IETF Logo Mail Archive

Re: [perpass] Draft charter for a Transparency Working Group

Ben Laurie <benl@google.com> Thu, 12 December 2013 18:51 UTC

Return-Path: <benl@google.com>
X-Original-To: perpass@ietfa.amsl.com
Delivered-To: perpass@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BFBD91AE3BF for <perpass@ietfa.amsl.com>; Thu, 12 Dec 2013 10:51:57 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.38
X-Spam-Level:
X-Spam-Status: No, score=-1.38 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FM_FORGED_GMAIL=0.622, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FqIi6HFpUTvH for <perpass@ietfa.amsl.com>; Thu, 12 Dec 2013 10:51:56 -0800 (PST)
Received: from mail-ve0-x22f.google.com (mail-ve0-x22f.google.com [IPv6:2607:f8b0:400c:c01::22f]) by ietfa.amsl.com (Postfix) with ESMTP id B05051AE04D for <perpass@ietf.org>; Thu, 12 Dec 2013 10:51:56 -0800 (PST)
Received: by mail-ve0-f175.google.com with SMTP id jx11so624110veb.6 for <perpass@ietf.org>; Thu, 12 Dec 2013 10:51:50 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; bh=LC886EfhybIYLGMdPT6RkODYa4OITZ8eIEjiH6Rx7CY=; b=K3pZlCnBiXXOCAMYSE9Zm2PjK3E71MhcNLuc70mH7SH1PPNaeHmuVGnc7aVz+X2D90 GZ7D8RupojFwzFxyIh6myOhzviCFsdC39OSb9Wc2wlA9Nzob7+1OQXGKnf9ZdUWmZEVr M7tUzhx/cPOrTAHuR73xa5/lUtOmyyA296toObzQZSaFgGpnPdzihn1tn55UYZICVEuU 5g+6DBIcRXtC2XK6hseFiwBplIEn0OaenanTRJX+Ec82jo612o2H97uUqlK6mxDOno/q i1HnjCma9c3Cxk4W2H5+FSfnTBQcybrs6t09PqznuSAZBA9yC2pxH4bNdbPfaB+YGhnN XDqA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=LC886EfhybIYLGMdPT6RkODYa4OITZ8eIEjiH6Rx7CY=; b=DWMSU4r5DxbJZoTtmOUFodlnfwnhB50umndm7RQLYhwWbgOSIJUh+WjCcFdA/hw18c 1/+Tei2jDDDbbnFDJrF+nOVAPpcZaH4tfIJebTJjCyJjbk6KWN6mD7tvVoD4WTnyY+3B Kt8o8q0cWtpbTysp65a09xOgWJLrpFRyciZ8sXFSKorwWqJQQa//Aw9tzGAf0/udVr1F OqQ1aRWaGqaTnrmWyR8Fr2Zx0KPNONsgesMyfQB7YHlGWLXxFAGDnlIp6ZyUKBJOBbbL v7fJENDyFymSuz/cBUbzC+lHSqrB5Z8m5v9p6jnugAaJcDV5t9Q3Zt6cJnHDlbvI/1zM WKNA==
X-Gm-Message-State: ALoCoQlEEM8en7fZkuiVFvCA72NEu5cXS11Uq7s33cg9gesT4BuLf6s7WqS4GEhSSOUQqiPK/wy1X6QqT8EzN19UMfNhMO1fKCyOfOe2fH5ElHVO1ikVQlvJruYX0zbQ9ZiD/Yk8efqX2EJiBmGFO8KuapPX5mGJIbTEPiZvVK7hrDERVGBPNiB6AOivzQRgc06ND+ikkMg6
MIME-Version: 1.0
X-Received: by 10.220.84.65 with SMTP id i1mr307084vcl.51.1386874310544; Thu, 12 Dec 2013 10:51:50 -0800 (PST)
Received: by 10.52.183.65 with HTTP; Thu, 12 Dec 2013 10:51:50 -0800 (PST)
In-Reply-To: <52A9E61C.8030300@bbn.com>
References: <CABrd9STYF166vXEXNneJfPyfo5VG3LPKmzyZpAhvYnDTsy_U9g@mail.gmail.com> <52A8B1D0.2080304@dcrocker.net> <CABrd9SS9FGsm-waznAHeMr33XzprhRF=DXVjknyL-7bOyArAxg@mail.gmail.com> <CAMm+LwjNXpszKMqXr231Vti=pfwYn98Fgmuv1T5M__nhGmZHQw@mail.gmail.com> <CABrd9SSYnBRtecDSwUZUjvKJPLB+XX6Kk_9NHtQ=X-5jo4jGxQ@mail.gmail.com> <52A8E0E9.5020409@dcrocker.net> <CABrd9ST+CKNNHZ-jLd1=boeWUh-sjZf1WF5fmayCF7+DjnD65w@mail.gmail.com> <52A9E61C.8030300@bbn.com>
Date: Thu, 12 Dec 2013 18:51:50 +0000
Message-ID: <CABrd9SSMs0+73R9Ug3tnLGt-56sYz0XEzy1RGYy=Yx7KM4r--w@mail.gmail.com>
From: Ben Laurie <benl@google.com>
To: Stephen Kent <kent@bbn.com>
Content-Type: text/plain; charset="windows-1252"
Content-Transfer-Encoding: quoted-printable
Cc: perpass <perpass@ietf.org>, saag <saag@ietf.org>
Subject: Re: [perpass] Draft charter for a Transparency Working Group
X-BeenThere: perpass@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "The perpass list is for IETF discussion of pervasive monitoring. " <perpass.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/perpass>, <mailto:perpass-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/perpass/>
List-Post: <mailto:perpass@ietf.org>
List-Help: <mailto:perpass-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/perpass>, <mailto:perpass-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 12 Dec 2013 18:51:58 -0000

How's this?

[1] A cryptographically verifiable log is an append-only log of hashes
of more-or-less anything that can prove its own correctness
cryptographically.

For example, from RFC 6962: “The append-only property of each log is
technically achieved using Merkle Trees, which can be used to show
that any particular version of the log is a superset of any particular
previous version. Likewise, Merkle Trees avoid the need to blindly
trust logs: if a log attempts to show different things to different
people, this can be efficiently detected by comparing tree roots and
consistency proofs. Similarly, other misbehaviours of any log (e.g.,
issuing signed timestamps for certificates they then don't log) can be
efficiently detected and proved to the world at large.”

See RFC 6962, http://www.links.org/files/CertificateTransparencyVersion2.1a.pdf
and http://www.links.org/files/RevocationTransparency.pdf for
background.


On 12 December 2013 16:36, Stephen Kent <kent@bbn.com> wrote:
> Ben
>
>
>> How about this footnote?
>>
>> "A cryptographically verifiable log is an append-only log of hashes of
>> more-or-less anything that can prove its own correctness
>> cryptographically. See RFC 6962,
>>
> I'd like something a bit more technical, since the phrase "prove its
> own correctness" is pretty general. Hopefully there is text in 6962
> that you can use.
>
> Steve
> _______________________________________________
> perpass mailing list
> perpass@ietf.org
> https://www.ietf.org/mailman/listinfo/perpass

v2.31.3 | Report a Bug | By Email | System Status