IETF Logo Mail Archive

Coercion

S Moonesamy <sm+ietf@elandsys.com> Tue, 26 November 2013 01:00 UTC

Return-Path: <sm@elandsys.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9BF7F1AE0BD for <ietf@ietfa.amsl.com>; Mon, 25 Nov 2013 17:00:09 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RP_MATCHES_RCVD=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AbqAsEqWLgto for <ietf@ietfa.amsl.com>; Mon, 25 Nov 2013 17:00:08 -0800 (PST)
Received: from mx.ipv6.elandsys.com (mx.ipv6.elandsys.com [IPv6:2001:470:f329:1::1]) by ietfa.amsl.com (Postfix) with ESMTP id 4C5341AE0BB for <ietf@ietf.org>; Mon, 25 Nov 2013 17:00:08 -0800 (PST)
Received: from SUBMAN.elandsys.com ([197.224.141.202]) (authenticated bits=0) by mx.elandsys.com (8.14.5/8.14.5) with ESMTP id rAQ0xtfg001645 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Mon, 25 Nov 2013 17:00:06 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=opendkim.org; s=mail2010; t=1385427607; bh=/KQ/CztKlOx56Xj+TR8F/F6UphU+9VzFbgfbxZh30L8=; h=Date:To:From:Subject:Cc:In-Reply-To:References; b=T7Vox61H8RBdmC5DtF06qwE4mC3ImjwF8tca+GWznegtDjbDE4YsmWOeouTUA3AfV 3ii3wWWeCNbsUURV4vWBi17QxiAbkre+lu8pOdh2jLKEjvhrr66bWA2lMQA32wkhiL 4Xx9pEyaLAdR/PeZ2jxjrDgYxiIzg/rpOE7k7cK8=
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=elandsys.com; s=mail; t=1385427607; i=@elandsys.com; bh=/KQ/CztKlOx56Xj+TR8F/F6UphU+9VzFbgfbxZh30L8=; h=Date:To:From:Subject:Cc:In-Reply-To:References; b=q4M0AOl4RCnvziSA97IgZ6g1jbvxdU8Ep/ZVWkH2OPUt/Q4dIpSpuTqFMZSXmxMZR tIwtCeQ2XitFgH8nAiPCWj+H5qy7jvmHPR6ndVG8gxzQEoyA4ye1Uc+rsGppr94AkR f17e1t/9O+vzWONHSkBEDaG8zU7qA2rNf7PJVBzM=
Message-Id: <6.2.5.6.2.20131125161943.0ca00a78@resistor.net>
X-Mailer: QUALCOMM Windows Eudora Version 6.2.5.6
Date: Mon, 25 Nov 2013 16:53:49 -0800
To: Ted Lemon <ted.lemon@nominum.com>
From: S Moonesamy <sm+ietf@elandsys.com>
Subject: Coercion
In-Reply-To: <DCC0C5E5-A69E-4FBD-B666-BD6E58F0979D@nominum.com>
References: <20131125180608.55454.qmail@joyce.lan> <E5836934-317D-4E73-80CC-B8847047852A@virtualized.org> <alpine.BSF.2.00.1311251833400.57383@joyce.lan> <DCC0C5E5-A69E-4FBD-B666-BD6E58F0979D@nominum.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"; format="flowed"
Content-Transfer-Encoding: quoted-printable
Cc: ietf@ietf.org
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 26 Nov 2013 01:00:09 -0000

Hi Ted,
At 15:58 25-11-2013, Ted Lemon wrote:
>(1) I'm not trying to impugn the good work that 
>was done in securing the root key.   It was good 
>work, and I think it was very cool.   I am just 
>asking if, despite that good work, an NSL could 
>get around it.   It's a fair question.   The 
>answer may be "no," or "not without it becoming 
>public," or "with great difficulty."   I doubt 
>it's "easily."   But it's worth asking.   When 
>you did the root signing, we were certainly 
>thinking about this threat model, but it was a 
>bit more academic then than it is now.   I think 
>we still had some illusions that the U.S. 
>government at least would choose a more 
>constrained attack than taking the key to 
>everything; we now know that the government 
>feels no such burden of restraint—they 
>apparently feel that they can be trusted with 
>that key, and we should be willing to provide it.

In my opinion the question was a valid one.  It 
is not clear though.  I agree with Joe that it 
sounds like a question for ICANN.

I asked some questions about the DPS 
previously.  One of the questions was about 
coercion.  I was okay with the response I received at that time.

Regards,
S. Moonesamy

v2.23.0 | Report a Bug | By Email