IETF Logo Mail Archive

Re: [perpass] India withdraws encryption policy - Re: India posed to require cleartext, cleartext retention, cipher and backdoor mandates

Stephen Farrell <stephen.farrell@cs.tcd.ie> Tue, 22 September 2015 12:25 UTC

Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: perpass@ietfa.amsl.com
Delivered-To: perpass@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 781DD1A6F6F for <perpass@ietfa.amsl.com>; Tue, 22 Sep 2015 05:25:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.311
X-Spam-Level:
X-Spam-Status: No, score=-6.311 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, GB_I_LETTER=-2, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LZTB0QEiC04x for <perpass@ietfa.amsl.com>; Tue, 22 Sep 2015 05:25:52 -0700 (PDT)
Received: from mercury.scss.tcd.ie (mercury.scss.tcd.ie [134.226.56.6]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 809A71A6FAE for <perpass@ietf.org>; Tue, 22 Sep 2015 05:25:52 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mercury.scss.tcd.ie (Postfix) with ESMTP id 003F8BE2E; Tue, 22 Sep 2015 13:25:50 +0100 (IST)
X-Virus-Scanned: Debian amavisd-new at scss.tcd.ie
Received: from mercury.scss.tcd.ie ([127.0.0.1]) by localhost (mercury.scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KJ5bBTgi3_Pu; Tue, 22 Sep 2015 13:25:44 +0100 (IST)
Received: from [10.87.48.73] (unknown [86.46.24.221]) by mercury.scss.tcd.ie (Postfix) with ESMTPSA id BB36EBE32; Tue, 22 Sep 2015 13:25:43 +0100 (IST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cs.tcd.ie; s=mail; t=1442924744; bh=6lRtOJyVbmLaY19EZwZspC7YLKcuU3KsXCUSe2QLOEM=; h=Subject:To:References:Cc:From:Date:In-Reply-To:From; b=0La0SoKuaA6G5JomWby8O3lsF5NTHQm4qA7XX3euzj/nhrFSL6Cdwpsw6bfPOHhh+ YhrU8yUrkJcKOXXUAxHSh6Nsm26zdVeHhbz0Gjw4m0Dqd0q5OaVDrvGnymM/+VUcG2 RziMc9mfnjHtjw7WbJ4vEy3aMLo/W09Vs6ZJlMP4=
To: Hugo Maxwell Connery <hmco@env.dtu.dk>, Brian Trammell <ietf@trammell.ch>, Joseph Lorenzo Hall <joe@cdt.org>
References: <CABtrr-XSAmHEjKvHL_fThqmeWwiCNvz=8-TWhJOd5g895B+bNw@mail.gmail.com> <56003957.9020308@cs.tcd.ie> <F13C24AF-2A4F-426C-8600-AEC4CF4979E1@isoc.org> <CABtrr-WgBdkBFvzPSRjEPs1anX_kGoYZdAGUchbRiwxZGYXR9Q@mail.gmail.com> <DEC470C6-6158-4996-AC1C-ED9A0D2F1CED@trammell.ch> <6CB05D82CE245B4083BBF3B97E2ED47008F85201@ait-pex01mbx01.win.dtu.dk>
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Openpgp: id=D66EA7906F0B897FB2E97D582F3C8736805F8DA2; url=
Message-ID: <560148C5.60906@cs.tcd.ie>
Date: Tue, 22 Sep 2015 13:25:41 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.2.0
MIME-Version: 1.0
In-Reply-To: <6CB05D82CE245B4083BBF3B97E2ED47008F85201@ait-pex01mbx01.win.dtu.dk>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
Archived-At: <http://mailarchive.ietf.org/arch/msg/perpass/xs5COpIQ4jA46bGaiEBw7FxabU8>
Cc: perpass <perpass@ietf.org>, Dan York <york@isoc.org>
Subject: Re: [perpass] India withdraws encryption policy - Re: India posed to require cleartext, cleartext retention, cipher and backdoor mandates
X-BeenThere: perpass@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "The perpass list is for IETF discussion of pervasive monitoring. " <perpass.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/perpass>, <mailto:perpass-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/perpass/>
List-Post: <mailto:perpass@ietf.org>
List-Help: <mailto:perpass-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/perpass>, <mailto:perpass-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 22 Sep 2015 12:25:58 -0000


On 22/09/15 13:17, Hugo Maxwell Connery wrote:
> Hi,
> 
> Back in August was the process of BCP'ing RFC1984. (Subject:
> Recognising RFC1984 as a BCP).
> 
> If this has been completed, it could act as an 'attachment' or
> compliment in some way the form letter which Brian suggests below.

That has been completed [1] so RFC1984 is now an IETF BCP.

I'm not sure how long the RFC editor will need before this
is visible as BCPnnn but it shouldn't be too long, some weeks
maybe. (It's an odd case though changing status on a 1996 RFC,
so some tooling might break or something;-)

S.

[1]
https://mailarchive.ietf.org/arch/msg/ietf-announce/FXpz3-UELhF7S5kBxXvTrRDXSgs

> 
> I repeat that I think the reuse of RFC1984 at this time is an
> excellent strategy as it clearly states "we've been here before, and
> the arguments still hold".
> 
> Regards, Hugo Connery -- Head of IT, DTU Environment,
> http://www.env.dtu.dk ________________________________________ From:
> perpass [perpass-bounces@ietf.org] on behalf of Brian Trammell
> [ietf@trammell.ch] Sent: Tuesday, 22 September 2015 14:04 To: Joseph
> Lorenzo Hall Cc: perpass; Dan York; Stephen Farrell Subject: Re:
> [perpass] India withdraws encryption policy - Re: India posed to
> require cleartext, cleartext retention, cipher and backdoor mandates
> 
> It seems to me in general that this type of policy remains very
> attractive; governments in particular tend to prize temporary
> security over essential freedom. This policy was so obviously silly
> in its technical detail that it would inevitably need to be
> withdrawn, though I was impressed by the speed and openness with
> which that was done here.
> 
> But in general, playing whack-a-mole takes a lot of energy especially
> when the policies themselves are largely copypasta. Perhaps we should
> put together an IAB/program form letter ("So You've Decided to Ban
> Crypto, Here's Why That Won't Work") that we can quickly tailor to
> the details in order to be able to make constructive public comments
> *before* the withdrawal happens next time? :)
> 
> Cheers,
> 
> Brian
> 
> 
>> On 22 Sep 2015, at 13:49, Joseph Lorenzo Hall <joe@cdt.org> wrote:
>> 
>> I'm not so sure we should take comfort in their withdrawal of the
>> policy as all reports are that they are revising and reissuing...
>> We'll see what the next iteration involves!
>> 
>> On Tuesday, September 22, 2015, Dan York <york@isoc.org> wrote: 
>> There was a significant amount of public outcry yesterday within
>> India and the latest news is that the government of India is
>> apparently withdrawing the draft policy:
>> 
>> http://timesofindia.indiatimes.com/tech/tech-news/Government-withdraws-draft-of-encryption-policy/articleshow/49057232.cms
>>
>>
>> 
Prior to that the government agency involved had already issued an
update saying that the draft policy would NOT apply to TLS in web
commerce and social media, messaging, etc.  The update document seems to
have been removed, but is captured here by a news site:
>> 
>> http://www.medianama.com/2015/09/223-india-draft-encryption-policy/
>>
>>
>> 
Dan
>> 
>>> On Sep 21, 2015, at 1:07 PM, Stephen Farrell
>>> <stephen.farrell@cs.tcd.ie> wrote:
>>> 
>>> 
>>> Sheesh, there is so much wrong in that document. And they top it
>>> off by recommending RC4.
>>> 
>>> Does anyone know if this is a policy that is likely to be 
>>> enforced or one that'd be more honoured in the breach?
>>> 
>>> S.
>>> 
>>> On 21/09/15 17:45, Joseph Lorenzo Hall wrote:
>>>> Obviously, of relevance to those that will be at the IAB
>>>> MARNEW workshop this week (although this isn't in any way
>>>> specific to radio networks).
>>>> 
>>>> * Everyone (all individuals and businesses) using encryption
>>>> must store unencrypted content for 90 days * Government will
>>>> dictate algorithms and key sizes * Possibility of a legally
>>>> mandated backdoor
>>>> 
>>>> Article from Daily Dot: 
>>>> http://www.dailydot.com/politics/india-encryption-backdoors-draft-policy/
>>>>
>>>>
>>>> 
Text of the proposal (comments due 16 Oct.):
>>>> https://info.publicintelligence.net/IN-DraftEncryptionPolicy.pdf
>>>>
>>>>
>>>
>>>
>>>> 
_______________________________________________
>>> perpass mailing list perpass@ietf.org 
>>> https://www.ietf.org/mailman/listinfo/perpass
>> 
>> -- Dan York Senior Content Strategist, Internet Society 
>> york@isoc.org   +1-802-735-1624 Jabber: york@jabber.isoc.org Skype:
>> danyork   http://twitter.com/danyork
>> 
>> http://www.internetsociety.org/
>> 
>> 
>> 
>> 
>> 
>> -- Joseph Lorenzo Hall Chief Technologist Center for Democracy &
>> Technology 1634 I ST NW STE 1100 Washington DC 20006-4011 (p)
>> 202-407-8825 (f) 202-637-0968 joe@cdt.org PGP:
>> https://josephhall.org/gpg-key fingerprint: 3CA2 8D7B 9F6D DBD3
>> 4B10  1607 5F86 6987 40A9 A871
>> 
>> 
>> 
>> _______________________________________________ perpass mailing
>> list perpass@ietf.org 
>> https://www.ietf.org/mailman/listinfo/perpass
> 
> _______________________________________________ perpass mailing list 
> perpass@ietf.org https://www.ietf.org/mailman/listinfo/perpass
> 
> _______________________________________________ perpass mailing list 
> perpass@ietf.org https://www.ietf.org/mailman/listinfo/perpass
>

v2.23.0 | Report a Bug | By Email