
>> of inclusion of a clear definition of client-side scanning within the 
>> IAB's statement is problematic. I suspect that the real issue relates 
>> to the results of that scanning being shared with a third party 
>> without the knowledge of the user rather than the scanning per se.
>
> The statement is about *mandatory* scanning, which clearly implies 
> that an official third party is involved.
>
> IMHO, it should be my choice whether my email agent is set up to 
> detect occurrences of "Scunthorpe" in incoming email. Alternatively, 
> it should be my choice whether my mail service provider performs that 
> check for me. But none of this is a protocol issue, or a protocol 
> security issue, so however bad one believes the societal harm to be, 
> I'm at a loss to see why it's an IETF issue.
>
I just came back here to address the scanning, too. This line that 
client-side scanning "isn't well defined" or "means too many things" is 
just utter smoke and mirrors. Quite the opposite-- because there are so 
many ways to violate a person's civil liberties by breaking into their 
agents and devices means that *all* of them are to be rejected, early 
and often, despite their inner workings.

-Mallory

> The IAB statement is about the effect of specific government 
> requirements that "undermine end-to-end encryption", and that *is* a 
> protocol security issue, so it's a legitimate topic for the IAB and 
> the IETF.
>
>     Brian
>
> _______________________________________________
> Architecture-discuss mailing list
> Architecture-discuss@ietf.org
> https://www.ietf.org/mailman/listinfo/architecture-discuss

-- 
Mallory Knodel
CTO :: Center for Democracy and Technology
newsletter :: https://internet.exchangepoint.tech

v2.23.0 | Report a Bug | By Email