Re: Bruce Schneier's Proposal to dedicate November meeting to savingthe Internet from the NSA
John C Klensin <john-ietf@jck.com> Mon, 09 September 2013 00:03 UTC
Return-Path: <john-ietf@jck.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D9FE321E8055 for <ietf@ietfa.amsl.com>; Sun, 8 Sep 2013 17:03:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.266
X-Spam-Level:
X-Spam-Status: No, score=-102.266 tagged_above=-999 required=5 tests=[AWL=-0.267, BAYES_00=-2.599, J_CHICKENPOX_52=0.6, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5RVbkeupuxas for <ietf@ietfa.amsl.com>; Sun, 8 Sep 2013 17:03:40 -0700 (PDT)
Received: from bsa2.jck.com (ns.jck.com [70.88.254.51]) by ietfa.amsl.com (Postfix) with ESMTP id D69E421F9F1B for <ietf@ietf.org>; Sun, 8 Sep 2013 17:03:38 -0700 (PDT)
Received: from [198.252.137.115] (helo=JcK-HP8200.jck.com) by bsa2.jck.com with esmtp (Exim 4.71 (FreeBSD)) (envelope-from <john-ietf@jck.com>) id 1VIox6-000IN2-An; Sun, 08 Sep 2013 20:03:36 -0400
Date: Sun, 08 Sep 2013 20:03:31 -0400
From: John C Klensin <john-ietf@jck.com>
To: Tony Finch <dot@dotat.at>
Subject: Re: Bruce Schneier's Proposal to dedicate November meeting to savingthe Internet from the NSA
Message-ID: <F20BF431557B1975BA2BB03C@JcK-HP8200.jck.com>
In-Reply-To: <alpine.LSU.2.00.1309061656580.8632@hermes-2.csi.cam.ac.uk>
References: <5F053C0B-4678-4680-A8BF-62FF282ADDCE@softarmor.com> <alpine.BSF.2.00.1309051743130.47262@hiroshima.bogus.com> <52293197.1060809@gmail.com> <CAMm+LwjdN478yyU=J7=GTpQxqtdgP8wtdEtna50X+WtA-bV3hg@mail.gmail.com> <52294BDC.4060707@gmail.com> <20130906033254.GH62204@mx1.yitter.info> <CAMm+Lwg9kJymBWaEXwZfQ=P5Uo-UmYoNvvzewnXjUu+mhg+QTQ@mail.gmail.com> <006001ceaad6$61f39640$4001a8c0@gateway.2wire.net> <5229D6B0.1040709@qti.qualcomm.com> <20130906141612.GC1249@thunk.org> <6F39C53D-D758-47F8-A6C5-968C6254150C@hopcount.ca> <D1E2C7E887348378A546E9F9@JcK-HP8200.jck.com> <alpine.LSU.2.00.1309061656580.8632@hermes-2.csi.cam.ac.uk>
X-Mailer: Mulberry/4.0.8 (Win32)
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
Cc: IETF Discussion Mailing List <ietf@ietf.org>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 09 Sep 2013 00:03:45 -0000
--On Friday, September 06, 2013 17:11 +0100 Tony Finch <dot@dotat.at> wrote: > John C Klensin <john@jck.com> wrote: >> >> Please correct me if I'm wrong, but it seems to me that >> DANE-like approaches are significantly better than traditional >> PKI ones only to the extent to which: >... > Yes, but there are some compensating pluses: Please note that I didn't say "worse", only "not significantly better". > You can get a meaningful improvement to your security by good > choice of registrar (and registry if you have flexibility in > your choice of name). Other weak registries and registrars > don't reduce your DNSSEC security, whereas PKIX is only as > secure as the weakest CA. Yes and no. Certainly I can improve my security as you note. I can also improve the security of a traditional certificate by selecting from only those CAs who require a high degree of assurance that I am who I say I am. But, from the standpoint of a casual user using readily-available and understandable tools (see my recent note) and encountering a key or signature from someone she doesn't know already, there is little or no way to tell whether the owner of that key used a reliable registrar or a sleazy one or, for the PKI case, a high-assurance and reliable CA or one whose certification criterion is the applicant's ability to pay. There are still differences and I don't mean to dismiss them.I just don't think we should exaggerate their significance. And, yes, part of what I'm concerned about is the very ugly problem of whether, if I encounter an email address and key for TonyFinch@email-expert.pro or, (slightly) worse, in one of the thousand new TLDs that ICANN assures us will improve the quality of their lives, how I determine whether that is you, some other Tony Finch who claims expertise in email, or Betty Attacker Bloggs pretending to be one of you. As Pete has suggested, one way to do that is to set up an encrypted connection without worrying much about authentication and then quiz each other about things that Tony(2), Betty, or John(2) are unlikely to know until we are confident enough for the purposes. But, otherwise.... By contrast, if I know a priori that the Tony Finch I'm concerned about is the person who controls dotat.at and you know that the John Klensin you are concerned about is the person who controls jck.com, and both of us are using addresses in those domains with which we have been familiar for years, then the task is much easier with either a PKI or DANE -- and certainly more convenient and reliable with the latter because we know each other well enough, even if mostly virtually, to be confident that the other is unlikely to be dealing with registrars or registries who would deliberately enable domain or key impersonation. Nor would either of us be likely to be quiet about such practices if they were discovered. > An attacker can use a compromise of your DNS infrastructure to > get a certificate from a conventional CA, just as much as they > could compromise DNSSEC-based service authentication. Exactly. Again, my point in this note and the one I sent to the list earlier today about the PGP-PKI relationship is that we should understand and take advantage of the differences among systems if and when we can, but that it is a bad idea to exaggerate those advantages or differences. john
- Bruce Schneier's Proposal to dedicate November me… Dean Willis
- Re: Bruce Schneier's Proposal to dedicate Novembe… Martin Millnert
- Re: Bruce Schneier's Proposal to dedicate Novembe… Lucy Lynch
- Re: Bruce Schneier's Proposal to dedicate Novembe… Brian E Carpenter
- Re: Bruce Schneier's Proposal to dedicate Novembe… cb.list6
- Re: Bruce Schneier's Proposal to dedicate Novembe… Ted Lemon
- Re: Bruce Schneier's Proposal to dedicate Novembe… Ted Lemon
- Re: Bruce Schneier's Proposal to dedicate Novembe… Phillip Hallam-Baker
- Re: Bruce Schneier's Proposal to dedicate Novembe… Noel Chiappa
- Re: Bruce Schneier's Proposal to dedicate Novembe… Brian E Carpenter
- Re: Bruce Schneier's Proposal to dedicate Novembe… Dave Crocker
- Re: Bruce Schneier's Proposal to dedicate Novembe… Brian E Carpenter
- Re: Bruce Schneier's Proposal to dedicate Novembe… Melinda Shore
- Re: Bruce Schneier's Proposal to dedicate Novembe… Vinayak Hegde
- Re: Bruce Schneier's Proposal to dedicate Novembe… Andrew Sullivan
- Re: Bruce Schneier's Proposal to dedicate Novembe… Vinayak Hegde
- Re: Bruce Schneier's Proposal to dedicate Novembe… Noel Chiappa
- Re: Bruce Schneier's Proposal to dedicate Novembe… Phillip Hallam-Baker
- Re: Bruce Schneier's Proposal to dedicate Novembe… Phillip Hallam-Baker
- Re: Bruce Schneier's Proposal to dedicate Novembe… Randy Bush
- Re: Bruce Schneier's Proposal to dedicate Novembe… Melinda Shore
- Re: Bruce Schneier's Proposal to dedicate Novembe… Jari Arkko
- Re: Bruce Schneier's Proposal to dedicate Novembe… Eliot Lear
- Re: Bruce Schneier's Proposal to dedicate Novembe… Jari Arkko
- Re: Bruce Schneier's Proposal to dedicate Novembe… SM
- Re: Bruce Schneier's Proposal to dedicate Novembe… Måns Nilsson
- Re: Bruce Schneier's Proposal to dedicate Novembe… Hannes Tschofenig
- Re: Bruce Schneier's Proposal to dedicate Novembe… Adam Novak
- Re: Bruce Schneier's Proposal to dedicate Novembe… t.p.
- Re: Bruce Schneier's Proposal to dedicate Novembe… Vinayak Hegde
- Re: Bruce Schneier's Proposal to dedicate Novembe… Hannes Tschofenig
- Re: Bruce Schneier's Proposal to dedicate Novembe… Stewart Bryant
- Re: Bruce Schneier's Proposal to dedicate Novembe… Stephen Farrell
- Re: Bruce Schneier's Proposal to dedicate Novembe… Hannes Tschofenig
- Re: Bruce Schneier's Proposal to dedicate Novembe… Jorge Amodio
- Re: Bruce Schneier's Proposal to dedicate Novembe… Peter Saint-Andre
- Re: Bruce Schneier's Proposal to dedicate Novembe… Alan Johnston
- Re: Bruce Schneier's Proposal to dedicate Novembe… Martin Sustrik
- Re: Bruce Schneier's Proposal to dedicate Novembe… Eliot Lear
- Re: Bruce Schneier's Proposal to dedicate Novembe… Pete Resnick
- Re: Bruce Schneier's Proposal to dedicate Novembe… Scott Brim
- Re: Bruce Schneier's Proposal to dedicate Novembe… Bjoern Hoehrmann
- Re: Bruce Schneier's Proposal to dedicate Novembe… Noel Chiappa
- Re: Bruce Schneier's Proposal to dedicate Novembe… Dave Crocker
- Re: Bruce Schneier's Proposal to dedicate Novembe… John C Klensin
- Re: Bruce Schneier's Proposal to dedicate Novembe… Theodore Ts'o
- Re: Bruce Schneier's Proposal to dedicate Novembe… Theodore Ts'o
- Re: Bruce Schneier's Proposal to dedicate Novembe… Tony Finch
- Re: Bruce Schneier's Proposal to dedicate Novembe… Theodore Ts'o
- Re: Bruce Schneier's Proposal to dedicate Novembe… Stefan Winter
- Re: Bruce Schneier's Proposal to dedicate Novembe… Pete Resnick
- Re: Bruce Schneier's Proposal to dedicate Novembe… Joe Abley
- Re: Bruce Schneier's Proposal to dedicate Novembe… Noel Chiappa
- Re: Bruce Schneier's Proposal to dedicate Novembe… Scott Brim
- Re: Bruce Schneier's Proposal to dedicate Novembe… Dave Crocker
- Re: Bruce Schneier's Proposal to dedicate Novembe… John C Klensin
- Re: Bruce Schneier's Proposal to dedicate Novembe… Brian Trammell
- Re: Bruce Schneier's Proposal to dedicate Novembe… Ted Lemon
- Re: Bruce Schneier's Proposal to dedicate Novembe… Stephane Bortzmeyer
- Re: Bruce Schneier's Proposal to dedicate Novembe… Pete Resnick
- Re: Bruce Schneier's Proposal to dedicate Novembe… Scott Brim
- Re: Bruce Schneier's Proposal to dedicate Novembe… John C Klensin
- Re: Bruce Schneier's Proposal to dedicate Novembe… Ted Lemon
- Re: Bruce Schneier's Proposal to dedicate Novembe… Dave Crocker
- Re: Bruce Schneier's Proposal to dedicate Novembe… John C Klensin
- Re: Bruce Schneier's Proposal to dedicate Novembe… SM
- Re: Bruce Schneier's Proposal to dedicate Novembe… Spencer Dawkins
- Re: Bruce Schneier's Proposal to dedicate Novembe… Tony Finch
- Re: Bruce Schneier's Proposal to dedicate Novembe… Arturo Servin
- Re: Bruce Schneier's Proposal to dedicate Novembe… Noel Chiappa
- Re: Bruce Schneier's Proposal to dedicate Novembe… Hannes Tschofenig
- Re: Bruce Schneier's Proposal to dedicate Novembe… Hannes Tschofenig
- Re: Bruce Schneier's Proposal to dedicate Novembe… Abdussalam Baryun
- Re: Bruce Schneier's Proposal to dedicate Novembe… Michael Richardson
- Re: Bruce Schneier's Proposal to dedicate Novembe… Adam Novak
- Re: Bruce Schneier's Proposal to dedicate Novembe… Spencer Dawkins
- Re: Bruce Schneier's Proposal to dedicate Novembe… Dean Willis
- RE: Bruce Schneier's Proposal to dedicate Novembe… George, Wes
- Re: Bruce Schneier's Proposal to dedicate Novembe… Dean Willis
- Re: Bruce Schneier's Proposal to dedicate Novembe… Dave Crocker
- Re: Bruce Schneier's Proposal to dedicate Novembe… Ted Lemon
- Re: Bruce Schneier's Proposal to dedicate Novembe… Keith Moore
- Teachable moment Brian E Carpenter
- Re: Bruce Schneier's Proposal to dedicate Novembe… Måns Nilsson
- Re: Bruce Schneier's Proposal to dedicate Novembe… SM
- Re: Bruce Schneier's Proposal to dedicate Novembe… David Conrad
- Re: Bruce Schneier's Proposal to dedicate Novembe… Tim Bray
- Re: Bruce Schneier's Proposal to dedicate Novembe… Ted Lemon
- Re: Bruce Schneier's Proposal to dedicate Novembe… David Morris
- Re: Bruce Schneier's Proposal to dedicate Novembe… Scott Brim
- Re: Bruce Schneier's Proposal to dedicate Novembe… SM
- Re: Bruce Schneier's Proposal to dedicate Novembe… Dave Crocker
- Re: Bruce Schneier's Proposal to dedicate Novembe… Phillip Hallam-Baker
- Re: Bruce Schneier's Proposal to dedicate Novembe… Patrik Fältström
- Re: Bruce Schneier's Proposal to dedicate Novembe… Jorge Amodio
- Re: Bruce Schneier's Proposal to dedicate Novembe… Patrik Fältström
- Re: Bruce Schneier's Proposal to dedicate Novembe… Phillip Hallam-Baker
- Re: Bruce Schneier's Proposal to dedicate Novembe… ned+ietf
- Re: Bruce Schneier's Proposal to dedicate Novembe… Ted Lemon
- Equably when it comes to privacy SM
- Re: Equably when it comes to privacy Phillip Hallam-Baker
- Re: Equably when it comes to privacy Jorge Amodio
- Re: Equably when it comes to privacy Phillip Hallam-Baker
- Re: Equably when it comes to privacy Scott Kitterman
- Re: Equably when it comes to privacy SM
- Re: Equably when it comes to privacy joel jaeggli
- Re: Equably when it comes to privacy Janet P Gunn
- RE: Bruce Schneier's Proposal to dedicate Novembe… l.wood
- Re: Bruce Schneier's Proposal to dedicate Novembe… John C Klensin
- Re: Equably when it comes to privacy SM
- Re: Equably when it comes to privacy joel jaeggli
- RE: Bruce Schneier's Proposal to dedicate Novembe… l.wood
- Re: Bruce Schneier's Proposal to dedicate Novembe… Ross Finlayson
- Re: Bruce Schneier's Proposal to dedicate Novembe… Eliot Lear
- Re: Teachable moment Jari Arkko
- Re: Bruce Schneier's Proposal to dedicate Novembe… Erik Nordmark
- Re: Equably when it comes to privacy Abdussalam Baryun
- Re: Bruce Schneier's Proposal to dedicate Novembe… Tobias Gondrom
- Re: Bruce Schneier's Proposal to dedicate Novembe… Tobias Gondrom
- Re: Bruce Schneier's Proposal to dedicate Novembe… Phillip Hallam-Baker