IETF Logo Mail Archive

[Medup] New draft for MEDUP requirements and threat model

Bernie Hoeneisen <bernie@ietf.hoeneisen.ch> Sat, 13 July 2019 15:05 UTC

Return-Path: <bernie@ietf.hoeneisen.ch>
X-Original-To: medup@ietfa.amsl.com
Delivered-To: medup@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2166E1200CD for <medup@ietfa.amsl.com>; Sat, 13 Jul 2019 08:05:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id V7WZprOTI0gC for <medup@ietfa.amsl.com>; Sat, 13 Jul 2019 08:05:44 -0700 (PDT)
Received: from softronics.hoeneisen.ch (softronics.hoeneisen.ch [62.2.86.178]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D66FF120026 for <medup@ietf.org>; Sat, 13 Jul 2019 08:05:43 -0700 (PDT)
Received: from localhost ([127.0.0.1]) by softronics.hoeneisen.ch with esmtp (Exim 4.86_2) (envelope-from <bernie@ietf.hoeneisen.ch>) id 1hmJak-0006BU-Kv for medup@ietf.org; Sat, 13 Jul 2019 17:05:38 +0200
Date: Sat, 13 Jul 2019 17:05:38 +0200
From: Bernie Hoeneisen <bernie@ietf.hoeneisen.ch>
X-X-Sender: bhoeneis@softronics.hoeneisen.ch
To: IETF MEDUP ML <medup@ietf.org>
Message-ID: <alpine.DEB.2.20.1907131658590.23633@softronics.hoeneisen.ch>
User-Agent: Alpine 2.20 (DEB 67 2015-01-07)
MIME-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"; format="flowed"
X-SA-Exim-Connect-IP: 127.0.0.1
X-SA-Exim-Mail-From: bernie@ietf.hoeneisen.ch
X-SA-Exim-Scanned: No (on softronics.hoeneisen.ch); SAEximRunCond expanded to false
Archived-At: <https://mailarchive.ietf.org/arch/msg/medup/J2UuvghcD6aK3ROPExuJDwI7C9U>
Subject: [Medup] New draft for MEDUP requirements and threat model
X-BeenThere: medup@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Missing Elements for Decentralized and Usable Privacy <medup.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/medup>, <mailto:medup-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/medup/>
List-Post: <mailto:medup@ietf.org>
List-Help: <mailto:medup-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/medup>, <mailto:medup-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 13 Jul 2019 15:05:47 -0000

Dear MEDUP mailign list

Please be informed that we submitted a new draft on Privacy and Security 
Threat Analysis and Requirements for Private Messaging that may be 
addressed in the future Working group (see below).

We tried to formulate the requirements more generic than those that the 
pEp reference implementations are based on. We are interested in your feedback 
on this list in particular:

- to learn whether or not we are on the right track
- whether other implementations in this area have different requirements

We will discuss this also during the Wednesday afternoon session (MEDUP 
non-WG meeting).

All the best
  Bernie



---------- Forwarded message ----------
Date: Mon, 8 Jul 2019 17:16:06
From: internet-drafts@ietf.org
To: Bernie Hoeneisen <bernie@ietf.hoeneisen.ch>,
     Iraklis Symeonidis <iraklis.symeonidis@uni.lu>
Subject: New Version Notification for draft-symeonidis-medup-requirements-00.txt


A new version of I-D, draft-symeonidis-medup-requirements-00.txt
has been successfully submitted by Bernie Hoeneisen and posted to the
IETF repository.

Name:		draft-symeonidis-medup-requirements
Revision:	00
Title:		Privacy and Security Threat Analysis and Requirements for Private Messaging
Document date:	2019-07-08
Group:		Individual Submission
Pages:		19
URL:            https://www.ietf.org/internet-drafts/draft-symeonidis-medup-requirements-00.txt
Status:         https://datatracker.ietf.org/doc/draft-symeonidis-medup-requirements/
Htmlized:       https://tools.ietf.org/html/draft-symeonidis-medup-requirements-00
Htmlized:       https://datatracker.ietf.org/doc/html/draft-symeonidis-medup-requirements


Abstract:
    [RFC8280] has identified and documented important principles, such as
    Data Minimization, End-to-End, and Interoperability in order to
    enable access to fundamental Human Rights.  While (partial)
    implementations of these concepts are already available, many current
    applications lack Privacy support that the average user can easily
    navigate.  This document covers analysis of threats to privacy and
    security and derives requirements from this threat analysis.




Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.

The IETF Secretariat

v2.23.0 | Report a Bug | By Email