IETF Logo Mail Archive

Re: the introduction problem, was Email and reputation (was Re: Service outages planned for April 25)

Keith Moore <moore@network-heretics.com> Sat, 14 May 2022 20:46 UTC

Return-Path: <moore@network-heretics.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 447F3C1850F3 for <ietf@ietfa.amsl.com>; Sat, 14 May 2022 13:46:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.753
X-Spam-Level:
X-Spam-Status: No, score=-3.753 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, NICE_REPLY_A=-1.857, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=messagingengine.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2ouSSp4bwps5 for <ietf@ietfa.amsl.com>; Sat, 14 May 2022 13:46:32 -0700 (PDT)
Received: from wout4-smtp.messagingengine.com (wout4-smtp.messagingengine.com [64.147.123.20]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 63CBAC1850EB for <ietf@ietf.org>; Sat, 14 May 2022 13:46:32 -0700 (PDT)
Received: from compute3.internal (compute3.nyi.internal [10.202.2.43]) by mailout.west.internal (Postfix) with ESMTP id BCC3E320079B for <ietf@ietf.org>; Sat, 14 May 2022 16:46:29 -0400 (EDT)
Received: from mailfrontend1 ([10.202.2.162]) by compute3.internal (MEProxy); Sat, 14 May 2022 16:46:29 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-type:date:date:from:from :in-reply-to:in-reply-to:message-id:mime-version:references :reply-to:sender:subject:subject:to:to:x-me-proxy:x-me-proxy :x-me-sender:x-me-sender:x-sasl-enc; s=fm1; t=1652561189; x= 1652647589; bh=5W1utJqoIkOvrZKRxAEcKLJj2mzOR1Xeq8WXdB7lqKU=; b=m Lw0cR9fZij8FFAxdxr94RlSCWG57Z0cCvLAYSM1EUzQXczxEwTCn8f0pjEC1Y02M 7louV0BPQjD6tJAA92lyIADG1JJIlY9wcyJeZvBOVQgHQwODThoxHhBjT6KSEd+F 6kZ7zDpEZillgdxZiG+iecrd/HDvcSOsF6YKrx+vSGRMEsPnLc8+Dhu3cxEU47wa WJS+MGa+hAamRFVEufXeA7uuWNJn9DLmBbDcfqNcxHh8y08/bs4qlpMUR6lZUFHo bq7UdSSdjr0EQNIhJrgXk+Rt2QqAnDiBQDeKwvpWjoKuewgCeLvtwLxauq6W1Bck pnKOVp4Ihy15MmsHgq01g==
X-ME-Sender: <xms:JRWAYvSOCpDvihytekrtnJfuez1OkuZZV29u_kYTUb0I5BkKrruuBA> <xme:JRWAYgwy1Hnp8heqVEssEXKbJg6FaY-TE8-pn65-qXgBQd8rYrg02uohIW7GgpfD9 hXlfYp7QoFYGw>
X-ME-Received: <xmr:JRWAYk1vwAZHcdCS0r7voBFBMfSKhbicPKjnqzqsVeRTXYrdrr6RoKqZ7pAgG_386ruZ0n1Hzn51PbjNv7eseixCDboL0-nTQm5Ys6rr5kt5QSl8QmJEzA>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvfedrhedugdduheduucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucenucfjughrpegtkfffgggfuffvfhfhjgesrgdtre ertdefjeenucfhrhhomhepmfgvihhthhcuofhoohhrvgcuoehmohhorhgvsehnvghtfiho rhhkqdhhvghrvghtihgtshdrtghomheqnecuggftrfgrthhtvghrnhepheefuddvgefgfe evieeigfegledufeejudeiteeludegfeffleffveeiffekieffnecuvehluhhsthgvrhfu ihiivgeptdenucfrrghrrghmpehmrghilhhfrhhomhepmhhoohhrvgesnhgvthifohhrkh dqhhgvrhgvthhitghsrdgtohhm
X-ME-Proxy: <xmx:JRWAYvD9zWmmWhg3tpVqhkQIYXvNaNYrYyQaswjhCJ4fvwRV0FzsqQ> <xmx:JRWAYoiDXpSHgYSvuQpXd5kAQubMK_OkcTb9as5idit2T_CfhwGtKA> <xmx:JRWAYjrNsMhKtLuYO7sbt7fJtnkRIeYMhRYn9dTnl285QhUPtCzYWg> <xmx:JRWAYjtkuuFa35hbX55QFMr-Wzrpdw1IdbvbMdYzo9N4BNOqlvUSBQ>
Received: by mail.messagingengine.com (Postfix) with ESMTPA for <ietf@ietf.org>; Sat, 14 May 2022 16:46:28 -0400 (EDT)
Content-Type: multipart/alternative; boundary="------------0SbE7rxmGxIItQDeqNJvOuCq"
Message-ID: <63d9d74b-92a6-4a0c-48fb-c695dcb01d36@network-heretics.com>
Date: Sat, 14 May 2022 16:46:28 -0400
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Thunderbird/91.8.1
Subject: Re: the introduction problem, was Email and reputation (was Re: Service outages planned for April 25)
Content-Language: en-US
To: ietf@ietf.org
References: <20220514171447.23A3840334EA@ary.qy>
From: Keith Moore <moore@network-heretics.com>
In-Reply-To: <20220514171447.23A3840334EA@ary.qy>
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf/xM3zjzzLi0X2XoPyXJ7zwQmUbMo>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.34
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 14 May 2022 20:46:37 -0000

On 5/14/22 13:14, John Levine wrote:

>> * Anyone with an introduction from someone I have authorized to give
>> introductions
> That's exactly web of trust, and we have seen why that doesn't scale,
> because your contacts' preferences aren't yours.  ("Gee, he seemed so
> nice and it would have been rude to refuse.")

Actually it's not quite the same as web of trust in the PGP sense.   
People routinely understand that just because Alice and Bob know each 
other does not mean that either Alice or Bob should disclose the other's 
contact information to a third party without the other's permission, or 
at least without a very finely tuned sense of the other's boundaries.  
If one of them does disclose the other's contact information, that's a 
betrayal of trust that has consequences, especially if done too many 
times.  Introductions of this kind have been used for centuries at 
least.  I don't see a scaling problem with this idea unless you somehow 
expect that all legitimate sending of messages between strangers should 
require prior introductions.

PHB's proposal adds a layer to that which is Alice must be authorized by 
Bob to introduce Bob to someone else.  Presumably that authorization can 
be withdrawn by Bob at any time should Alice betray that trust, or 
should Alice and Bob become more distant.

PGP's web of trust wasn't trying to solve the same problem at all.   
Among the many problems with PGP's web of trust was that the kind of 
trust needed to certify strangers' credentials to one another simply 
isn't transitive.   But I don't see how PHB is trying to make his 
introductions transitive.

Keith

v2.23.0 | Report a Bug | By Email