IETF Logo Mail Archive

Re: email standards

Jari Arkko <jari.arkko@piuha.net> Wed, 24 September 2014 13:11 UTC

Return-Path: <jari.arkko@piuha.net>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BE53E1A00B6 for <ietf@ietfa.amsl.com>; Wed, 24 Sep 2014 06:11:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.955
X-Spam-Level:
X-Spam-Status: No, score=0.955 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FH_RELAY_NODNS=1.451, HELO_MISMATCH_NET=0.611, RDNS_NONE=0.793] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bt_yDUUs39zW for <ietf@ietfa.amsl.com>; Wed, 24 Sep 2014 06:11:42 -0700 (PDT)
Received: from p130.piuha.net (unknown [IPv6:2001:14b8:400::130]) by ietfa.amsl.com (Postfix) with ESMTP id B02CC1A00DE for <ietf@ietf.org>; Wed, 24 Sep 2014 06:11:34 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by p130.piuha.net (Postfix) with ESMTP id 9BCF52CED3; Wed, 24 Sep 2014 16:11:33 +0300 (EEST)
X-Virus-Scanned: amavisd-new at piuha.net
Received: from p130.piuha.net ([127.0.0.1]) by localhost (p130.piuha.net [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id L_fwDxMNp3im; Wed, 24 Sep 2014 16:11:25 +0300 (EEST)
Received: from [127.0.0.1] (p130.piuha.net [IPv6:2a00:1d50:2::130]) by p130.piuha.net (Postfix) with ESMTP id F421F2CC5D; Wed, 24 Sep 2014 16:11:24 +0300 (EEST)
Content-Type: multipart/signed; boundary="Apple-Mail=_8709CC45-93F8-4C55-AB18-64AB50328552"; protocol="application/pgp-signature"; micalg="pgp-sha512"
Mime-Version: 1.0 (Mac OS X Mail 7.3 \(1878.6\))
Subject: Re: email standards
From: Jari Arkko <jari.arkko@piuha.net>
In-Reply-To: <54222B80.8010502@dcrocker.net>
Date: Wed, 24 Sep 2014 16:11:23 +0300
Message-Id: <680B5A15-6346-4D6B-A235-7B9C7FBB2515@piuha.net>
References: <E6D4B18F-9533-4EE1-A794-526094893D3C@ietf.org> <CAMm+Lwi8D0c_iWSbosXFrGsN1wtcmwu3oRc7FoQmwypk7Mi2ZA@mail.gmail.com> <2A9E2BF1C15CB41544C46E06@JcK-HP8200.jck.com> <p06240607d0476c96a946@99.111.97.136> <CAMm+LwjxOiFsWcCZoGcaqaF3fv6XBOK8LhQdzWJsigYvQQ4-kg@mail.gmail.com> <5421D7A2.8030309@dcrocker.net> <CAMm+Lwg_+CXGcHmYG_N4swwKb6jOdU6G75kr6FyeU9J2rvNepw@mail.gmail.com> <54222B80.8010502@dcrocker.net>
To: Dave Crocker <dcrocker@bbiw.net>, ietf-dane@dukhovni.org, Phillip Hallam-Baker <phill@hallambaker.com>
X-Mailer: Apple Mail (2.1878.6)
Archived-At: http://mailarchive.ietf.org/arch/msg/ietf/HyhRZ5GSUFa6FESFVGIBr-6GbEs
Cc: IETF <ietf@ietf.org>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 24 Sep 2014 13:11:44 -0000

> Facilitators cannot help resolve differences in religion or paradigms.

FWIW, the facilitator model that I announced will be useful, I think, but it is at a different level than resolving fundamental differences about technology direction. I think we can improve discussion style at the IETF (and have, I’d argue). But while having good, civil, rational, and fair discussions is a great thing, it doesn’t remove the situations where, for instance, different groups of people have very different goals or use cases in mind.

> PGP has a monopoly on mindshare, S/MIME has a monopoly on deployment.
> 
> Its like Betamax vs VHS. If we are going to get endymail deployed we
> have to get them to move to BluRay.

Like others on this thread, I think the issue has not been so much in the differences between two partially deployed solutions. The crux is having something that works for a broad range of users, easily. And we are *not* there today.

> Apple's Mail.app on desktops allows an S/MIME key to bound via
> Keychain to a particular correspondent, without placing any trust
> in whatever CA may have issued the certificate.  This makes S/MIME
> usable with a TOFU trust-model.
> 
> So for me the sweet-spot has been S/MIME with direct (leap of faith)
> trust.  I am disappointed when I can't use TOFU with S/MIME in some
> other MUAs.

Yes - I have a lot of sympathy for this point of view. Taking this slightly more towards the end-user view, not sure I care about what bits are underneath, as long as I can achieve what I need to achieve. For a lot of users that appears to be hierarchical/unconditional trust for their employer’s organisation _and_ the ability to TOFU for the authentication with their friends, family, and external entities. Perhaps TOFU not just with individuals, but also with organisations.

The question is, how much of this is protocol machinery and how much UI design? Maybe we need to put the main e-mail app developers into a room and not let them out until they have prototypes of usable TOFU *and* hierarchical security in their apps :-) I’m joking of course, but it is also true that if the industry needs to do something, they have in many cases come together even as competing entities, and taken on the challenge. Interops, world v6 launch, etc. But I’m not the expert. You guys are - what would help?

Jari

v2.23.0 | Report a Bug | By Email