IETF Logo Mail Archive

Re: PGP security models, was Summary of IETF LC for draft-ietf-dane-openpgpkey

robert <robert.w.withers@gmail.com> Thu, 24 September 2015 20:21 UTC

Return-Path: <robert.w.withers@gmail.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6CA161ACC81 for <ietf@ietfa.amsl.com>; Thu, 24 Sep 2015 13:21:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Rrq9uiZAdzFe for <ietf@ietfa.amsl.com>; Thu, 24 Sep 2015 13:20:58 -0700 (PDT)
Received: from mail-qk0-x236.google.com (mail-qk0-x236.google.com [IPv6:2607:f8b0:400d:c09::236]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 64A691ACAD8 for <ietf@ietf.org>; Thu, 24 Sep 2015 13:20:58 -0700 (PDT)
Received: by qkfq186 with SMTP id q186so34579144qkf.1 for <ietf@ietf.org>; Thu, 24 Sep 2015 13:20:57 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=subject:to:references:cc:from:message-id:date:user-agent :mime-version:in-reply-to:content-type; bh=KUOlMAapg+VFT9deNjTTUW/rpIeorTIa+Wd6wpinEPw=; b=L7haHDnJOh2G8euY3+akd7Kr1jdbTYbNaUehBrjjPGBwsol8apM9/HdZfkxBLJWwOE GkabjtprMBZY1qiPvKmnjOf0MAF5acV+9GZP14zKRgDfNAAMn0Eg5WO0WOC7lUncUPOG 100oz8ixnOmOMLeVw7aJ9jL6s5dd2Mns5H6m9P3SeLvXce68LvYDyoCRiiMaQHylzVR5 zZJh+hdvJ9YLQRhXx8F2SYa1HuE4fX9er1xuMUZgpjRyZjl6Zpt9OucPVdIPY4DnjqLC gfcUNLmd3EY9l4geudIPnQTJeBlSG13tZZv9xN4NAmDAL2K4jF3eE5sq4uiehowtxgpo xTnw==
X-Received: by 10.55.197.139 with SMTP id k11mr2007293qkl.11.1443126057560; Thu, 24 Sep 2015 13:20:57 -0700 (PDT)
Received: from ?IPv6:2606:a000:4069:2d00:2441:d588:7f4a:5562? ([2606:a000:4069:2d00:2441:d588:7f4a:5562]) by smtp.gmail.com with ESMTPSA id f107sm14393qge.23.2015.09.24.13.20.56 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Thu, 24 Sep 2015 13:20:56 -0700 (PDT)
Subject: Re: PGP security models, was Summary of IETF LC for draft-ietf-dane-openpgpkey
To: Phillip Hallam-Baker <phill@hallambaker.com>
References: <20150923153523.7990.qmail@ary.lan> <tslbnctgm4x.fsf@mit.edu> <alpine.OSX.2.11.1509231336100.14529@ary.lan> <tsltwqlf0ph.fsf@mit.edu> <alpine.OSX.2.11.1509231446360.14529@ary.lan> <alpine.LSU.2.00.1509241006350.7380@hermes-2.csi.cam.ac.uk> <87mvwcoxfw.fsf@latte.josefsson.org> <CAMm+LwgoB1vB4-QqAHQk09vHFvus79xM=0zgxqEoFu0ZsS9Qbg@mail.gmail.com> <5603E66E.1060907@gmail.com> <CAMm+Lwiuxa7K4M1mgvK6No=2+b83gPc=R1Er52HgsoH=S-GPXQ@mail.gmail.com>
From: robert <robert.w.withers@gmail.com>
Message-ID: <56045B34.2020000@gmail.com>
Date: Thu, 24 Sep 2015 16:21:08 -0400
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:38.0) Gecko/20100101 Thunderbird/38.2.0
MIME-Version: 1.0
In-Reply-To: <CAMm+Lwiuxa7K4M1mgvK6No=2+b83gPc=R1Er52HgsoH=S-GPXQ@mail.gmail.com>
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg="sha-256"; boundary="------------ms050707000400050506000500"
Archived-At: <http://mailarchive.ietf.org/arch/msg/ietf/hCW8BSTsOE3oNN6IYnsxTLXBBq4>
Cc: IETF Discussion Mailing List <ietf@ietf.org>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 24 Sep 2015 20:21:00 -0000

Philip,

I've been up some days now with a couple of kitten naps with lots on my 
plate.  Would you help me by providing a brief overview of the thesis, 
model and impl, please? It certainly sounds exciting with your modeling 
at the meta.

Regards,
Robert

On 9/24/2015 10:05 AM, Phillip Hallam-Baker wrote:
> On Thu, Sep 24, 2015 at 8:02 AM, robert <robert.w.withers@gmail.com 
> <mailto:robert.w.withers@gmail.com>> wrote:
>
>     I've sort of been following this discussion, not being too
>     familiar with thinking about PGP. I did an S/MIME impl awhile back.
>
>     I would like to propose adding 2 features:
>     a. add a registry family that is self-signed and the members form
>     a quorum for election and the family cert is distributed across
>     many registries and there is eventual consistency.
>     b. use a blockchain to make eventually consistent and authenticate
>     the quorum of members of a self-signed family cert, published to
>     global registry.
>
>     I think you blockchain the self-signed, globally published family
>     cert which contains quorum approval of additions and revocations
>     of certs produced by this self-signed family cert with CA ability.
>     I think that's secure without 3rd party CA/RevokeCertList (if
>     IIIRC it's name).
>
>     Do you think my proposal has merit?
>
>
> Take a look at this, it gives a mathematical framework for that sort 
> of approach:
>
> https://tools.ietf.org/html/draft-hallambaker-prismproof-trust-01
>
>
> The Meta Mathematical Mesh is intended to work in that way. Just 
> finishing some code and producing initial specs.
>
>

v2.23.0 | Report a Bug | By Email