IETF Logo Mail Archive

Re: [Din] WSJ article on Identity and Blockchains

Thomas Hardjono <hardjono@mit.edu> Wed, 11 April 2018 14:38 UTC

Return-Path: <hardjono@mit.edu>
X-Original-To: din@ietfa.amsl.com
Delivered-To: din@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 696BE1241F3 for <din@ietfa.amsl.com>; Wed, 11 Apr 2018 07:38:01 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.201
X-Spam-Level:
X-Spam-Status: No, score=-4.201 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HYEo_UAUCFRG for <din@ietfa.amsl.com>; Wed, 11 Apr 2018 07:37:59 -0700 (PDT)
Received: from dmz-mailsec-scanner-8.mit.edu (dmz-mailsec-scanner-8.mit.edu [18.7.68.37]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 878F9120725 for <din@irtf.org>; Wed, 11 Apr 2018 07:37:58 -0700 (PDT)
X-AuditID: 12074425-e43ff7000000696f-4a-5ace1dc3f0d6
Received: from mailhub-auth-2.mit.edu ( [18.7.62.36]) (using TLS with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by dmz-mailsec-scanner-8.mit.edu (Symantec Messaging Gateway) with SMTP id F6.2F.26991.4CD1ECA5; Wed, 11 Apr 2018 10:37:57 -0400 (EDT)
Received: from outgoing-exchange-3.mit.edu (OUTGOING-EXCHANGE-3.MIT.EDU [18.9.28.13]) by mailhub-auth-2.mit.edu (8.13.8/8.9.2) with ESMTP id w3BEbp2D016708; Wed, 11 Apr 2018 10:37:52 -0400
Received: from w92exedge4.exchange.mit.edu (W92EXEDGE4.EXCHANGE.MIT.EDU [18.7.73.16]) by outgoing-exchange-3.mit.edu (8.13.8/8.12.4) with ESMTP id w3BEbkR6023728; Wed, 11 Apr 2018 10:37:49 -0400
Received: from W92EXHUB15.exchange.mit.edu (18.7.73.26) by w92exedge4.exchange.mit.edu (18.7.73.16) with Microsoft SMTP Server (TLS) id 15.0.1293.2; Wed, 11 Apr 2018 10:37:44 -0400
Received: from OC11EXPO33.exchange.mit.edu ([169.254.1.111]) by W92EXHUB15.exchange.mit.edu ([18.7.73.26]) with mapi id 14.03.0352.000; Wed, 11 Apr 2018 10:37:46 -0400
From: Thomas Hardjono <hardjono@mit.edu>
To: David Mazieres expires 2018-07-09 PDT <mazieres-aty9ij5833stt63zi94a3ei2hi@temporary-address.scs.stanford.edu>, Brian E Carpenter <brian.e.carpenter@gmail.com>, "din@irtf.org" <din@irtf.org>
Thread-Topic: [Din] WSJ article on Identity and Blockchains
Thread-Index: AQHTzcUHgLU9VkLMR0+I6ZGjg4OG6aP28xeAgADGQICAADbKgIACSeiTgAC+6wCAAK6h9g==
Date: Wed, 11 Apr 2018 14:37:46 +0000
Message-ID: <5E393DF26B791A428E5F003BB6C5342AE7408B6D@OC11EXPO33.exchange.mit.edu>
References: <5E393DF26B791A428E5F003BB6C5342AE73F70FC@OC11EXPO33.exchange.mit.edu> <E1f57in-0004gH-Gx@mta0.cl.cam.ac.uk> <CAPaG1Amqd8DehMpvht8zEPzqHg00wqYcUDXb0g-bQebTvbXWzw@mail.gmail.com> <fb88b314-c402-7f39-79ea-01c46fdf16ec@gmail.com> <5E393DF26B791A428E5F003BB6C5342AE7404E4C@OC11EXPO33.exchange.mit.edu>, <87h8oimwux.fsf@ta.scs.stanford.edu>
In-Reply-To: <87h8oimwux.fsf@ta.scs.stanford.edu>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [18.9.1.94]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFrrKKsWRmVeSWpSXmKPExsUixG6nontU9lyUwbnnQhZtF/cxWSz9uJfF YupGcwdmj52z7rJ7TN54mM3j0t9tTAHMUVw2Kak5mWWpRfp2CVwZ19vusxT0C1fMPLiIuYHx F18XIweHhICJxPSe7C5GLg4hgcVMElPm3maHcA4wStzasZcRwjnGKPH09X0oZwejxLRjfcwQ zmpGifX/3gD1cHKwCWhItP3oBbNFBG4wSpxqUwCxhQWsJNbfW88Gsk9EwFpiz/JwCDNM4tXy NJAKFgFViQlP3zOBhHkFgiT2N0pBTH/EJNG9aBEzSA2ngKHExEuTWEFsRgExie+n1jCB2MwC 4hK3nswHsyUEBCUWzd7DDGGLSfzb9ZANwpaVaPl8kxWiXkdiwe5PbBC2tsSyha/B6nmBek/O fMIygVF8FpKxs5C0zELSMgtJywJGllWMsim5Vbq5iZk5xanJusXJiXl5qUW6Fnq5mSV6qSml mxjBseeiuoNxzl+vQ4wCHIxKPLwXbp2JEmJNLCuuzD3EKMnBpCTKe4D7XJQQX1J+SmVGYnFG fFFpTmrxIUYJDmYlEd6jv89GCfGmJFZWpRblw6SkOViUxHkX798bJSSQnliSmp2aWpBaBJOV 4eBQkuANkAEaKliUmp5akZaZU4KQZuLgBBnOAzQ8DaSGt7ggMbc4Mx0if4pRUUqctx8kIQCS yCjNg+uFpEZPgVeM4kCvCPOWgFTxANMqXPcroMFMQIOP+ZwBGVySiJCSamDUWsRzYvLKVUdf fvOaWvmi+rxjuvfeV7OeBlr/sWfgSux9f6NDXuRpqA/v0zSGFaYXeX1U+wyrdf5+M8qNDCt3 Uar8Jszxj7Fkz7M5R1QWz+G1uX01JEl36iZNESNBgX9i+lM/zPqsyNAk/t8zvX37U17RY1Nr H02yOMR5Y6/tBJ2lGzfWy/QosRRnJBpqMRcVJwIAAORgSmgDAAA=
Archived-At: <https://mailarchive.ietf.org/arch/msg/din/F3Q02VfPeiz6udlO7pKh6e1hmzg>
Subject: Re: [Din] WSJ article on Identity and Blockchains
X-BeenThere: din@irtf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Discussion of distributed Internet Infrastructure approaches, aspects such as Service Federation, and underlying technologies" <din.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/din>, <mailto:din-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/din/>
List-Post: <mailto:din@irtf.org>
List-Help: <mailto:din-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/din>, <mailto:din-request@irtf.org?subject=subscribe>
X-List-Received-Date: Wed, 11 Apr 2018 14:38:01 -0000

Hi David,


>>>   2. We need some notion of a "symbolic link", so that I can name not
>>>        just someone else's key, but someone else's name, as that's very
>>>        powerful.

Yes the symbolic link is needed, but more importantly (and more difficult) is the binding to the owners person.  How do I know that the person Alice for pubkey X is the same Alice who owns pub key Y.


>>> These points of course were ones that many of us were making in the
>>> 1990s.  See, for instance SPKI/SDSI.

Agree, that was Car Ellison's proposal.


>>> The blockchain is useful, but sort of orthogonal to the namespace
>>> itself.  

Agree.


>>> What it provides, that we couldn't do before, is the ability to
>>> voluntarily restrict what you do with your own namespace.  E.g., maybe
>>> you want to delegate a name and then restrict yourself from revoking it
>>> without seven days notice.

Could we use DNSSEC for this? 


-- thomas -- 


________________________________________
From: David Mazieres [dm-list-ietf-ilc@scs.stanford.edu]
Sent: Tuesday, April 10, 2018 8:04 PM
To: Thomas Hardjono; Brian E Carpenter; din@irtf.org
Subject: Re: [Din] WSJ article on Identity and Blockchains

Thomas Hardjono <hardjono@mit.edu> writes:

> Just like there is "autonomous systems" (AS) concept in routing and
> connected via backbone routing, in the area of identity there needs to
> be the equivalent of an AS.

Yes, but obviously AS numbers are centrally allocated and a flat
namespace.  If we are going to have various identity providers, I would
argue we need two things unlike AS numbers:

  1. The identifiers should be self-authenticating (public keys, not
     integers), so allocation is "self-server," and

  2. We need some notion of a "symbolic link", so that I can name not
     just someone else's key, but someone else's name, as that's very
     powerful.

These points of course were ones that many of us were making in the
1990s.  See, for instance SPKI/SDSI.

> So anytime I hear about a global blockchain to rule them all, I cringe
> :-)

The blockchain is useful, but sort of orthogonal to the namespace
itself.  What it provides, that we couldn't do before, is the ability to
voluntarily restrict what you do with your own namespace.  E.g., maybe
you want to delegate a name and then restrict yourself from revoking it
without seven days notice.

David

v2.23.0 | Report a Bug | By Email