IETF Logo Mail Archive

Re: [perpass] Draft charter for a Transparency Working Group

Ben Laurie <benl@google.com> Wed, 11 December 2013 21:57 UTC

Return-Path: <benl@google.com>
X-Original-To: perpass@ietfa.amsl.com
Delivered-To: perpass@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D90971AE0DE for <perpass@ietfa.amsl.com>; Wed, 11 Dec 2013 13:57:02 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.38
X-Spam-Level:
X-Spam-Status: No, score=-1.38 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FM_FORGED_GMAIL=0.622, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 78a4dIgkY57I for <perpass@ietfa.amsl.com>; Wed, 11 Dec 2013 13:57:01 -0800 (PST)
Received: from mail-vc0-x229.google.com (mail-vc0-x229.google.com [IPv6:2607:f8b0:400c:c03::229]) by ietfa.amsl.com (Postfix) with ESMTP id 7ABD51AE06B for <perpass@ietf.org>; Wed, 11 Dec 2013 13:57:01 -0800 (PST)
Received: by mail-vc0-f169.google.com with SMTP id hu19so6229063vcb.0 for <perpass@ietf.org>; Wed, 11 Dec 2013 13:56:55 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=h0eD1n/qbWAHOSFWMo/Tt3zemr505xe+E8q27A830Z8=; b=DvNUodh/H4kR/LMKCyQL4cYDSTuXA3LLOJeWEmJmLahgygcud/S9MwYB6A5VJDNb8+ qDghJo7aSOgoBipIvhwD6IASMr+EWyT234LfZdj2MkjWxNk2Iigi4EG4KxSmOM/dSCbe b90Lk5x7x6GzWwnUbVTYm0wwOp3aWrGtEixN7pvEf+NQ8btjApsu4KU2LCtRJeF/dVsP 04cGDXGb8pdnWnwHWRLrZlageBYG960E0pTmgxpVIRrHYwqGZJUkxGoGnqYgOGsTUvGu UxkCaVYFuG9aYiCygNO490VWHF+huz3+Cf3d/Be4aHGjeDGiTx3Un6RKQU6K2fMwfRdI YrfA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=h0eD1n/qbWAHOSFWMo/Tt3zemr505xe+E8q27A830Z8=; b=FTSA8ECP2Qt/p2sEnsM2cTmhxAIJcWBDiagamM+ST7u+P0Bt6OcnM0Q9wfQD6n1QIm 0OeVkOFRhYcsT8QSeL19VM7y0EI0va2Qf4gtA3TfYxlsfSMQqOTe1RbNuV188Yb2W0gB zpnh0OtL3PCU7AKKM913PiJ/qH+E9W/obf/5INXogChBP8YaNiqa1tmsRowuE1Mb2whO 2/7J1OBKjZuXonqKcPTdnXbXTnWcjNUNvu4b8Bs5aE+RSPa4Yapl5m63qjOt7lognhKf y4SkUVvi/xdAbWDcMRxOZaxlLKn8OJvotytokFhEEWcSetXae0FBEpYwfMNe+wsNNPOH vhZg==
X-Gm-Message-State: ALoCoQkQVWLwXZLtVIF8l/BFbSqKx+i+BmJubyB09A7GdBDa7o8rd5vgffGMqwBByY/w3rWeyjEScRHytEbuxtuIE9mznOOAeE+irBHUlX1Bwjc4yNu+fXQ7U4Tu2EMfJuRZJdNRTjRcHuhLwN48L1gxoIS3OOu4BBUwLmqJoTJHSfQApgncBS4KRbFy2YP8MjIL5B7YmY8L
MIME-Version: 1.0
X-Received: by 10.221.64.17 with SMTP id xg17mr1589166vcb.5.1386799015491; Wed, 11 Dec 2013 13:56:55 -0800 (PST)
Received: by 10.52.183.65 with HTTP; Wed, 11 Dec 2013 13:56:55 -0800 (PST)
In-Reply-To: <CAMm+LwjNXpszKMqXr231Vti=pfwYn98Fgmuv1T5M__nhGmZHQw@mail.gmail.com>
References: <CABrd9STYF166vXEXNneJfPyfo5VG3LPKmzyZpAhvYnDTsy_U9g@mail.gmail.com> <52A8B1D0.2080304@dcrocker.net> <CABrd9SS9FGsm-waznAHeMr33XzprhRF=DXVjknyL-7bOyArAxg@mail.gmail.com> <CAMm+LwjNXpszKMqXr231Vti=pfwYn98Fgmuv1T5M__nhGmZHQw@mail.gmail.com>
Date: Wed, 11 Dec 2013 21:56:55 +0000
Message-ID: <CABrd9SSYnBRtecDSwUZUjvKJPLB+XX6Kk_9NHtQ=X-5jo4jGxQ@mail.gmail.com>
From: Ben Laurie <benl@google.com>
To: Phillip Hallam-Baker <hallam@gmail.com>
Content-Type: text/plain; charset="ISO-8859-1"
Cc: perpass <perpass@ietf.org>, Dave Crocker <dcrocker@bbiw.net>, "saag@ietf.org" <saag@ietf.org>
Subject: Re: [perpass] Draft charter for a Transparency Working Group
X-BeenThere: perpass@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "The perpass list is for IETF discussion of pervasive monitoring. " <perpass.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/perpass>, <mailto:perpass-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/perpass/>
List-Post: <mailto:perpass@ietf.org>
List-Help: <mailto:perpass-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/perpass>, <mailto:perpass-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 11 Dec 2013 21:57:03 -0000

On 11 December 2013 21:50, Phillip Hallam-Baker <hallam@gmail.com> wrote:
>
>
>
> On Wed, Dec 11, 2013 at 1:52 PM, Ben Laurie <benl@google.com> wrote:
>>
>> On 11 December 2013 18:41, Dave Crocker <dhc@dcrocker.net> wrote:
>> > On 12/11/2013 10:32 AM, Ben Laurie wrote:
>> >>
>> >> http://www.ietf.org/mail-archive/web/therightkey/current/msg00680.html
>> >
>> >
>> >
>> > The text isn't a draft charter.  It's a very generic statement of an
>> > idea.
>> > Formulating that into the detail an actual charter will be helpful.
>> >
>> > The text needs to give some explanation of what is being proposed,
>> > beyond a
>> > highly cryptic label like "Cryptographically verifiable logs".  A term
>> > like
>> > that could mean many things and from the message, I can't tell what is
>> > meant.
>> >
>> > The text needs to explain what sort of usage scenario is expected, with
>> > enough detail to make the scenario substantive.  That permits the reader
>> > to
>> > get a sense of basic/likely relevance to operational environments.
>>
>> Am I allowed to refer to RFC 6962 for background?
>>
>> Reiterating what's in there doesn't seem useful.
>
>
> Well how far do we want the group to be allowed to stray from RFC 6962?
>
> One approach would be to divide the problem up into two parts:
>
> * An append only log that provides a cryptographic assurance of integrity
> that is independent of the trustworthiness of the log maintainer from the
> time of the last checkpoint.
>
> * Application of the above to the specific use cases
>
> Initial use cases that the WG agreed to deliver might be
>
> * PKIX certificate signing certificates
> * PKIX TLS end entity certificates
>
> Use cases that are in scope but without a delivery undertaking might be
> OpenPGP, S/MIME, etc.

Agree, I just want to be able to refer to 6962 for what
"cryptographically verifiable log" means.

v2.31.3 | Report a Bug | By Email | System Status