IETF Logo Mail Archive

Re: [Endymail] spam versus cleartext

Dave Crocker <dcrocker@gmail.com> Sun, 07 September 2014 15:20 UTC

Return-Path: <dcrocker@gmail.com>
X-Original-To: endymail@ietfa.amsl.com
Delivered-To: endymail@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B86271A0538 for <endymail@ietfa.amsl.com>; Sun, 7 Sep 2014 08:20:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id eq_sokLn190f for <endymail@ietfa.amsl.com>; Sun, 7 Sep 2014 08:20:29 -0700 (PDT)
Received: from mail-qg0-x233.google.com (mail-qg0-x233.google.com [IPv6:2607:f8b0:400d:c04::233]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 07CF21A0537 for <endymail@ietf.org>; Sun, 7 Sep 2014 08:20:28 -0700 (PDT)
Received: by mail-qg0-f51.google.com with SMTP id e89so848779qgf.38 for <endymail@ietf.org>; Sun, 07 Sep 2014 08:20:27 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:date:from:user-agent:mime-version:to:cc:subject :references:in-reply-to:content-type:content-transfer-encoding; bh=sBcxDugnX9C1yTcYCYT6Kh9Bj/TI6ywIZKB2lZ8ns/k=; b=slMYLh88BP5ONsgVJNgYxYztayIVPQLWX/6CVCxNG9bCxyB2Zp/mtNPxF/RN9I22aH F9448RYQDxTBc2oqKa36QhHk+JJ9Fe7fp4JeMP6P0FvMRTopiZRFVJzTNz7Rbt+O3sSR ZxYz4tWRKyG0QjPS9eUE60EU41nV+qDI4dyF2/D1HpWajhBsCBrsinHor2LIffCWgM8p uLpovnyFmbXXefzZPg/v1kQEUW1UXpVN04u+MhtlNSZpGZaVyprXnwDyaVtIUw0PPDc5 TuPLsysnt+Spz2Y1ortmRUiNIthITa7pYHQDRobXs55gK1yMxQqvvUiUFNTKuTO1//5J dL4g==
X-Received: by 10.224.157.7 with SMTP id z7mr33058647qaw.26.1410103227904; Sun, 07 Sep 2014 08:20:27 -0700 (PDT)
Received: from [192.168.1.66] (76-218-8-156.lightspeed.sntcca.sbcglobal.net. [76.218.8.156]) by mx.google.com with ESMTPSA id k4sm5609249qaf.0.2014.09.07.08.20.26 for <multiple recipients> (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Sun, 07 Sep 2014 08:20:27 -0700 (PDT)
Message-ID: <540C76FC.2050106@gmail.com>
Date: Sun, 07 Sep 2014 08:17:16 -0700
From: Dave Crocker <dcrocker@gmail.com>
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:24.0) Gecko/20100101 Thunderbird/24.6.0
MIME-Version: 1.0
To: Pete Resnick <presnick@qti.qualcomm.com>
References: <540AABF8.8000605@cisco.com> <540C5BE1.6010405@qti.qualcomm.com> <540C6731.7040805@gmail.com> <540C71A2.20104@qti.qualcomm.com>
In-Reply-To: <540C71A2.20104@qti.qualcomm.com>
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 8bit
Archived-At: http://mailarchive.ietf.org/arch/msg/endymail/gvpEppK33XxcbPE100eTDa4KZBI
Cc: endymail@ietf.org
Subject: Re: [Endymail] spam versus cleartext
X-BeenThere: endymail@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: <endymail.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/endymail>, <mailto:endymail-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/endymail/>
List-Post: <mailto:endymail@ietf.org>
List-Help: <mailto:endymail-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/endymail>, <mailto:endymail-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 07 Sep 2014 15:20:30 -0000

On 9/7/2014 7:54 AM, Pete Resnick wrote:
> On 9/7/14 11:09 AM, Dave Crocker wrote:
> Signatures, just like encryption, are part of cryptography. If you are
> doing cryptography (in the way we normally do so for e2e encryption),

At the level of "if you can get keys you can do either", sure.

Arguably the nature of the trust assessment issues is different for the
two, but that could get esoteric.


>> So you want to eliminate anonymous communications?  Anonymity has
>> historical importance for some kinds of communication.   
> 
> Pseudonymity (i.e., a signature that is not attached to a particular
> human identity) may be sufficient for most cases.

Might.  Might not.

We have little operational experience with some of these constructs in
the practical world.  I'm pushing back about all this because we need
much more cautious language about the efficacy and risks of these
approaches.

In effect, I suggest approaches be characterized as (potentially) useful
options, rather than likely or certain "solutions".  Given the way these
topics tend to be discussed, that distinction is fundamental.


> Doing so would still
> require a prior-to-real-communication step of me allowing that signature
> into my whitelist/contact list/whatever. For my personal email, I am
> perfectly willing to say,

You (and I and everyone else on this list) are not representative users.

Most of the human factors experience in this realm is that average users
don't appreciate the extra hassle and don't perform well with the
additional tasks.  So if you want these mechanisms to scale, they
require thinking very differently about end-user load.


>> My point is not that signing is bad or checking against address books is
>> bad, but that mandating such things constrains legitimate communication
>> in important ways.
> 
> Let's not miss the point that we are *currently* constraining legitimate
> communication in important ways, as my weekly hunt through my spam
> folder and my occasional out-of-band, "Why did my mail bounce?"
> complaint amply demonstrate. I choose my tradeoffs, I get the advantages
> and disadvantages of those tradeoffs.

You haven't heard me suggest maintaining the technical or operational
status quo and ignoring the problem, nevermind the amount of time I
spend in the world of m3aawg.org and more recently Levison's effort.

Again, my concern is ensuring adequate caution about unintended (as well
as intended) consequences.  The very consistent tendency of folk making
proposals in this space is to be quite cavalier about the human
communication downsides from imposing excessive constraints.

d/

-- 
Dave Crocker
Brandenburg InternetWorking
bbiw.net

v2.8.7 | Report a Bug | By Email