IETF Logo Mail Archive

Re: [perpass] India withdraws encryption policy - Re: India posed to require cleartext, cleartext retention, cipher and backdoor mandates

Joseph Lorenzo Hall <joe@cdt.org> Tue, 22 September 2015 15:18 UTC

Return-Path: <jhall@cdt.org>
X-Original-To: perpass@ietfa.amsl.com
Delivered-To: perpass@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4D62F1AC419 for <perpass@ietfa.amsl.com>; Tue, 22 Sep 2015 08:18:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.378
X-Spam-Level:
X-Spam-Status: No, score=-3.378 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FM_FORGED_GMAIL=0.622, GB_I_LETTER=-2] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jVhXc9ncl3bq for <perpass@ietfa.amsl.com>; Tue, 22 Sep 2015 08:18:56 -0700 (PDT)
Received: from mail-la0-x22d.google.com (mail-la0-x22d.google.com [IPv6:2a00:1450:4010:c03::22d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D39891AC418 for <perpass@ietf.org>; Tue, 22 Sep 2015 08:18:55 -0700 (PDT)
Received: by lahg1 with SMTP id g1so17007254lah.1 for <perpass@ietf.org>; Tue, 22 Sep 2015 08:18:54 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cdt.org; s=google; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-type; bh=wd+4RDMUvCsp3RxzzqGuE/YpEQDKxZaFONvn8xahKms=; b=Ohv5b3d4Zd6eH7GuaT2fa/v3fsi9DX4m760OgoV/5H6/O37R6WH2jX0zfm94z91KVF ZGptcienBV2nz68jQLnNzC1tgJSGqTI8KbwTDNDrIF7rz8zusX8Sg7hg6ZCu6/dAuz4B 4+pYDqkEaTgALtQ8y+XwRme3lg1pR7DXYUnfI=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc:content-type; bh=wd+4RDMUvCsp3RxzzqGuE/YpEQDKxZaFONvn8xahKms=; b=MaBTS+vi7yWWIIJ75IxxUlXPxHMnI0cZU01S4UNbE608htuRSO6EgEf/k8+WotGPJB FRHjj1H1KqBSjFuTfvWoCqVL4LI2Rb5hITC6oEaDAWtz3tHVtjanJuE/YPBhzX6LZDPA TssG4ngEgGF3BKIoNY1p93lPnQqpbMNAVVsPovPeJvkKA9hGkCEZgKrl2TFg8JuzRe86 nxMlGFL/ME1JDfFq2Mp0eUNcPWN3MUgHC0+wv5m/qfvEgZZaS76QOwkO8X6ZmdeEY6qE II9W/IiakHhKULlaPyOxzJ6qQK2nefxxLb41FAdKEFbIwXWZ50nmc7iEeoz7q/GWVDRS +3lw==
X-Gm-Message-State: ALoCoQmKK/JTmWOBfD8c3JozK5ASIiDEXlZvKgD+bAGV7r36dYohsQwkeBeVefoD7Gjyx43uP6Gm
X-Received: by 10.25.40.130 with SMTP id o124mr2763122lfo.41.1442935133970; Tue, 22 Sep 2015 08:18:53 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.25.199.138 with HTTP; Tue, 22 Sep 2015 08:18:34 -0700 (PDT)
In-Reply-To: <560148C5.60906@cs.tcd.ie>
References: <CABtrr-XSAmHEjKvHL_fThqmeWwiCNvz=8-TWhJOd5g895B+bNw@mail.gmail.com> <56003957.9020308@cs.tcd.ie> <F13C24AF-2A4F-426C-8600-AEC4CF4979E1@isoc.org> <CABtrr-WgBdkBFvzPSRjEPs1anX_kGoYZdAGUchbRiwxZGYXR9Q@mail.gmail.com> <DEC470C6-6158-4996-AC1C-ED9A0D2F1CED@trammell.ch> <6CB05D82CE245B4083BBF3B97E2ED47008F85201@ait-pex01mbx01.win.dtu.dk> <560148C5.60906@cs.tcd.ie>
From: Joseph Lorenzo Hall <joe@cdt.org>
Date: Tue, 22 Sep 2015 11:18:34 -0400
Message-ID: <CABtrr-VM4-daSqL0c9NBah0UTe4zCADtmJ7H07Ltx_r18FQwsw@mail.gmail.com>
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <http://mailarchive.ietf.org/arch/msg/perpass/Vav-b8P7BFYdWi1iJd4HS0PDa5U>
Cc: Hugo Maxwell Connery <hmco@env.dtu.dk>, perpass <perpass@ietf.org>, Dan York <york@isoc.org>, Brian Trammell <ietf@trammell.ch>
Subject: Re: [perpass] India withdraws encryption policy - Re: India posed to require cleartext, cleartext retention, cipher and backdoor mandates
X-BeenThere: perpass@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "The perpass list is for IETF discussion of pervasive monitoring. " <perpass.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/perpass>, <mailto:perpass-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/perpass/>
List-Post: <mailto:perpass@ietf.org>
List-Help: <mailto:perpass-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/perpass>, <mailto:perpass-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 22 Sep 2015 15:18:58 -0000

I had started to draft something India-specific in the IAB Privacy and
Security Program last night before this withdrawal came up. I'll see
what we can do to pivot...

On Tue, Sep 22, 2015 at 8:25 AM, Stephen Farrell
<stephen.farrell@cs.tcd.ie> wrote:
>
>
> On 22/09/15 13:17, Hugo Maxwell Connery wrote:
>> Hi,
>>
>> Back in August was the process of BCP'ing RFC1984. (Subject:
>> Recognising RFC1984 as a BCP).
>>
>> If this has been completed, it could act as an 'attachment' or
>> compliment in some way the form letter which Brian suggests below.
>
> That has been completed [1] so RFC1984 is now an IETF BCP.
>
> I'm not sure how long the RFC editor will need before this
> is visible as BCPnnn but it shouldn't be too long, some weeks
> maybe. (It's an odd case though changing status on a 1996 RFC,
> so some tooling might break or something;-)
>
> S.
>
> [1]
> https://mailarchive.ietf.org/arch/msg/ietf-announce/FXpz3-UELhF7S5kBxXvTrRDXSgs
>
>>
>> I repeat that I think the reuse of RFC1984 at this time is an
>> excellent strategy as it clearly states "we've been here before, and
>> the arguments still hold".
>>
>> Regards, Hugo Connery -- Head of IT, DTU Environment,
>> http://www.env.dtu.dk ________________________________________ From:
>> perpass [perpass-bounces@ietf.org] on behalf of Brian Trammell
>> [ietf@trammell.ch] Sent: Tuesday, 22 September 2015 14:04 To: Joseph
>> Lorenzo Hall Cc: perpass; Dan York; Stephen Farrell Subject: Re:
>> [perpass] India withdraws encryption policy - Re: India posed to
>> require cleartext, cleartext retention, cipher and backdoor mandates
>>
>> It seems to me in general that this type of policy remains very
>> attractive; governments in particular tend to prize temporary
>> security over essential freedom. This policy was so obviously silly
>> in its technical detail that it would inevitably need to be
>> withdrawn, though I was impressed by the speed and openness with
>> which that was done here.
>>
>> But in general, playing whack-a-mole takes a lot of energy especially
>> when the policies themselves are largely copypasta. Perhaps we should
>> put together an IAB/program form letter ("So You've Decided to Ban
>> Crypto, Here's Why That Won't Work") that we can quickly tailor to
>> the details in order to be able to make constructive public comments
>> *before* the withdrawal happens next time? :)
>>
>> Cheers,
>>
>> Brian
>>
>>
>>> On 22 Sep 2015, at 13:49, Joseph Lorenzo Hall <joe@cdt.org> wrote:
>>>
>>> I'm not so sure we should take comfort in their withdrawal of the
>>> policy as all reports are that they are revising and reissuing...
>>> We'll see what the next iteration involves!
>>>
>>> On Tuesday, September 22, 2015, Dan York <york@isoc.org> wrote:
>>> There was a significant amount of public outcry yesterday within
>>> India and the latest news is that the government of India is
>>> apparently withdrawing the draft policy:
>>>
>>> http://timesofindia.indiatimes.com/tech/tech-news/Government-withdraws-draft-of-encryption-policy/articleshow/49057232.cms
>>>
>>>
>>>
> Prior to that the government agency involved had already issued an
> update saying that the draft policy would NOT apply to TLS in web
> commerce and social media, messaging, etc.  The update document seems to
> have been removed, but is captured here by a news site:
>>>
>>> http://www.medianama.com/2015/09/223-india-draft-encryption-policy/
>>>
>>>
>>>
> Dan
>>>
>>>> On Sep 21, 2015, at 1:07 PM, Stephen Farrell
>>>> <stephen.farrell@cs.tcd.ie> wrote:
>>>>
>>>>
>>>> Sheesh, there is so much wrong in that document. And they top it
>>>> off by recommending RC4.
>>>>
>>>> Does anyone know if this is a policy that is likely to be
>>>> enforced or one that'd be more honoured in the breach?
>>>>
>>>> S.
>>>>
>>>> On 21/09/15 17:45, Joseph Lorenzo Hall wrote:
>>>>> Obviously, of relevance to those that will be at the IAB
>>>>> MARNEW workshop this week (although this isn't in any way
>>>>> specific to radio networks).
>>>>>
>>>>> * Everyone (all individuals and businesses) using encryption
>>>>> must store unencrypted content for 90 days * Government will
>>>>> dictate algorithms and key sizes * Possibility of a legally
>>>>> mandated backdoor
>>>>>
>>>>> Article from Daily Dot:
>>>>> http://www.dailydot.com/politics/india-encryption-backdoors-draft-policy/
>>>>>
>>>>>
>>>>>
> Text of the proposal (comments due 16 Oct.):
>>>>> https://info.publicintelligence.net/IN-DraftEncryptionPolicy.pdf
>>>>>
>>>>>
>>>>
>>>>
>>>>>
> _______________________________________________
>>>> perpass mailing list perpass@ietf.org
>>>> https://www.ietf.org/mailman/listinfo/perpass
>>>
>>> -- Dan York Senior Content Strategist, Internet Society
>>> york@isoc.org   +1-802-735-1624 Jabber: york@jabber.isoc.org Skype:
>>> danyork   http://twitter.com/danyork
>>>
>>> http://www.internetsociety.org/
>>>
>>>
>>>
>>>
>>>
>>> -- Joseph Lorenzo Hall Chief Technologist Center for Democracy &
>>> Technology 1634 I ST NW STE 1100 Washington DC 20006-4011 (p)
>>> 202-407-8825 (f) 202-637-0968 joe@cdt.org PGP:
>>> https://josephhall.org/gpg-key fingerprint: 3CA2 8D7B 9F6D DBD3
>>> 4B10  1607 5F86 6987 40A9 A871
>>>
>>>
>>>
>>> _______________________________________________ perpass mailing
>>> list perpass@ietf.org
>>> https://www.ietf.org/mailman/listinfo/perpass
>>
>> _______________________________________________ perpass mailing list
>> perpass@ietf.org https://www.ietf.org/mailman/listinfo/perpass
>>
>> _______________________________________________ perpass mailing list
>> perpass@ietf.org https://www.ietf.org/mailman/listinfo/perpass
>>



-- 
Joseph Lorenzo Hall
Chief Technologist
Center for Democracy & Technology
1634 I ST NW STE 1100
Washington DC 20006-4011
(p) 202-407-8825
(f) 202-637-0968
joe@cdt.org
PGP: https://josephhall.org/gpg-key
fingerprint: 3CA2 8D7B 9F6D DBD3 4B10  1607 5F86 6987 40A9 A871

v2.23.0 | Report a Bug | By Email