Re: [cnit] [stir] draft-peterson-stir-threats-00.txt
Stephen Kent <kent@bbn.com> Thu, 07 November 2013 17:18 UTC
Return-Path: <kent@bbn.com>
X-Original-To: cnit@ietfa.amsl.com
Delivered-To: cnit@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AABB721E811D for <cnit@ietfa.amsl.com>; Thu, 7 Nov 2013 09:18:46 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -106.535
X-Spam-Level:
X-Spam-Status: No, score=-106.535 tagged_above=-999 required=5 tests=[AWL=0.063, BAYES_00=-2.599, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-4, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZPKhK5HQx26g for <cnit@ietfa.amsl.com>; Thu, 7 Nov 2013 09:18:41 -0800 (PST)
Received: from smtp.bbn.com (smtp.bbn.com [128.33.1.81]) by ietfa.amsl.com (Postfix) with ESMTP id 563A121F9343 for <cnit@ietf.org>; Thu, 7 Nov 2013 09:18:26 -0800 (PST)
Received: from dommiel.bbn.com ([192.1.122.15]:34104 helo=fritz.local) by smtp.bbn.com with esmtp (Exim 4.77 (FreeBSD)) (envelope-from <kent@bbn.com>) id 1VeTDs-000Glx-At for cnit@ietf.org; Thu, 07 Nov 2013 12:18:24 -0500
Message-ID: <527BCB5F.1080001@bbn.com>
Date: Thu, 07 Nov 2013 12:18:23 -0500
From: Stephen Kent <kent@bbn.com>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.7; rv:24.0) Gecko/20100101 Thunderbird/24.1.0
MIME-Version: 1.0
To: cnit@ietf.org
References: <B4C06A5710F0ED4583B3CF5E9C6B21D855159DAC@PDAWM10A.ad.sprint.com> <CE9EE40A.2DA2E%fmousinh@cisco.com> <013601cedaf3$a05d72f0$e11858d0$@shockey.us> <0FDE6309-92B1-4031-AF72-2EDC11A5FE9E@brianrosen.net> <02e301cedb34$af790790$0e6b16b0$@shockey.us> <8285AA4C-2E08-46F7-B3A3-892FF793486E@brianrosen.net> <B4C06A5710F0ED4583B3CF5E9C6B21D85515B88F@PDAWM10A.ad.sprint.com> <E6A16181E5FD2F46B962315BB05962D01FC237B6@fcc.gov>
In-Reply-To: <E6A16181E5FD2F46B962315BB05962D01FC237B6@fcc.gov>
Content-Type: multipart/alternative; boundary="------------020501010107010508000703"
Subject: Re: [cnit] [stir] draft-peterson-stir-threats-00.txt
X-BeenThere: cnit@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Calling Name Identity Trust discussion list <cnit.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cnit>, <mailto:cnit-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/cnit>
List-Post: <mailto:cnit@ietf.org>
List-Help: <mailto:cnit-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cnit>, <mailto:cnit-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 07 Nov 2013 17:18:46 -0000
Henning, > As a thought experiment, Kumiko Ono and I had published a draft > > http://tools.ietf.org/html/draft-ono-dispatch-attribute-validation-00 > > to allow third parties to validate property information. If the > validating party (e.g., a bank regulator) is willing to sign a > certificate, similar in spirit to the framed gold-leaf diplomas in > your dentist's office or, more lowly, to the health departments rating > in a restaurant window, and it can be tied to a phone number, this > shouldn't be too hard. > > It's a bit harder if the certifying authority (regulator, Realtor > board, local bar association, ...) is not involved. > The tricky part is ensuring that a certificate (using the term broadly) issued by some organization is not interpreted by relying parties as meaning more than it should. It is not clear to me that most entities are good choices for the binding of a name to a phone number. In part this is because these entities do not consider the phone number to be a critical aspect of the attributes for which they vouch. My dentist's diploma is valid irrespective of the location (much less the phone number) for his office. BTW, as the geographic boundaries for area code change, phone numbers change. My home didn't move and it took a while for many of the records held by other parties to be updated. So, no, I would not rely on many parties of the sort you seem to suggest, to issue a credential binding my name to a phone nmber Steve
- Re: [cnit] [stir] draft-peterson-stir-threats-00.… Richard Shockey
- Re: [cnit] [stir] draft-peterson-stir-threats-00.… Brian Rosen
- Re: [cnit] [stir] draft-peterson-stir-threats-00.… Gorman, Pierce A [NTK]
- Re: [cnit] [stir] draft-peterson-stir-threats-00.… Brian Rosen
- Re: [cnit] [stir] draft-peterson-stir-threats-00.… Henning Schulzrinne
- Re: [cnit] [stir] draft-peterson-stir-threats-00.… Richard Shockey
- Re: [cnit] [stir] draft-peterson-stir-threats-00.… Michael Hammer
- Re: [cnit] [stir] draft-peterson-stir-threats-00.… Henning Schulzrinne
- Re: [cnit] [stir] draft-peterson-stir-threats-00.… Brian Rosen
- Re: [cnit] [stir] draft-peterson-stir-threats-00.… Henning Schulzrinne
- Re: [cnit] [stir] draft-peterson-stir-threats-00.… Gorman, Pierce A [NTK]
- Re: [cnit] [stir] draft-peterson-stir-threats-00.… Michael Hammer
- Re: [cnit] [stir] draft-peterson-stir-threats-00.… Brian Rosen
- Re: [cnit] [stir] draft-peterson-stir-threats-00.… Henning Schulzrinne
- Re: [cnit] [stir] draft-peterson-stir-threats-00.… Stephen Kent
- Re: [cnit] [stir] draft-peterson-stir-threats-00.… Michael Hammer
- Re: [cnit] [stir] draft-peterson-stir-threats-00.… Henning Schulzrinne
- Re: [cnit] [stir] draft-peterson-stir-threats-00.… Brian Rosen
- Re: [cnit] [stir] draft-peterson-stir-threats-00.… Gorman, Pierce A [NTK]
- Re: [cnit] [stir] draft-peterson-stir-threats-00.… Stephen Kent
- Re: [cnit] [stir] draft-peterson-stir-threats-00.… Henning Schulzrinne
- Re: [cnit] [stir] draft-peterson-stir-threats-00.… Brian Rosen
- Re: [cnit] [stir] draft-peterson-stir-threats-00.… Richard Shockey
- Re: [cnit] [stir] draft-peterson-stir-threats-00.… Stephen Kent
- Re: [cnit] [stir] draft-peterson-stir-threats-00.… Stephen Kent
- Re: [cnit] [stir] draft-peterson-stir-threats-00.… Brian Rosen
- Re: [cnit] [stir] draft-peterson-stir-threats-00.… Stephen Kent