IETF Logo Mail Archive

Re: [perpass] ID based encryption for email

Phillip Hallam-Baker <hallam@gmail.com> Tue, 31 December 2013 18:50 UTC

Return-Path: <hallam@gmail.com>
X-Original-To: perpass@ietfa.amsl.com
Delivered-To: perpass@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8C27F1AE3D3 for <perpass@ietfa.amsl.com>; Tue, 31 Dec 2013 10:50:59 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.701
X-Spam-Level:
X-Spam-Status: No, score=0.701 tagged_above=-999 required=5 tests=[BAYES_50=0.8, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6sRUaoXtN1Oj for <perpass@ietfa.amsl.com>; Tue, 31 Dec 2013 10:50:56 -0800 (PST)
Received: from mail-la0-x22b.google.com (mail-la0-x22b.google.com [IPv6:2a00:1450:4010:c03::22b]) by ietfa.amsl.com (Postfix) with ESMTP id 0F8341AE372 for <perpass@ietf.org>; Tue, 31 Dec 2013 10:50:55 -0800 (PST)
Received: by mail-la0-f43.google.com with SMTP id n7so6539539lam.30 for <perpass@ietf.org>; Tue, 31 Dec 2013 10:50:49 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=w8ZBkV50GwO3KJ0XB732e57xB3yiiLU0J4T6kcTWA4U=; b=jIYtvwiKyiCLR3WliQ7btKyslLrWt6V/WxF4N+9R1cDY3V574iAgn32Ng78kZJSDZJ VmrPceo4mMtqwpp6YFUvYzrrxCwlxzAyIfoQ207qKiyvUyCFLrf8slvDBP9mFQ++oAH2 T5m8tvfXCvd1bvpOlGCEZREI89rh/rebZR/sX6Dkv0GGrx3c8XAMK7MxBBdLxP2TH4Mg 2Waagj/yOHXbuM/BAWyHzEvl6Dzts5yKofzNj/D5FVO5PNj/XVWi51ZoZ+NYKmUVHdAL 5yNL0JvCK8CdF0XKdqywWGOISqybaRZqpDKlKxj3P6C6UlhwWqBi3qxGboQYCWrQAi2M u5Zg==
MIME-Version: 1.0
X-Received: by 10.152.1.197 with SMTP id 5mr30481926lao.0.1388515848881; Tue, 31 Dec 2013 10:50:48 -0800 (PST)
Received: by 10.112.37.172 with HTTP; Tue, 31 Dec 2013 10:50:48 -0800 (PST)
In-Reply-To: <31111.1388496085@sandelman.ca>
References: <CACsn0cnRWXrV+5hxYdteMgHmzbs8AbTXeNqLxEwquQOuvH698w@mail.gmail.com> <CAMm+Lwhj5L7vWAxhsjrb2RzP_WzWOBVM88T=RZMae3=YuihZMA@mail.gmail.com> <CACsn0c=feYz5qp8p+sk0+uJnBEO2BUOCUYP8V7HwJBrU9imhvg@mail.gmail.com> <CAMm+LwiSBHBDNRpbybMRDwwAH3VK+piw2WS1+wz=Tre31qijMA@mail.gmail.com> <31111.1388496085@sandelman.ca>
Date: Tue, 31 Dec 2013 13:50:48 -0500
Message-ID: <CAMm+Lwg0X9kYysAbdg4ncHYmUCwiju1iA4OGS7V6d-qY5PqCgQ@mail.gmail.com>
From: Phillip Hallam-Baker <hallam@gmail.com>
To: Michael Richardson <mcr+ietf@sandelman.ca>
Content-Type: multipart/alternative; boundary="089e0112bfcef00b8504eed909ca"
Cc: Watson Ladd <watsonbladd@gmail.com>, perpass <perpass@ietf.org>
Subject: Re: [perpass] ID based encryption for email
X-BeenThere: perpass@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "The perpass list is for IETF discussion of pervasive monitoring. " <perpass.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/perpass>, <mailto:perpass-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/perpass/>
List-Post: <mailto:perpass@ietf.org>
List-Help: <mailto:perpass-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/perpass>, <mailto:perpass-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 31 Dec 2013 18:50:59 -0000

On Tue, Dec 31, 2013 at 8:21 AM, Michael Richardson
<mcr+ietf@sandelman.ca>wrote:

>
> Phillip Hallam-Baker <hallam@gmail.com> wrote:
>     > PGP has not met the original goal of becoming ubiquitous so replacing
>     > PGP seems to me to be a very worthwhile goal. Replacing STARTTLS with
>     > something that has message scope but is not end to end does not seem
>     > like a good proposition.
>
> I reluctantly agree that maintaining any kind of backwards compatibility
> with
> PGP or S/MIME SHOULD NOT be a requirement.
>

No, I did not say that. Backwards compatibility is probably a deployment
requirement. But I don't think that there is any group that is slavishly
devoted to PGP or nothing. There is an S/MIME or nothing group but that is
a different matter and their commitment does not exclude adding PGP like
features.

My original point was that re-inventing the wheel is only a bad thing if a
scheme has already succeeded and is ubiquitously deployed and in use. So
people need not be afraid of re-inventing PGP or S/MIME but proposals for a
new scheme that would meet the STARTTLS use cases have to meet a much
higher bar.



> (If it happens that I can leverage, through new code/protocol, my existing
> web of trust, that could be a MAY)
>

I can make use of PGP keys and fingerprints in my proposal. But they are
more limited than the phingerprints that I use in strong email addresses.

In the current code a phingerprint is a digest of a master key that is only
used to sign policy statements. which in turn authorize the use of
encryption and/or signature keys. So there is always a policy layer.

The advantage this brings is that if people are using my scheme the
infrastructure will always support publication of a statement such as 'PGP
format encryption preferred'. While S/MIME and PGP both lack this essential
capability. [And no, the fact that some dufuses have made a hash of
security policy in the past does not make it an impossible problem or one
to avoid tackling]



> PGP did not take off because it was too decentralized and therefore very
> enterprise
>     hostile, and so it failed to get past early adopters.
> S/MIME did not take off because it was too centralized and therefore early
>     adopter hostile.
>

I think the issue is actually simpler. The criteria for ubiquitous adoption
of a security technology is that it has to be 100% right and S/MIME, PGP
are only 95% there.

Good enough for government work doesn't cut it for mass adoption of S/MIME.
The PGP ideology gets in the way of PGP use. Building the toll booths and
hoping the revenues will pay for building the highway is never a good
strategy.



> Both then ran up against webmail systems, e.g: hotmail/gmail/etc. in the
> early 2000s, when having had the RSA patent run out, a renewed push could
> have occured.  That problem will affect any new solution as well.
>

I don't think Webmail needs to be considered a show stopper. I use Gmail to
organize all my mail through mailing lists because it has the search
capability and it can handle my mail volume (I am atg 8.09 GB (53%) of 15 GB
 used)

I would have no problem using a different client to send encrypted mail and
a browser extension could make reading encrypted mail possible.

Making this work is important to me as I invented WebMail back when I was
at CERN. Implementing Web Mail is what lead to the Content-Length header in
HTTP after I discovered that the HTTP POST spec was broken in 1993. (And
yes this is prior art for a certain patent claim).



> I look forward to reviewing drafts, and running beta code.
> Who is going to make money on this system?
> What's the market incentive to deploy?
>

Good

https://sourceforge.net/projects/prismproof

The market incentive is that the Web+SLL gave us the Internet e-commerce
boom which added several percent to world GDP in the 1990s. Email is the
other killer application of the Internet and there is the potential for
another economic boost albeit maybe a smaller one.

Current e-commerce is limited to the patterns that are supported by our
current security tools. If we add more security tools we may see more
e-commerce patterns.

-- 
Website: http://hallambaker.com/

v2.31.3 | Report a Bug | By Email | System Status