IETF Logo Mail Archive

Re: email standards (was: Re: facilitators at ietf@ietf.org)

Phillip Hallam-Baker <phill@hallambaker.com> Tue, 23 September 2014 21:42 UTC

Return-Path: <hallam@gmail.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2BBF01A1B3B for <ietf@ietfa.amsl.com>; Tue, 23 Sep 2014 14:42:14 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.278
X-Spam-Level:
X-Spam-Status: No, score=-1.278 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FM_FORGED_GMAIL=0.622, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hBuHgzD83Eo3 for <ietf@ietfa.amsl.com>; Tue, 23 Sep 2014 14:42:12 -0700 (PDT)
Received: from mail-lb0-x229.google.com (mail-lb0-x229.google.com [IPv6:2a00:1450:4010:c04::229]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EE91C1A1B13 for <ietf@ietf.org>; Tue, 23 Sep 2014 14:42:11 -0700 (PDT)
Received: by mail-lb0-f169.google.com with SMTP id b12so9615433lbj.0 for <ietf@ietf.org>; Tue, 23 Sep 2014 14:42:10 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date:message-id:subject :from:to:cc:content-type; bh=zI5ZVHKcLcUokQs2WTjyaS6r9j9B2rGu2ilVs1tiDsY=; b=ASz4dxyBGUOzJXM/S/xOS7xm0o5bSCyXf50KtOS+vsTKpka/Otsn+p/bYPEo05mN+S 8wOh3x2ZIgv/bLAn4hgyinz10lhWl2OczJuZ+tm+8T5/QPKQKVt52eVbeegSokPX+hIX LKOmMLjGqHBu82Zi09BbD7Bbd/XACarTAoTO6/5f5eW8eSXkqCz8uabUypbL4xsbm5um m2jsiA1RmBfAPQWYi6z/XYGzkjulfPnDYJsJp4mk9zb3Nj/uFRAtJkP8jQFg3P/vQ3RA KmRv3CmNyylFohEl1VUqpGvoxSIj0NOSGUEZPlWOjLOzcvn7lH2LLOhJwk9MGkHvqySL 14/g==
MIME-Version: 1.0
X-Received: by 10.153.11.132 with SMTP id ei4mr2393628lad.24.1411508530169; Tue, 23 Sep 2014 14:42:10 -0700 (PDT)
Sender: hallam@gmail.com
Received: by 10.112.122.14 with HTTP; Tue, 23 Sep 2014 14:42:10 -0700 (PDT)
In-Reply-To: <A94EB0C46B51C2E2AD3A3BAA@JcK-HP8200.jck.com>
References: <E6D4B18F-9533-4EE1-A794-526094893D3C@ietf.org> <CAMm+Lwi8D0c_iWSbosXFrGsN1wtcmwu3oRc7FoQmwypk7Mi2ZA@mail.gmail.com> <2A9E2BF1C15CB41544C46E06@JcK-HP8200.jck.com> <p06240607d0476c96a946@99.111.97.136> <CAMm+LwjxOiFsWcCZoGcaqaF3fv6XBOK8LhQdzWJsigYvQQ4-kg@mail.gmail.com> <A94EB0C46B51C2E2AD3A3BAA@JcK-HP8200.jck.com>
Date: Tue, 23 Sep 2014 17:42:10 -0400
X-Google-Sender-Auth: hfJc4BeJLm25xyUznHApKjwrLAE
Message-ID: <CAMm+LwhYNVdc3dRpK7dGkfxpefSwXkCvafXdCAcGdUkbpT+Y4A@mail.gmail.com>
Subject: Re: email standards (was: Re: facilitators at ietf@ietf.org)
From: Phillip Hallam-Baker <phill@hallambaker.com>
To: John C Klensin <john-ietf@jck.com>
Content-Type: text/plain; charset="UTF-8"
Archived-At: http://mailarchive.ietf.org/arch/msg/ietf/X3DcKNXOMTI2BBb7OrVWqUdYMnQ
Cc: Randall Gellens <randy@qti.qualcomm.com>, IETF <ietf@ietf.org>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 23 Sep 2014 21:42:14 -0000

On Tue, Sep 23, 2014 at 4:48 PM, John C Klensin <john-ietf@jck.com> wrote:
>
>
> --On Tuesday, September 23, 2014 16:08 -0400 Phillip
> Hallam-Baker <phill@hallambaker.com> wrote:
>
>>> Surely PHB isn't saying that SMTP and the email format docs
>>> are incompatible?  That would be a nonsensical assertion,
>>> since they are separate layers (the one is used to transport
>>> the other).  Perhaps there are two different email standards
>>> that perform the same functions but are incompatible?
>>> Perhaps S/MIME and PGP?  Or perhaps two different security
>>> related email specs?
>>
>> I meant two secure email standards. Empirically we have two
>> right now, S/MIME and PGP.
>>
>> Since I was talking about security, I thought it was obvious
>> from the context.
>
> Nothing about your note made that clear -- it didn't mention
> security generally and you said "email standards".  Be that as
> it may, I think you are overlooking a key aspect of the PGP
> versus S/MIME problem.   Suppose we actually did have two sets
> of email standards, one using SMTP transport with 822-style
> "field-name: value-string" headers (as we have today) and other
> other of which used SMTP (to avoid making this completely
> unrealistic) with ASN.1-like coded X.400-like inner envelope
> header structure.  There would certainly be a reasonable
> complaint that we had specified two different ways to do the
> same thing with only subtle differences in capabilities between
> them.
>
> But it seems to me that S/MIME and PGP represent two
> fundamentally different trust models.  The first is based on a
> certificate hierarchy model, one that would have very good
> international scaling properties had we actually figured out how
> to make a global single-purpose PKI work and be trusted.  Worse,
> absent that type of PKI, it was very hard to think about how to
> bootstrap the system, at least without pushing decisions about
> which certification authorities to trust back to end users who
> had absolutely no basis on which to make those choices.  The
> second is based on a web of trust arrangement that most of us
> knew at the time wouldn't scale well internationally nor be
> usable among parties who didn't have at least a second, or
> possibly third, "degree" of connection but that was far easier
> to bootstrap than something that assumed a global PKI.
>
> Now it is certainly possible to imagine a message format that
> would have more commonalities than we ended up with.  We
> actually had standards-track specifications for such a format,
> in the form of RFC 1421ff and the earlier RFC1113ff.   I think
> it is reasonable to summarize PEM by saying it went nowhere
> except that we might have learned a bit from it in building
> S/MIME and/or OpenPGP.
>
> So, we are now at a point at which neither OpenPGP nor S/MIME
> has achieved wide adoption and use.  We have learned such things
> we (at least some of us) didn't anticipate.  In S/MIME's case,
> that notably includes issues of trust in CAs and the
> effectively-dictatorial (or oligarchic) authority of browser
> vendors to determine CA usability.  In OpenPGP's case, we have
> demonstrated some of the scaling and key management issues that
> some people anticipated all along.
>
> You seem to believe that more commonality of formats would have
> left us in better shape today.  Because I think the problem is
> the irreconcilable difference in trust model and relationships,
> I believe it would have made almost no difference at all (even
> if it were a good idea).  You could be right but, if you want to
> make that case, please try to do so in a way that the rest of us
> can understand rather than, e.g., making broad assertions about
> causes and implications of the IETF's failure to generate a
> single standard for secure/encrypted email or email more
> generally.

Well I agree with some of the above but it is a discussion we are
currently having on the endymail list.

My intended point was that if we had had a facilitator then maybe we
could have ended up with rather less unnecessary divergence than we
did and that might have made it easier to resolve the standards war.


Having re-studied this problem in great detail in the past 18 months,
I am certain that S/MIME cannot meet every use case of PGP and
vice-versa. But I am also certain that neither meets more than a
fraction of the real user needs as currently implemented.

http://prismproof.org/

v2.23.0 | Report a Bug | By Email