IETF Logo Mail Archive

Re: [Endymail] Another view of the problem and what the IETF could do

Eliot Lear <lear@cisco.com> Mon, 01 September 2014 16:49 UTC

Return-Path: <lear@cisco.com>
X-Original-To: endymail@ietfa.amsl.com
Delivered-To: endymail@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 00F141A0366 for <endymail@ietfa.amsl.com>; Mon, 1 Sep 2014 09:49:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -15.168
X-Spam-Level:
X-Spam-Status: No, score=-15.168 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RP_MATCHES_RCVD=-0.668, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1pC8cizxtg5Z for <endymail@ietfa.amsl.com>; Mon, 1 Sep 2014 09:49:42 -0700 (PDT)
Received: from aer-iport-2.cisco.com (aer-iport-2.cisco.com [173.38.203.52]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A28A31A02FF for <endymail@ietf.org>; Mon, 1 Sep 2014 09:49:40 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=5870; q=dns/txt; s=iport; t=1409590181; x=1410799781; h=message-id:date:from:mime-version:to:subject:references: in-reply-to; bh=zqvIKKGnTj6PwItWh5fh0m/28xHZFIFAD9+zACqaGCE=; b=GQhHtMIuGq/DOFYtbKCepBaC31hreRyvXc31hRj8w0ym3K4PfDIk24Am iud6lXzADRNod7iPx/OQkBGfR80eGABWB+6qTk9hUxjYMWNAtCChgFEsn Wda/mdVEhsw/IwY53e4fQqG1ObEbvVfHwf4X91h5yMy3cIiaG0iBBx7QP I=;
X-Files: signature.asc : 486
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AlwGAFWjBFStJssW/2dsb2JhbABZg2BXgnzFA4dNBAIBgSx3hAQBAQQjVRELBAoKCRYLAgIJAwIBAgFFBgEMCAEBiD4NpH2UWgETBI5rEQFXgnmBUwEEkzeBSl6GfYc3jWeDYzsvgQ+BQAEBAQ
X-IronPort-AV: E=Sophos;i="5.04,443,1406592000"; d="asc'?scan'208,217";a="161418374"
Received: from aer-iport-nat.cisco.com (HELO aer-core-3.cisco.com) ([173.38.203.22]) by aer-iport-2.cisco.com with ESMTP; 01 Sep 2014 16:49:31 +0000
Received: from [10.61.212.165] ([10.61.212.165]) by aer-core-3.cisco.com (8.14.5/8.14.5) with ESMTP id s81GnVo6008702; Mon, 1 Sep 2014 16:49:31 GMT
Message-ID: <5404A3A3.9050506@cisco.com>
Date: Mon, 01 Sep 2014 18:49:39 +0200
From: Eliot Lear <lear@cisco.com>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:24.0) Gecko/20100101 Thunderbird/24.6.0
MIME-Version: 1.0
To: Tim Bray <tbray@textuality.com>, endymail@ietf.org
References: <CAHBU6iuxfqs9RszSaJLaTV_obKBCJ9Pzii+t9XANN3q+bJm-3Q@mail.gmail.com>
In-Reply-To: <CAHBU6iuxfqs9RszSaJLaTV_obKBCJ9Pzii+t9XANN3q+bJm-3Q@mail.gmail.com>
Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="ovCeTA65R2vAuwHjR2Ib4UgPOrvCQuVtA"
Archived-At: http://mailarchive.ietf.org/arch/msg/endymail/MwQCikuiJqiL4harlyDLMSryf0Q
Subject: Re: [Endymail] Another view of the problem and what the IETF could do
X-BeenThere: endymail@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: <endymail.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/endymail>, <mailto:endymail-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/endymail/>
List-Post: <mailto:endymail@ietf.org>
List-Help: <mailto:endymail-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/endymail>, <mailto:endymail-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 01 Sep 2014 16:49:44 -0000

Hi Tim,

You've written in narrative a great table of tasks.  But...

On 8/27/14, 6:21 PM, Tim Bray wrote:
>
> 1. Find a public key for the user that the sender’s prepared to trust.
>
> This is a big problem. The PGP Web of Trust has failed, and we’ve all
> heard the griping about the CA biz.  Joe Hildebrand mentioned POSH &
> WebFinger and they’re both interesting.  I’m also interested in the
> notion of a key directory with associated proofs that you don’t have
> to trust, for example the one from https://keybase.io
> <https://keybase.io/>.  In particular
> see https://keybase.io/docs/server_security
> WORK FOR IETF: Get pro-active on key discovery/trust work? Standardize
> key search APIs?

If the IETF could solve but this problem such that it scales to the size
of the Internet, everything else on your list would I think fall into
place.  Unfortunately, key management really wasn't on your list, and
that has to be addressed as well.  Also, I suspect that email programs
probably need to evolve a bit to cope with all of this.  Case and point:
I'm pretty sure I've lot one or two private keys along the way.  And, at
least compared to your average Joe, I'm good at this.

BTW, it all has to happen without asking for matching keys.  Enigmail
does a pretty good job of that already.  That's a pretty good model for
UI (I hazard a guess), and so stay focused on how to get it to function
to scale.  It may make sense to use some form of OTR for end-to-end
transit.  But again I wouldn't want to count on OTR for data at rest.

Eliot

v2.8.7 | Report a Bug | By Email