IETF Logo Mail Archive

Re: [perpass] Draft charter for a Transparency Working Group

Ben Laurie <benl@google.com> Tue, 07 January 2014 18:28 UTC

Return-Path: <benl@google.com>
X-Original-To: perpass@ietfa.amsl.com
Delivered-To: perpass@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A41131AE06D for <perpass@ietfa.amsl.com>; Tue, 7 Jan 2014 10:28:56 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.917
X-Spam-Level:
X-Spam-Status: No, score=-1.917 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FM_FORGED_GMAIL=0.622, RP_MATCHES_RCVD=-0.538, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Y7YaxWTfqyAJ for <perpass@ietfa.amsl.com>; Tue, 7 Jan 2014 10:28:54 -0800 (PST)
Received: from mail-ve0-x231.google.com (mail-ve0-x231.google.com [IPv6:2607:f8b0:400c:c01::231]) by ietfa.amsl.com (Postfix) with ESMTP id 8AC3E1AE0FF for <perpass@ietf.org>; Tue, 7 Jan 2014 10:28:54 -0800 (PST)
Received: by mail-ve0-f177.google.com with SMTP id db12so426888veb.8 for <perpass@ietf.org>; Tue, 07 Jan 2014 10:28:45 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=ysbyXLDt4lI76KkIz9CyHsegwvYmeup8jnwZl/1IENA=; b=h//vbjvwy5x4wf0JPHH9I+CZr5/CqcrwdcURQfeQQpQHSWgsAtex2YW+yflwKlKLnl nrDjZyDuuN3khI5h5wndn1iSfLJxlYWwcIMHrtyOrqZC0We0b71Mb8MYjIPDvwv+1+r9 DdxLFsWYlIGHDpEe3vpTRX4ksQ4fKO06cKyu8194PlWlrJvUiywW2y58aO2vj/hPVmjD q8DKB3wx7LHvW/ckQOVuw56doHgBDSVYAngTh339FFwBw/wymDvBxN0OdLgdiB+hl8o6 srchuPvPpdFLptrG7s9NhwWfuLS4M2SvEszfB/PavFi8N27f/SfIS3WVX34C7Gu/JXuq SX0g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=ysbyXLDt4lI76KkIz9CyHsegwvYmeup8jnwZl/1IENA=; b=icv7ImtAzTdlHe2SS/sPNx/lklEgWD7wvU6rou5Y7MAhqHww0wvc0bbXYm3ABGLIl7 v8BOBxJ1sdyoCpWxnwFtbU0y670f83d+kLf/GjAPAkiOR2kMvLJgbR9B6dMipNqO+FqI Pwmts8iTlQKhu+bQYEeEh4J4cbOgjsW3q9HPMS91SFooQXVzyokOvLRC2Amj4YGeudjI d+fTA+Et8yTHItf2JQQ9anFfGytO288NGXUSeoAFexM6htcXp2zRBcl7jpyJ8N2jsSr0 2GI1HVk8w0KlYe3mS3KvcgB6rkwfPwjNL/mcQAELSv/EDvC3P8sIX5dzdk3gdt6tCvwe Ik7Q==
X-Gm-Message-State: ALoCoQktEhq1GJfYy1qWecBrtV10EbMNi5hVsqYjY1Ob/0VHSFsfSCKbw/hqqne+80Jbqo+RZdjdALXkeKg7fa9V1cBUcBBev5Gwm0s7yk7As4+z55A+f7Hybt695JC7uxIw7FnwtFX6kwUViRF9vllL8GHRHq9LmrjcC2K79Odj6UD9eSc586Ih29oTswOglpws/C5GV1go
MIME-Version: 1.0
X-Received: by 10.52.229.195 with SMTP id ss3mr3682651vdc.45.1389119325438; Tue, 07 Jan 2014 10:28:45 -0800 (PST)
Received: by 10.52.169.202 with HTTP; Tue, 7 Jan 2014 10:28:45 -0800 (PST)
In-Reply-To: <52CC453A.8040508@bbn.com>
References: <CABrd9STYF166vXEXNneJfPyfo5VG3LPKmzyZpAhvYnDTsy_U9g@mail.gmail.com> <52A8B1D0.2080304@dcrocker.net> <CABrd9SS9FGsm-waznAHeMr33XzprhRF=DXVjknyL-7bOyArAxg@mail.gmail.com> <CAMm+LwjNXpszKMqXr231Vti=pfwYn98Fgmuv1T5M__nhGmZHQw@mail.gmail.com> <CABrd9SSYnBRtecDSwUZUjvKJPLB+XX6Kk_9NHtQ=X-5jo4jGxQ@mail.gmail.com> <52A8E0E9.5020409@dcrocker.net> <CABrd9ST+CKNNHZ-jLd1=boeWUh-sjZf1WF5fmayCF7+DjnD65w@mail.gmail.com> <52A9E61C.8030300@bbn.com> <CABrd9SSMs0+73R9Ug3tnLGt-56sYz0XEzy1RGYy=Yx7KM4r--w@mail.gmail.com> <52C19300.3050201@bbn.com> <CABrd9SQHq+AkvvJQ6-XuwmDyT8-662GeavcU47jFoYYN8v1CAg@mail.gmail.com> <52CC453A.8040508@bbn.com>
Date: Tue, 07 Jan 2014 18:28:45 +0000
Message-ID: <CABrd9SQvCeMRiHLE22cVrUQWUV1rXnaea8E+SOGD-=PFwT4rEA@mail.gmail.com>
From: Ben Laurie <benl@google.com>
To: Stephen Kent <kent@bbn.com>
Content-Type: text/plain; charset="UTF-8"
Cc: perpass <perpass@ietf.org>, saag <saag@ietf.org>
Subject: Re: [perpass] Draft charter for a Transparency Working Group
X-BeenThere: perpass@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "The perpass list is for IETF discussion of pervasive monitoring. " <perpass.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/perpass>, <mailto:perpass-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/perpass/>
List-Post: <mailto:perpass@ietf.org>
List-Help: <mailto:perpass-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/perpass>, <mailto:perpass-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 07 Jan 2014 18:28:56 -0000

On 7 January 2014 18:19, Stephen Kent <kent@bbn.com> wrote:
> Ben,
>
>
>>> The text describing how 6962 uses Merkle trees is good. I think the
>>> phrase "prove its own correctness" is way too broad. The example
>>> you cite shows how to demonstrate internal consistency for a log,
>>> and to enable third parties to verify certain lob properties. That
>>> is much narrower than what the term "correctness" implies.
>>
>> How about, instead of "can prove its own correctness
>> cryptographically", we say "allows efficient verification of
>> behaviour"?
>>
> I still find that phase vague. What sort of behavior is being
> verified? Isn't the behavior amenable to verification a function
> of the context details? For example, a self-signed cert is
> an example of a crypto construct that allows an RP to verify a few
> aspect of its "behavior"
>      - the public key contained within the cert is matched to the
>        private key used to sign it.
>     - the cert content was not modified after it was signed
>
> But most of the other semantics of CA-issued certs are not
> verified by this construct.

As Stephen Farrell has pointed out, therightkey is the correct list
for discussion. I have posted a revised charter there which phrases
this in yet another way. See if you prefer that version.

>
> Steve

v2.31.3 | Report a Bug | By Email | System Status