IETF Logo Mail Archive

Re: [openpgp] Character encodings

Phillip Hallam-Baker <phill@hallambaker.com> Tue, 17 March 2015 23:33 UTC

Return-Path: <hallam@gmail.com>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 92AA31A1BD2 for <openpgp@ietfa.amsl.com>; Tue, 17 Mar 2015 16:33:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.277
X-Spam-Level:
X-Spam-Status: No, score=-1.277 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FM_FORGED_GMAIL=0.622, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RDbMIINt9KWw for <openpgp@ietfa.amsl.com>; Tue, 17 Mar 2015 16:33:11 -0700 (PDT)
Received: from mail-lb0-x235.google.com (mail-lb0-x235.google.com [IPv6:2a00:1450:4010:c04::235]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BECF91A1BCF for <openpgp@ietf.org>; Tue, 17 Mar 2015 16:33:10 -0700 (PDT)
Received: by lbbsy1 with SMTP id sy1so18326970lbb.1 for <openpgp@ietf.org>; Tue, 17 Mar 2015 16:33:09 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date:message-id:subject :from:to:cc:content-type; bh=jzgJm/b2PRAaZFTwmhXrurLGyiaPZFl5ZlUQOTbMURg=; b=XhUad1M0x1jmGSMME3wnrVSFK/rq243+0NqOSq2CHgOl/3x9iiPNd9DyegWMGJ92Qe 0pXqgRZToAFzxTG+olsiMT/y75aPIkv980zDGdr0mMT1cs/F3td2XYn9TRQofsRp340t iQhafb6UZZSSlHHk4jn0FHRBzPknowigsYOwDT9t6dRBDzoz0uGiir1iMfmjWOaGpoaI 8PE9shW6Z5ZFX+Ub414Kr2PObC9AvRqGofqMrbOkqUrDSPb+S1JK3/6VcA9chcgbkq5r H+6j+lZM3Wm9oAON25lmnpgBR+AEV6k7zkGlrc32Lw5oIxS+xnubHAoUxsumYHj9Ysiu 7I/Q==
MIME-Version: 1.0
X-Received: by 10.152.4.136 with SMTP id k8mr62102070lak.103.1426635189315; Tue, 17 Mar 2015 16:33:09 -0700 (PDT)
Sender: hallam@gmail.com
Received: by 10.112.45.203 with HTTP; Tue, 17 Mar 2015 16:33:09 -0700 (PDT)
In-Reply-To: <BA6424A3-68E7-4690-AA13-EE4B1C3F964C@callas.org>
References: <CAHRa8=UbKKnmAmHCxsGwONsgM5udRbbKkm=Nyzf7Jrgg70+j5A@mail.gmail.com> <BA6424A3-68E7-4690-AA13-EE4B1C3F964C@callas.org>
Date: Tue, 17 Mar 2015 19:33:09 -0400
X-Google-Sender-Auth: 6Q4UQJhmDsq0xVTFB6EuK6CI7bM
Message-ID: <CAMm+Lwjbrn8AGbSmBY33+o04vx7q7LH0jdYC8HjEWmKCQtAuxQ@mail.gmail.com>
From: Phillip Hallam-Baker <phill@hallambaker.com>
To: Jon Callas <jon@callas.org>
Content-Type: multipart/alternative; boundary="089e013d119aaeedf60511846322"
Archived-At: <http://mailarchive.ietf.org/arch/msg/openpgp/MHHMFj7VTqVUwI-gTJAODj-HI4E>
Cc: "openpgp@ietf.org" <openpgp@ietf.org>
Subject: Re: [openpgp] Character encodings
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 17 Mar 2015 23:33:12 -0000

On Tue, Mar 17, 2015 at 3:44 PM, Jon Callas <jon@callas.org> wrote:

> One of the things that OpenPGP doesn't do very well that needs to be fixed
> is layering.
>
> We have the notion of text versus binary because at one time that kinda
> made sense. Back when FTP was high-tech, you could get better usability by
> knowing that something was text so that you could translate between SIXBIT,
> EBCDIC, RAD50, ASCII, and other codings that only used upper case in their
> names (because lower-case was also high-tech in those days).
>
> We don't have those problems any more. We have slightly different
> problems, but we also have solutions to those. If you want to send a text
> message that has a strange encoding, there are ways to do that. Wyllys
> Ingersoll and others have noted this.
>
> Just get rid of the notion of text. Make it be all binary. Push the
> problem up a layer in the software stack -- they have to deal with it
> anyway, and all OpenPGP can do is make it worse.
>

+1

It is all just binary blobs for the end-to-end crypto layer.

The biggest mistakes in the Internet are all due to naive attempts to solve
problems for the end user by converting their bits from one format to
another.

Remember when every time you used FTP you had to do every file transfer
twice because the first time you forgot to set the flag to Binary
transport? The main reason email is a problem is that mail gateways do
idiot character transformations like line wrapping and get things wrong.

The layering issue is key. SMTP and HTTP both conflate the application
layer headers and content metadata. These should be separated out. Now it
is too late to do that for regular mail but we can start fixing it for
encrypted.

The content-type, character set, subject line etc. should all be considered
content metadata. In fact From, To, CC should as well because those are not
what SMTP uses to route on, the SMTP values are used.

This also solves the problem of not leaking unnecessary information.


Yes, I understand that using SMTP in its current form will leak information
as well. But there are ways to start fixing that.

v2.23.0 | Report a Bug | By Email