[dix] More requirements
"Ben Laurie" <benl@google.com> Fri, 14 July 2006 00:43 UTC
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1G1BmA-0005Fd-Iz; Thu, 13 Jul 2006 20:43:26 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1G1Bm9-0005FY-G5 for dix@ietf.org; Thu, 13 Jul 2006 20:43:25 -0400
Received: from smtp-out.google.com ([216.239.45.12]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1G1Bm6-0000Af-3o for dix@ietf.org; Thu, 13 Jul 2006 20:43:25 -0400
Received: from evilmonkey.corp.google.com (evilmonkey.corp.google.com [172.24.0.124]) by smtp-out.google.com with ESMTP id k6E0hJjo009256 for <dix@ietf.org>; Thu, 13 Jul 2006 17:43:19 -0700
DomainKey-Signature: a=rsa-sha1; s=beta; d=google.com; c=nofws; q=dns; h=received:message-id:date:from:to:subject:mime-version: content-type:content-transfer-encoding:content-disposition; b=LiaOVVCxQburH1Zs1quwnwcHM2LwxaksGOGU2uV8eSZJNAYoabdei9qSicLF67k1/ X8FIytS+IWe8132ADm9+g==
Received: from smtp-out2.google.com (fpe16.prod.google.com [10.253.5.16]) by evilmonkey.corp.google.com with ESMTP id k6E0G3I7006179 for <dix@ietf.org>; Thu, 13 Jul 2006 17:43:15 -0700
Received: by smtp-out2.google.com with SMTP id 16so193409fpe for <dix@ietf.org>; Thu, 13 Jul 2006 17:43:15 -0700 (PDT)
Received: by 10.253.14.20 with SMTP id 20mr936014fpn; Thu, 13 Jul 2006 17:43:15 -0700 (PDT)
Received: by 10.253.14.2 with HTTP; Thu, 13 Jul 2006 17:43:14 -0700 (PDT)
Message-ID: <1b587cab0607131743g36c96314ta9b3a0a90aa871e0@mail.google.com>
Date: Thu, 13 Jul 2006 20:43:14 -0400
From: Ben Laurie <benl@google.com>
To: Digital Identity Exchange <dix@ietf.org>, IETF HTTP Auth <ietf-http-auth@lists.osafoundation.org>
MIME-Version: 1.0
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
X-Spam-Score: 0.0 (/)
X-Scan-Signature: e5ba305d0e64821bf3d8bc5d3bb07228
Cc:
Subject: [dix] More requirements
X-BeenThere: dix@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: Digital Identity Exchange <dix@ietf.org>
List-Id: Digital Identity Exchange <dix.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/dix>, <mailto:dix-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/dix>
List-Post: <mailto:dix@ietf.org>
List-Help: <mailto:dix-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/dix>, <mailto:dix-request@ietf.org?subject=subscribe>
Errors-To: dix-bounces@ietf.org
On the plane to IETF I realised that there were several more potential requirements to add to ekr's list: 12. Single Site Unlinkability (SSU) The user should be able to visit the same site multiple times without the site being able to tell that it is the same user, even if the user is, for example, asserting the same external claims each time. This protects the user's privacy. Obviously if data provided by the user is unique to that user (for example, age and address combined are often sufficient to uniquely identify a person) then no amount of cleverness can provide SSU, but SSU should be available to the extent permitted by the uniqueness of the data provided. 13. Multiple Site Unlinkability (MSU) The user should be able to visit multiple sites without the sites being able to collude to correlate the data provided by the user. This is a weaker requirement than SSU (that is, MSU does not guarantee SSU). Again, this protects the user's privacy. 14. Attack Resistant Credentials (ARC) Credentials should be such that the (computationally limited) verifier cannot reconstruct the original credential by brute force. Note that the impossibility of this may rely on the user choosing strong secrets, which is often unlikely, for example where the sole source of entropy is a password. 15. Claim Minimality (CM) The ability to show only exactly what is needed, (for example, the user is over 21 rather than the user's exact age, or if there are mutlple claims the ability to show a subset). This improves privacy and reduces linkability. _______________________________________________ dix mailing list dix@ietf.org https://www1.ietf.org/mailman/listinfo/dix
- [dix] More requirements Ben Laurie
- [dix] Re: [Ietf-http-auth] More requirements EKR
- Re: [dix] Re: [Ietf-http-auth] More requirements RL 'Bob' Morgan
- Re: [dix] Re: [Ietf-http-auth] More requirements Ben Laurie
- Re: [dix] Re: [Ietf-http-auth] More requirements Jeff Hodges
- [dix] Re: [Ietf-http-auth] More requirements Ben Laurie
- Re: [dix] Re: [Ietf-http-auth] More requirements RL 'Bob' Morgan
- Re: [dix] More requirements Ben Laurie