IETF Logo Mail Archive

Re: [Last-Call] Last Call: <draft-knodel-e2ee-definition-07.txt> (Definition of End-to-end Encryption) to Informational RFC

Keith Moore <moore@network-heretics.com> Thu, 13 October 2022 07:12 UTC

Return-Path: <moore@network-heretics.com>
X-Original-To: last-call@ietfa.amsl.com
Delivered-To: last-call@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 244EDC1524DB for <last-call@ietfa.amsl.com>; Thu, 13 Oct 2022 00:12:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.907
X-Spam-Level:
X-Spam-Status: No, score=-6.907 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, NICE_REPLY_A=-0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=messagingengine.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id EbEaIncmrW2Q for <last-call@ietfa.amsl.com>; Thu, 13 Oct 2022 00:11:55 -0700 (PDT)
Received: from out3-smtp.messagingengine.com (out3-smtp.messagingengine.com [66.111.4.27]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 40A6CC1524D9 for <last-call@ietf.org>; Thu, 13 Oct 2022 00:11:54 -0700 (PDT)
Received: from compute4.internal (compute4.nyi.internal [10.202.2.44]) by mailout.nyi.internal (Postfix) with ESMTP id 049BC5C0051 for <last-call@ietf.org>; Thu, 13 Oct 2022 03:11:51 -0400 (EDT)
Received: from mailfrontend1 ([10.202.2.162]) by compute4.internal (MEProxy); Thu, 13 Oct 2022 03:11:51 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-transfer-encoding:content-type :date:date:feedback-id:feedback-id:from:from:in-reply-to :in-reply-to:message-id:mime-version:references:reply-to:sender :subject:subject:to:to:x-me-proxy:x-me-proxy:x-me-sender :x-me-sender:x-sasl-enc; s=fm3; t=1665645111; x=1665731511; bh=v WXDZC19XT1TIv9fskrSOKfTzjl0DXwL4hsGSSZwCD8=; b=MFvDN0dDhDBX4AxMm aBJ1nXf65Pany6MaA/TseYvLRjfQTjfgZOneikFp1Ivlv5eQNmQ+HVKemVwEC7O/ lWQuH8/+9Y5nbKckpLjhPNS9BEI0DgbLgrD86KBKBF2aaM67CyuAkQy+zlkPKzpN u04W+OknfIkYlzhLhPThaNlNkdU5TdfXswjbwg7oN9nAoBGLwGihW0FPlLJQ0lC+ SrFmFrPbb4JCuh8jAEV9tAczKMAfrPrZXJj3CSU+Hrb4H80fZRWNP/KnYhoeAc6h xXW1mE9RkwaF3ZPpKkw9uM+TqJZFRDu8AFitUb3fpAzX7CR1QIaPYAIEPrpPDdpx 9m7iQ==
X-ME-Sender: <xms:NrpHY6CwK9anGsehr0bZJwFPyhKb05rh2-_9UgYZ7AmrJkCWP18rUQ> <xme:NrpHY0gQwEyiqsNwDUx2vhjvkNuM-IeYqxJkh9shbxQZlMNhMXLu-ZbjH4mG-Oir5 kzxtbnlTraSCA>
X-ME-Received: <xmr:NrpHY9n2J6YttLkce-cEDI4XbNqIYAWG3gZJ5iFZ2EkZbMznGazA94vUu9DLvmOWS_fAjHQNZ05rUtruegUcOwgFNMMYc1XyXX_UxS8Jh4TBslvHDMKu9g>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvfedrfeejledguddukecutefuodetggdotefrod ftvfcurfhrohhfihhlvgemucfhrghsthforghilhdpqfgfvfdpuffrtefokffrpgfnqfgh necuuegrihhlohhuthemuceftddtnecunecujfgurhepkfffgggfuffvfhfhjggtgfesth ejredttdefjeenucfhrhhomhepmfgvihhthhcuofhoohhrvgcuoehmohhorhgvsehnvght fihorhhkqdhhvghrvghtihgtshdrtghomheqnecuggftrfgrthhtvghrnhephfeikefgue dvgfehteettddvieevgedvuddvfeeufeeifedujeefuddvheduieeinecuvehluhhsthgv rhfuihiivgeptdenucfrrghrrghmpehmrghilhhfrhhomhepmhhoohhrvgesnhgvthifoh hrkhdqhhgvrhgvthhitghsrdgtohhm
X-ME-Proxy: <xmx:NrpHY4x8uqmcDApvxUg0dx2OxqRQxeNqUJi_0rImLp4qXo2oWycvKw> <xmx:NrpHY_SToEUReaoGS-PEHTaeswQfnXoyVUspwjaGOM6y8GnjBZ4Zwg> <xmx:NrpHYzbTImg5oPXApRu2efLQeAt3VSix7Pa9-ZRTXU6Ytgu2UmFdkQ> <xmx:N7pHY2ePxTHoEunyGuPmtNx-_CpvtbqESCrPrMtA50QZvWKcrwWKDw>
Feedback-ID: i5d8c41f0:Fastmail
Received: by mail.messagingengine.com (Postfix) with ESMTPA for <last-call@ietf.org>; Thu, 13 Oct 2022 03:11:50 -0400 (EDT)
Message-ID: <6319ec6c-33ab-b7a9-af9d-dd7b5172b1a9@network-heretics.com>
Date: Thu, 13 Oct 2022 03:11:50 -0400
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Thunderbird/102.2.2
Content-Language: en-US
To: last-call@ietf.org
References: <20221012203820.8B0E44C761B4@ary.local> <20221012215826.72CC44C7714C@ary.local> <Y0dTp9zpokQxCM/w@faui48e.informatik.uni-erlangen.de> <9e734c66ef5c96dd4c1d52caece48d1ffc1fb451.camel@ifi.uio.no>
From: Keith Moore <moore@network-heretics.com>
In-Reply-To: <9e734c66ef5c96dd4c1d52caece48d1ffc1fb451.camel@ifi.uio.no>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/last-call/dt3U73NjQex1svwAlU8PqzgJnkk>
Subject: Re: [Last-Call] Last Call: <draft-knodel-e2ee-definition-07.txt> (Definition of End-to-end Encryption) to Informational RFC
X-BeenThere: last-call@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: IETF Last Calls <last-call.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/last-call>, <mailto:last-call-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/last-call/>
List-Post: <mailto:last-call@ietf.org>
List-Help: <mailto:last-call-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/last-call>, <mailto:last-call-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 13 Oct 2022 07:12:00 -0000

On 10/13/22 02:52, Kjetil Torgrim Homme wrote:

> It is not impossible to implement true E2EE web-mail - you just have to
> do the decryption using JavaScript in the browser.

Practically speaking this is not much of an improvement, since the 
application vendor can always alter that JS to disclose cleartext, can 
even do so selectively on a per-user basis, and can be coerced into 
doing so by governments and perhaps others.

Keith

v2.23.0 | Report a Bug | By Email