Re: Scope for self-destructing email?

Phillip Hallam-Baker <phill@hallambaker.com> Thu, 17 August 2017 04:43 UTC

Return-Path: <hallam@gmail.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F17911323CA for <ietf@ietfa.amsl.com>; Wed, 16 Aug 2017 21:43:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.398
X-Spam-Level:
X-Spam-Status: No, score=-2.398 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FREEMAIL_FORGED_FROMDOMAIN=0.199, FREEMAIL_FROM=0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id M2J2ciUjtse4 for <ietf@ietfa.amsl.com>; Wed, 16 Aug 2017 21:43:19 -0700 (PDT)
Received: from mail-lf0-x22c.google.com (mail-lf0-x22c.google.com [IPv6:2a00:1450:4010:c07::22c]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 00A6E13235C for <ietf@ietf.org>; Wed, 16 Aug 2017 21:43:18 -0700 (PDT)
Received: by mail-lf0-x22c.google.com with SMTP id t128so24848863lff.2 for <ietf@ietf.org>; Wed, 16 Aug 2017 21:43:18 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:sender:in-reply-to:references:from:date:message-id :subject:to:cc; bh=CPI1l0Rw53u85nLBZi7lwskFu7ODv4fC1kt9CdWevx4=; b=qV7ssE7jpY3jSWsMv35LZkSJ2T2GFGyFXsBvCfEuiTZA9A2DC0RLSVa7EvkzDR79bA zPp76K5NV2VwbPrpDWxb0Lq0snMeGPKROwEVwGMUQigfDobEuBPVzOsHv321dbTsi4qc e3rjLfztAX5xfPRe5S/MkXTdKqdiurt0gyHAReIpFVqfcfbPOLCDIy8PziCA6NwXD3Dg l1FXsmafmERwq112M0wo0fADEfZGz6YP1YmAG6OGI94vY9iRWLxs3Xprz63CSHgYMna5 tLQbLWsAzYelV1LMmMLoOqwnJzTc3DjZKB1etfr/k6Q/8C0SPrR5Q00MvomrHtN1WHO7 MmcQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:sender:in-reply-to:references:from :date:message-id:subject:to:cc; bh=CPI1l0Rw53u85nLBZi7lwskFu7ODv4fC1kt9CdWevx4=; b=O91/Sb+/mV7OP5AqRITmUPEvUBXECdcP46ymsyy8QqPbuN6lBPDjsZPC0L3G3vFiDW tj96g2wiHILafkFS+HQhpVX3PsmRoeEZWqkw+0D0BO7ElCO7qVajLpm7d77fL6OMgHxa yiTx5yTue2sSzOu8if4tTonNNmjVtMstf27aLfb6f/qDEQM4qkL6pARvXxRHe2hZHT0V 30jNuOXgiJc9C525ZnxBAtGC8b7Dw7roUU5w4b8+cQO3PQThoKPfEEsgimXn1LZD/cn+ 3irrPrNVccWYsmEgtAgxkgxHpUK9ZI/de1t4bXq0bWv1JLfaHB8Zf4R07pdwBwlAZ+HC TCuQ==
X-Gm-Message-State: AHYfb5gsB8ciJ9UA9yztjc62ljRawg1lA0tyudJRC5M3XJR30twFgTeI xMXVQFWhFXnlNWRe0yWi4IXrADXWWQ==
X-Received: by 10.25.153.69 with SMTP id b66mr1724540lfe.75.1502944997324; Wed, 16 Aug 2017 21:43:17 -0700 (PDT)
MIME-Version: 1.0
Sender: hallam@gmail.com
Received: by 10.25.142.199 with HTTP; Wed, 16 Aug 2017 21:43:16 -0700 (PDT)
In-Reply-To: <F0EECBF6-F48E-425B-A6E8-65E5183FD36E@nbcuni.com>
References: <20170816225637.4431.qmail@ary.lan> <7352544b-8626-fb30-b74f-48b62110b7cf@gmail.com> <39610B4F-8DE6-4E19-A6C8-5FAB882DD524@orthanc.ca> <CAMm+LwgqnPx2VBaoaWuU_YW547oRhQDTo48t4BokcwKqRSO+bw@mail.gmail.com> <F0EECBF6-F48E-425B-A6E8-65E5183FD36E@nbcuni.com>
From: Phillip Hallam-Baker <phill@hallambaker.com>
Date: Thu, 17 Aug 2017 00:43:16 -0400
X-Google-Sender-Auth: BFdjgo9u6so8rceykH41LGvg1vA
Message-ID: <CAMm+LwiT8+oiLwSX_9bekiDY6_3njbW9W_jKnP9FJkRYqwqRcQ@mail.gmail.com>
Subject: Re: Scope for self-destructing email?
To: "Deen, Glenn (NBCUniversal)" <Glenn.Deen@nbcuni.com>
Cc: IETF Discussion Mailing List <ietf@ietf.org>
Content-Type: multipart/alternative; boundary="001a114029fcaebf110556eba686"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf/Freq7DU_Wcea1wqZufDvdw4AGnk>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 17 Aug 2017 04:43:21 -0000

On Wed, Aug 16, 2017 at 11:47 PM, Deen, Glenn (NBCUniversal) <
Glenn.Deen@nbcuni.com> wrote:

> The key issue is that no method currently in existence can defeat a camera
> taking a picture of the screen.  That will always let an authorized
> receiver make a permanent copy of the email and do what they want with it.
> Yes, you may be throwing away repudiation and signature information, but
> they will have the contents of the mail.
>

​Absolutely true. And really serious for some applications. But consider
the Game of Thrones hack, a screen capture would be serious, yes. But
nowhere near as serious as having the final cut leak in HD.

​The kids are using snapchat because their principle security concern is
that the receiver will forget to delete the pics they send and they will
end up with the parents. They understand full well that they can photograph
the screen of one phone with another.

The perfect is the enemy of the good.