IETF Logo Mail Archive

Re: Scope for self-destructing email?

Theodore V Faber <theodore.v.faber@aero.org> Tue, 15 August 2017 16:47 UTC

Return-Path: <prvs=393ddb255=theodore.v.faber@aero.org>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3548E132356 for <ietf@ietfa.amsl.com>; Tue, 15 Aug 2017 09:47:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=neutral reason="invalid (public key: not available)" header.d=aero.org header.b=yDdM6hoR; dkim=pass (1024-bit key) header.d=aerospacecloud.onmicrosoft.com header.b=QwY7YZuk
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id T9mxncHuHBtj for <ietf@ietfa.amsl.com>; Tue, 15 Aug 2017 09:47:34 -0700 (PDT)
Received: from email3-east.aero.org (email3-east.aero.org [130.221.184.167]) (using TLSv1.2 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B47121321CB for <ietf@ietf.org>; Tue, 15 Aug 2017 09:47:33 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=aero.org; i=@aero.org; q=dns/txt; s=mailhub; t=1502815653; x=1534351653; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-transfer-encoding:mime-version; bh=SymHmmFrlgpwrrDsdlUH/gFgm4ryQKP/eqNxbbb5HR4=; b=yDdM6hoRmcVrus6wuyJsLZBCWZ9V8O7Byg/85He7Yl4KncuyE/JEvg4A uQYCJm1ueqN/nbQJiXeLk1b8vd3kv70WTBpfxSiCUOzdrvzIAju9WJJOP uTdmNW1usOBt2L1AIBRNgccYYBo9QJ0xIQBiV8z1ia/pMHlX4UCsIYzzZ Y=;
x-SBRS: 3.5
x-SenderGroup: Inbound_Office365
X-IronPort-AV: E=McAfee;i="5900,7806,8622"; a="5554820"
X-IronPort-AV: E=Sophos;i="5.41,378,1498546800"; d="scan'208";a="5554820"
X-IPAS-Result: A2G4AABjJZNZhzLGZxdbAxoBAQEBAgEBAQEIAQEBAYNXZ18EMgeOfZEMiDeNb4ElA1wkhSMChHkUAQIBAQEBAQEBAxABAQEIDQkIKC+CZXIBAQEBAQEBAQEiKgIILDYBAQEBAgFAAQE3AQ8CAQgVHAITIRElAgQBDQUIig8DDQigNAKLB4MRgwgBAQWEKg0LhAQBAQEBAQEBAQIBAQEBAQEBAQEBARUIgyiIWIJXgVoPARECAR4CBRoXDw8HgmaCMQGRJTqOJjyPSpdPjDVAh2UBAYE8Nm4zC1MxUYUIH4FzdgFhhxSBMAGBDgEBAQ
Received: from mail-dm2gcc01lp0050.outbound.protection.outlook.com (HELO gcc01-dm2-obe.outbound.protection.outlook.com) ([23.103.198.50]) by email3-east.aero.org with ESMTP/TLS/AES256-SHA256; 15 Aug 2017 09:47:15 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=aerospacecloud.onmicrosoft.com; s=selector1-aero-org; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=xdvYi/t+p8lpwbl0B1xTGIsz1rCeDrToy5S+AK+AHIc=; b=QwY7YZuk0m+aDMWei3EMD5v11B2I8fabkY7TEu8ym8nxXIwNZgjGK24Eu55xPdy8RU3UWB160DlnvRaFCOLe2t0BE5kX6WYMD4R/+GAMvfFU6lbPCwHoSTcGksohmTePf/nvVZbYAY+h4j3gCOhk+4bqXeBYEg6wfPgyW2GifFg=
Received: from CY1PR09MB0282.namprd09.prod.outlook.com (10.160.140.28) by CY1PR09MB0283.namprd09.prod.outlook.com (10.160.159.11) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.1.1341.21; Tue, 15 Aug 2017 16:47:13 +0000
Received: from CY1PR09MB0282.namprd09.prod.outlook.com ([10.160.140.28]) by CY1PR09MB0282.namprd09.prod.outlook.com ([10.160.140.28]) with mapi id 15.01.1341.020; Tue, 15 Aug 2017 16:47:13 +0000
From: Theodore V Faber <theodore.v.faber@aero.org>
To: John C Klensin <john-ietf@jck.com>, Brian E Carpenter <brian.e.carpenter@gmail.com>
CC: "ietf@ietf.org" <ietf@ietf.org>
Subject: Re: Scope for self-destructing email?
Thread-Topic: Scope for self-destructing email?
Thread-Index: AQHTFS/QfhBYmaGKk0OgZCnZTT9DKqKEOTUAgAACYACAAASLAIAAA3AAgAADdICAAFtgAIAAAZEAgAD6INY=
Date: Tue, 15 Aug 2017 16:47:13 +0000
Message-ID: <CY1PR09MB0282CB81D41696253190CDA0B98D0@CY1PR09MB0282.namprd09.prod.outlook.com>
References: <bc180881-4562-4b97-a625-51ef29770d9f@email.android.com> <6ce40fd4-3de7-b016-55f8-68b96df33333@alumni.stanford.edu> <a12ac1b5-f6a9-679c-23a2-61e715c43016@gmail.com>, <889C187443C99CC61539528A@PSB>
In-Reply-To: <889C187443C99CC61539528A@PSB>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=theodore.v.faber@aero.org;
x-originating-ip: [130.221.224.7]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; CY1PR09MB0283; 6:GOaHQ+QCcEqUpBQ1LM5iubOfkkzhGV4Or/tFZ0BIhfeYx5iE73uXwds39fL+sscIT+J9pcUB4l4MNeZVM7Dp58yfUttU9/cV8kZfwBRcuSOMc7NVGMB8/QmvxnnPLtdWWoQXpi5B/TEB4d/uCQxAREKIGIoNB/6fX1OU8j2l4rTREYxcAz2JiSNswmJudRJG1VSt2VVqI2UtpTooT0COINDQTxd/5h6kk7H0ikJ1odr/jFAFuq821oqBq+HCQHCIblqfX1tRID8JImimmAXdTh7YVRTYjxXrH5XRZF+4kN4hRq1KRO+MSIE6eITuyDrYivEiJtzBQXc9SKpCfLkPcA==; 5:MdI22Z2WLJKaaEJR0pKqNqZ7xxfJHtuuGiwACe4LsJXDj/JILaQhtj8/U3gcGPfPIoAJGB+iRcTKY1D1KJNpNWYqXhFpHyZVRxvmAsnEMwPdqQXBy0ojk7uxx5ScXLQjQG9Htyvnm8WYeMJZ4gpdVw==; 24:/nKt0FViJjGnYkrqp9CxmsZ174uECFpdZnskdh1mzok09xlBQbl54IMfNgBv3ev7exlDD6MQdeWhoXUA+HhAQB7cO4Hax2w84Sr63mQsTWs=; 7:3Sntyh6rR0AjO4l252zmB6sa7/X+e4SzcfoEtAFWz+uTEUTTkPsf1rCTCt++7TDSBO8hzIFXcoERo5f3boN+0/NPat5dBDUWdNoUTOAjvN9KTb+1JhTnreZFZj0/LWNR1hzMcNGQbzh4fh57Tq5NEEvpKhZON6C4Jm/RuRxJppix71woK/M5sBhjK8DxwZ4aI60nY1tJ8SSB/NM/O6AWXdMq/qdN2vKusuEHMPTNh+I=
x-ms-exchange-antispam-srfa-diagnostics: SSOS;
x-ms-office365-filtering-correlation-id: f92df741-45aa-4084-e030-08d4e3fd47b2
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(300000500095)(300135000095)(300000501095)(300135300095)(22001)(300000502095)(300135100095)(2017030254152)(300000503095)(300135400095)(48565401081)(2017052603031)(201703131423075)(201703031133081)(201702281549075)(300000504095)(300135200095)(300000505095)(300135600095)(300000506095)(300135500095); SRVR:CY1PR09MB0283;
x-ms-traffictypediagnostic: CY1PR09MB0283:
x-exchange-antispam-report-test: UriScan:;
x-microsoft-antispam-prvs: <CY1PR09MB02838BE57CA4415F23C01F32B98D0@CY1PR09MB0283.namprd09.prod.outlook.com>
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(100000700101)(100105000095)(100000701101)(100105300095)(100000702101)(100105100095)(6040450)(601004)(2401047)(8121501046)(5005006)(93006095)(93001095)(10201501046)(3002001)(100000703101)(100105400095)(6055026)(6041248)(20161123555025)(20161123558100)(20161123560025)(201703131423075)(201702281528075)(201703061421075)(201703061406153)(20161123562025)(20161123564025)(6072148)(201708071742011)(100000704101)(100105200095)(100000705101)(100105500095); SRVR:CY1PR09MB0283; BCL:0; PCL:0; RULEID:(100000800101)(100110000095)(100000801101)(100110300095)(100000802101)(100110100095)(100000803101)(100110400095)(100000804101)(100110200095)(100000805101)(100110500095); SRVR:CY1PR09MB0283;
x-forefront-prvs: 04004D94E2
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(6009001)(39860400002)(189002)(199003)(24454002)(51444003)(81166006)(7736002)(86362001)(81156014)(39060400002)(93886004)(5660300001)(14454004)(53936002)(8676002)(68736007)(305945005)(6246003)(33656002)(105586002)(106356001)(76176999)(50986999)(54356999)(66066001)(229853002)(101416001)(77096006)(4326008)(8936002)(55016002)(2906002)(25786009)(97736004)(6436002)(189998001)(3660700001)(6506006)(3480700004)(7696004)(9686003)(74316002)(2950100002)(6116002)(478600001)(99286003)(2900100001)(3846002)(102836003)(3280700002); DIR:OUT; SFP:1101; SCL:1; SRVR:CY1PR09MB0283; H:CY1PR09MB0282.namprd09.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; MX:1; A:1; LANG:en;
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: aero.org
X-MS-Exchange-CrossTenant-originalarrivaltime: 15 Aug 2017 16:47:13.4749 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: c8294700-c5a4-4ca1-a876-1457d39899fd
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CY1PR09MB0283
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf/TlGy-xjiQSIMx9b8Sbp6CMXivWE>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 15 Aug 2017 16:47:36 -0000



________________________________________
> From: ietf <ietf-bounces@ietf.org> on behalf of John C Klensin <john-ietf@jck.com>
>--On Tuesday, August 15, 2017 13:32 +1200 Brian E Carpenter
<brian.e.carpenter@gmail.com> wrote:

>>> More seriously, how could you have any confidence at all that
>>> unauthorized (or even "lawful intercept") copies of the
>>> message would be deleted?
>>
>> You can't. I have destroyed Message-ID:
>> <CACZ1GipivEf31iHchaM1OPFQF4QkfVRGVNsY_vVx=J8oFZ0JZA@mail.gmai
>> l.com>. Is that true? How do you know it's true?

>Even if I had some way to verify that your statement about your
>actions were true and that what you meant by "destroyed"
>included any backup copies you might have kept as a side-effect
>of other operations or procedures, there is no way that you can
>guarantee that Google has destroyed it too.   Indeed, prior to
>the recent change in Gmail policy, I one could infer that they
>had not and would not until whatever information it was
>contained were deemed of no relevance.

As an aside, that passive voice matters, too.  The entity making the judgment (state agent, intelligence service, advertiser) will evaluate relevance differently.

To the main point: I do know lots of people on this list know these issues and are channeling Socrates, but to be explicit:  I think that once bits are out in the net, provably erasing them is impossible.   I'll channel Franklin (or whoever he's quoting): "Three can keep a secret, if two of them are dead."

--
Ted Faber <theodore.v.faber@aero.org>
Engineering Specialist
Computer Systems Research Department
The Aerospace Corporation
310-336-7373
   john

v2.23.0 | Report a Bug | By Email