IETF Logo Mail Archive

Re: Scope for self-destructing email?

Phillip Hallam-Baker <phill@hallambaker.com> Thu, 17 August 2017 19:15 UTC

Return-Path: <hallam@gmail.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A1B0413236E for <ietf@ietfa.amsl.com>; Thu, 17 Aug 2017 12:15:28 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.398
X-Spam-Level:
X-Spam-Status: No, score=-2.398 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FREEMAIL_FORGED_FROMDOMAIN=0.199, FREEMAIL_FROM=0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tw-QnuGJXLIS for <ietf@ietfa.amsl.com>; Thu, 17 Aug 2017 12:15:26 -0700 (PDT)
Received: from mail-lf0-x22b.google.com (mail-lf0-x22b.google.com [IPv6:2a00:1450:4010:c07::22b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9FCD313214D for <ietf@ietf.org>; Thu, 17 Aug 2017 12:15:25 -0700 (PDT)
Received: by mail-lf0-x22b.google.com with SMTP id f7so14048849lfg.4 for <ietf@ietf.org>; Thu, 17 Aug 2017 12:15:25 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:sender:in-reply-to:references:from:date:message-id :subject:to:cc; bh=5V567kDbFL55isFXx/7H6NZu8qifeBojNPjEKGLTFjk=; b=eD0WeHXRv5Kko8fmUBlOSj360ciECNPpjyeZolOR32XSb16XyExdu1oH54xzvKGyv6 FW7rER/8geJXPMxNplZGldp7cBzHfCDNX0m1nVWUyujYvKLlkU+6RV6Tw8FQ87Tov107 2lzQiwi7qmrYiAJIyW7cHl6B4el4hGuNvLIhHBD0HcK7a6vg/b5UkIoapjYPCi3nYHZr Tng0yEVvSWWnET7xD62+r07HToN3SrhJ8Kfug4pRB6uYjb2oa9aPbE08Mc3J8X8tuGDL ZFzwtbFaM8VezwCnswNMjgXjtRwiUBOF5z54cSJtyGSGTMwcnKX0wMxk1lexy5Cpj0ub MNAQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:sender:in-reply-to:references:from :date:message-id:subject:to:cc; bh=5V567kDbFL55isFXx/7H6NZu8qifeBojNPjEKGLTFjk=; b=azrYQ4Y+uDX/tL2qDUORR5LZZUYw3amA+fjrlKgIxuVQ9llKsIUNRLoSrrl4b+UrSx 7jhs3/welxEmOlJE7iFpBXYzlB/QaGdg6WklYXu7mZfm8WyKSlqo72RIl67WckUQEpKb 1BMZYJ0cprNKyWEadDEYonbFuWTeBO4ERE3tU3fAW0K9+PAxQuF0Y2Knz4zEahzUDtYC fuu/6gyvr+bYLvuRgUwRI0caWJqTAyBccyUj4jgjTlalWKEmroeVmVTWDGb3oc41v9L8 MZv1VnRO0ZdFCujt7GXsOrjCLeCPYJls4w3/IXMZzwd2qBQ73XNhC3ZFsK+QCPOkiTo5 vL9w==
X-Gm-Message-State: AHYfb5hkoF3ySCfeimqwFPArKVQF7Xl75CoYVX8uL2c9veT20rvwk034 RX9vA5sXYcxln4jylbIiF4LsKFgvHQ==
X-Received: by 10.25.79.5 with SMTP id d5mr2053892lfb.160.1502997323899; Thu, 17 Aug 2017 12:15:23 -0700 (PDT)
MIME-Version: 1.0
Sender: hallam@gmail.com
Received: by 10.25.142.199 with HTTP; Thu, 17 Aug 2017 12:15:22 -0700 (PDT)
In-Reply-To: <BA30F5B5AFA6760F140209A3@PSB>
References: <20170816225637.4431.qmail@ary.lan> <7352544b-8626-fb30-b74f-48b62110b7cf@gmail.com> <39610B4F-8DE6-4E19-A6C8-5FAB882DD524@orthanc.ca> <CAMm+LwgqnPx2VBaoaWuU_YW547oRhQDTo48t4BokcwKqRSO+bw@mail.gmail.com> <F0EECBF6-F48E-425B-A6E8-65E5183FD36E@nbcuni.com> <CAMm+LwiT8+oiLwSX_9bekiDY6_3njbW9W_jKnP9FJkRYqwqRcQ@mail.gmail.com> <a6492c82-2b16-b087-c554-8ca38c8f5e84@huitema.net> <BA30F5B5AFA6760F140209A3@PSB>
From: Phillip Hallam-Baker <phill@hallambaker.com>
Date: Thu, 17 Aug 2017 15:15:22 -0400
X-Google-Sender-Auth: duOEAEV6V3vHhubxwQ_akw9nvbo
Message-ID: <CAMm+Lwh8HEgWCzgWieM09FsuBhHc+v1K-n4TKqyR6UvS17ha5Q@mail.gmail.com>
Subject: Re: Scope for self-destructing email?
To: John C Klensin <john-ietf@jck.com>
Cc: IETF Discussion Mailing List <ietf@ietf.org>, vaibhav singh <vaibhavsinghacads@gmail.com>
Content-Type: multipart/alternative; boundary="94eb2c1cdafe96e91a0556f7d5d1"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf/WSnmKyvpPILXtKODurwupK80OKk>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 17 Aug 2017 19:15:29 -0000

On Thu, Aug 17, 2017 at 9:23 AM, John C Klensin <john-ietf@jck.com> wrote:

> Folks,
>
> It seems to me that three things are emerging on this thread.
>
> (1) The original proposal and problem to be solved, at least as
> most of us understood it, was to allow a sender to send some
> sort of notification that would cause all copies of a message to
> be  automagically destroyed.  We appear to have unanimity that
> problem is unsolvable, at least in the general case and/or in
> the absence of universal trust.
>

​It is agreed that it is impossible to solve without trustworthy hardware.

The only thing that has stopped me adding such a feature to Mesh/Message
has been that there is a dense thicket of IPR covering such techniques and
I have not read it.

If the next President of the US was to come to me and ask if I could
provide a mechanism that would allow her to send an email message to
members of her cabinet and that supported a 'recall' feature, I would have
no hesitation in saying yes, conditional on some technical support which
Microsoft and Apple and some others are both capable of providing.

If she then said, 'What about adding the UK Prime Minister', I would answer
no.
​


> (2) We have considerable experience (in both email and netnew)
> with putting out messages with expiry dates as information for
> the recipient (whether expected to be acted on automatically or
> not).  While there are important exceptions, they have never
> been as useful as was apparently assumed when they were
> adopted... to the point that the IANA registry entries for the
> relevant email header fields identify them as obsolete.


​That might be because they were never implemented sufficiently widely. I
can turn off send receipts for example.

Another issue is that SMTP is a push service, not a pull service. For
Mesh/Message, I want to provide a superset of the capabilities of dropbox
like mail and SMTP like mail. So my basic scheme is:

When the mail is sent: Store the message on the sending server, send a
notification to the receiving server.

If the message is less than the receiving server size limit (varies by
sender), forward the body of the message after x minutes.

The reason for this is that most of the times I want to recall a message,
it is because I want to add the #Q$%%* attachment or correct the spelling
mistake.


(3) We have now reached the stage in which people seem to be
> discussing alternate problems that can be solved.  That isn't
> very hard, but those alternate problems are not the original one
> and little or no case is being made that the new problems are
> worth solving or that solutions would be useful, even if they
> are feasible.
>
> It seems to me that, if people believe there is a problem worth
> solving and if they think they have a feasible solution, we need
> to see an I-D that explains both, rather than continuing to
> circle around an ever-expanding collection of possible issues on
> the IETF list in the absence of such a draft.


​Well I have released 6 drafts this week and I am currently working on
another 3...

I don't think it is a problem that is solvable within the framework of
SMTP. It is a problem that can only be solved in the context of a new
messaging infrastructure in which every user supports the capability by
default. Such infrastructures have been successful in the recent past, see
Snapchat. Sure, they are wobbling a little now. But they have more users
than S/MIME, OpenPGP, IPSEC and SSH combined.
​

v2.23.0 | Report a Bug | By Email