Re: [openpgp] Keyserverless Use of OpenPGP in Email
Derek Atkins <derek@ihtfp.com> Tue, 12 April 2016 14:46 UTC
Return-Path: <derek@ihtfp.com>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 50D9D12DF64 for <openpgp@ietfa.amsl.com>; Tue, 12 Apr 2016 07:46:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ihtfp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5lYavzLR1a8H for <openpgp@ietfa.amsl.com>; Tue, 12 Apr 2016 07:46:05 -0700 (PDT)
Received: from mail2.ihtfp.org (MAIL2.IHTFP.ORG [204.107.200.7]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E0A4612D54A for <openpgp@ietf.org>; Tue, 12 Apr 2016 07:46:04 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mail2.ihtfp.org (Postfix) with ESMTP id 5D01DE2036; Tue, 12 Apr 2016 10:46:02 -0400 (EDT)
Received: from mail2.ihtfp.org ([127.0.0.1]) by localhost (mail2.ihtfp.org [127.0.0.1]) (amavisd-maia, port 10024) with ESMTP id 15970-10; Tue, 12 Apr 2016 10:45:53 -0400 (EDT)
Received: from securerf.ihtfp.org (tacc-24-54-172-229.smartcity.com [24.54.172.229]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mocana.ihtfp.org", Issuer "IHTFP Consulting Certification Authority" (verified OK)) by mail2.ihtfp.org (Postfix) with ESMTPS id A67B1E2030; Tue, 12 Apr 2016 10:45:52 -0400 (EDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ihtfp.com; s=default; t=1460472352; bh=Mr3ld2J1GNFB5+OAMpSw6FTQRpEh0Ce6UtyCphVm9/w=; h=From:To:Cc:Subject:References:Date:In-Reply-To; b=QfKiGGXVpg+kwL67Io/Z8vzF+qy0mDFmv6JHf2YmfqYVwhzZhn6vBqMsB1Hw/Ixql 4+3noAhFVVwMUlDnDhA9ZwXM9MDlwuBgMF3i0kmwhxWX5iu74kQhSjLHi77lOiOGoa wN5QBBt01dftKYhqwnvvJwEp/7JynQfN29BVZf/8=
Received: (from warlord@localhost) by securerf.ihtfp.org (8.15.2/8.14.8/Submit) id u3CEjlm5030521; Tue, 12 Apr 2016 10:45:47 -0400
From: Derek Atkins <derek@ihtfp.com>
To: Vincent Breitmoser <look@my.amazin.horse>
References: <20160412121549.GB16775@littlepip.fritz.box>
Date: Tue, 12 Apr 2016 10:45:47 -0400
In-Reply-To: <20160412121549.GB16775@littlepip.fritz.box> (Vincent Breitmoser's message of "Tue, 12 Apr 2016 14:15:49 +0200")
Message-ID: <sjm7fg23mxw.fsf@securerf.ihtfp.org>
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.5 (gnu/linux)
MIME-Version: 1.0
Content-Type: text/plain
X-Virus-Scanned: Maia Mailguard 1.0.2a
Archived-At: <http://mailarchive.ietf.org/arch/msg/openpgp/W0sKdY8cOPmr18cJEzvSm7m0048>
Cc: IETF OpenPGP <openpgp@ietf.org>, openpgp-email <openpgp-email@enigmail.net>
Subject: Re: [openpgp] Keyserverless Use of OpenPGP in Email
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 12 Apr 2016 14:46:06 -0000
Hi,
Vincent Breitmoser <look@my.amazin.horse> writes:
> Hi,
>
> (crossposting to openpgp-email and openpgp-wg, the lists where I expect
> the highest rates of interested people)
>
> I'd like to discuss a thought that has come up in my work on k9 mail:
> Using OpenPGP in E-Mail without relying on keyservers. As a motivation,
> just consider someone spins up their botnet to add 1000 or more keys per
> second to the pool - aaaaand it's gone. Other aspects are that a
> keyserver lookup requires network connectivity, introduces noticable
> delay, and has privacy implications which prevent us from doing the
> lookup in an automated fashion.
>
> First, some basic considerations: To obtain the public key of a
> communication partner, we obviously have to rely on said communication
> partner to make their key available to us one way or another. The only
> deployed lookup mechanism are keyservers, but we said we don't have
> that. The alternative is sending the key in-band with the particular
> communication protocol: No problem for synchronous communication such as
> XMPP because we can simply request them, more difficult for e-mail where
> that option is not available.
This is only an issue on the first communication with someone. Once you
have your comminicant's key you can cache it locally and re-use it for
all future transmissions without touching the keyserver.
So really it's a question of bootstrapping: When you are sending an
email to a person for the first time (or if you are verifying a
signature for the first time), how do you get their key?
This is, in my experience, a much more limited use-case. I find that I
rarely send an email to someone for the first time, and rarely do I
receive cold-call emails where I care about validating the signature.
I'm usually sending (and receiving) emails to (from) the same people
over and over. So once I acquire their key, it's cached and I don't
need to ask for it again.
Okay, so now that we're reduced the issue to first-use, how does one
acquire that data? There are several options:
1) email unencrypted and ask for it
2) use a PGP keyserver
3) use some other lookup database (LDAP, DNS, etc)
Pretty much every single one of these options implies some amount of
delay and has different trust (and deployment) models.
-derek
--
Derek Atkins 617-623-3745
derek@ihtfp.com www.ihtfp.com
Computer and Internet Security Consultant
- [openpgp] Keyserverless Use of OpenPGP in Email Vincent Breitmoser
- Re: [openpgp] Keyserverless Use of OpenPGP in Ema… Paul Wouters
- Re: [openpgp] Keyserverless Use of OpenPGP in Ema… Vincent Breitmoser
- Re: [openpgp] [openpgp-email] Keyserverless Use o… Simon Josefsson
- Re: [openpgp] [openpgp-email] Keyserverless Use o… Neal H. Walfield
- Re: [openpgp] [openpgp-email] Keyserverless Use o… Vincent Breitmoser
- Re: [openpgp] [openpgp-email] Keyserverless Use o… Ruben Pollan
- Re: [openpgp] Keyserverless Use of OpenPGP in Ema… Derek Atkins
- Re: [openpgp] [openpgp-email] Keyserverless Use o… Neal H. Walfield
- Re: [openpgp] Keyserverless Use of OpenPGP in Ema… Werner Koch
- Re: [openpgp] [openpgp-email] Keyserverless Use o… Werner Koch
- Re: [openpgp] [openpgp-email] Keyserverless Use o… Vincent Breitmoser
- Re: [openpgp] [openpgp-email] Keyserverless Use o… Ruben Pollan