IETF Logo Mail Archive

Re: [Bimi] (non)desire for bimi

Dave Crocker <dhc@dcrocker.net> Mon, 18 February 2019 16:45 UTC

Return-Path: <dhc@dcrocker.net>
X-Original-To: bimi@ietfa.amsl.com
Delivered-To: bimi@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 411B81277CC for <bimi@ietfa.amsl.com>; Mon, 18 Feb 2019 08:45:05 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.4
X-Spam-Level:
X-Spam-Status: No, score=-2.4 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_INVALID=0.1, DKIM_SIGNED=0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=fail (1024-bit key) reason="fail (message has been altered)" header.d=dcrocker.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jFj3uqX3C_nl for <bimi@ietfa.amsl.com>; Mon, 18 Feb 2019 08:45:02 -0800 (PST)
Received: from simon.songbird.com (simon.songbird.com [72.52.113.5]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 799571277D2 for <bimi@ietf.org>; Mon, 18 Feb 2019 08:45:02 -0800 (PST)
Received: from [192.168.1.85] (108-226-162-63.lightspeed.sntcca.sbcglobal.net [108.226.162.63]) (authenticated bits=0) by simon.songbird.com (8.14.4/8.14.4/Debian-4.1ubuntu1.1) with ESMTP id x1IGkNr4004478 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=NOT); Mon, 18 Feb 2019 08:46:24 -0800
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=dcrocker.net; s=default; t=1550508384; bh=f15MC9q0vElbqj2sLx7Ja3m4mGkGJ9runMSb++1F6eA=; h=Subject:To:Cc:References:From:Reply-To:Date:In-Reply-To:From; b=VwPz+ADZQGpze8uK+QNifbGU2H2W0kc8dtPUsrFwpfAp3w4oTZ14/1iUXA5plUGCc cWGIE4dv+Q/r1qYaZ+tXMJ83UawvnlMpcAb5XGqIYWGfb+zSdPQgwaIA4y2IEE12+4 ZHIFETvWivbjADbJzMpxYSF/yOLfCuHkj+hz6i4w=
To: Thede Loder <thede=40skyelogicworks.com@dmarc.ietf.org>, Stephen Farrell <stephen.farrell@cs.tcd.ie>, Terry Zink <tzink@terryzink.com>
Cc: "bimi@ietf.org" <bimi@ietf.org>
References: <aa919aeb-caa1-6494-259d-a553b238c268@cs.tcd.ie> <BL0PR11MB3107712FFFD2D92E911B909DA9670@BL0PR11MB3107.namprd11.prod.outlook.com> <17a79377-587a-c1fa-5927-23712ef15227@cs.tcd.ie> <751D273E-3813-442C-98C4-BC0212093E37@skyelogicworks.com>
From: Dave Crocker <dhc@dcrocker.net>
Reply-To: dcrocker@bbiw.net
Organization: Brandenburg InternetWorking
Message-ID: <c8b2f5e7-bdff-bd21-1859-7046136a5911@dcrocker.net>
Date: Mon, 18 Feb 2019 08:44:49 -0800
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:60.0) Gecko/20100101 Thunderbird/60.5.0
MIME-Version: 1.0
In-Reply-To: <751D273E-3813-442C-98C4-BC0212093E37@skyelogicworks.com>
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Language: en-US
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/bimi/WyoboQvIHVg5AVRICX9dJY9PFH8>
Subject: Re: [Bimi] (non)desire for bimi
X-BeenThere: bimi@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Brand Indicators for Message Identification <bimi.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bimi>, <mailto:bimi-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bimi/>
List-Post: <mailto:bimi@ietf.org>
List-Help: <mailto:bimi-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bimi>, <mailto:bimi-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 18 Feb 2019 16:45:05 -0000

On 2/18/2019 8:31 AM, Thede Loder wrote:
>> On Feb 14, 2019, at 13:44, Stephen Farrell <stephen.farrell@cs.tcd.ie> wrote:
> Hi Stephen,
> 
> Knowing your personal dislike of HTML-based email, and also that ~1 billion
> people read HTML email messages each day, many of whom like seeing
> graphics, tables, and other mark up, would you have proposed back when
> it was being considered for standardiation that it should never be developed
> or standardized?

Thede,

This seems to be in the "what about" realm of responding to criticism by 
raising a purportedly related hypothetical.  That response mode 
typically seeks to dilute the original criticism.  In effect in this 
case, it seems to suggest that no one should ever worry about new 
security attack surfaces.

At the least, it certainly does not respond to the concern about the 
attack surface that was cited.


>> Yes I do indeed fear that bimi could and would be (ab)used by
>> some services to do more such dis-service. ISTM that damages
>> the mail environment rather than enhances it.
> 
> Your fear is justifiable.
> 
> One can imagine future anti-spam or anti-fraud systems. 

Sorry.  I am not understanding how the hypothetical that followed is 
relevant.  Please explain.


> I think the relevant question is:
> 
> If BIMI adoption contributes to a shift in the norms and certain costs
> associated with effectively using applicable existing media, on the
> balance, have we made these media better for the actors we care
> about?

What norms?  What costs?  How will it do either?



d/

-- 
Dave Crocker
Brandenburg InternetWorking
bbiw.net

v2.23.0 | Report a Bug | By Email