Re: [pkix] Key lookup service via draft-bhjl-x509-srv-00
Wei Chuang <weihaw@google.com> Wed, 23 March 2016 18:26 UTC
Return-Path: <weihaw@google.com>
X-Original-To: pkix@ietfa.amsl.com
Delivered-To: pkix@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8565612D685 for <pkix@ietfa.amsl.com>; Wed, 23 Mar 2016 11:26:55 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.71
X-Spam-Level:
X-Spam-Status: No, score=-2.71 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jGaYYPo4tzoI for <pkix@ietfa.amsl.com>; Wed, 23 Mar 2016 11:26:53 -0700 (PDT)
Received: from mail-vk0-x230.google.com (mail-vk0-x230.google.com [IPv6:2607:f8b0:400c:c05::230]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2A40E12D64E for <pkix@ietf.org>; Wed, 23 Mar 2016 11:26:53 -0700 (PDT)
Received: by mail-vk0-x230.google.com with SMTP id k1so30188040vkb.0 for <pkix@ietf.org>; Wed, 23 Mar 2016 11:26:53 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc; bh=Gwl9EFwT3E03WxkGZT81eSoby4KM3kw/KNtGPLr3GNQ=; b=eKR16OAb6T1UQm9PnGG/vKZNf0WMCeM5tWxjz72mItfMOpMy7SCs1iC2KTgo1jQ6x2 0fevI8evvOyhAOZ2rYZe5BrAo2tp6UmQFQx4eDRI0B3PGeFPjN4DlL7lUMlIHmsOE/XT vHm36XY4wOAUv77UUQLcWccE+LExYmZAmSx3dl5onhmA5JSMwmBlP1oDiiTTTqfyMrZf 60Sr6bCKSyT8jUAXf//hs7u3I0x4ObNXcSQiGNWORNyGYSe5wIsJ7e6p4PCY/cl9O0xa J5wU1cN0yNMuKxqMOUYHgCxZH1QBxc7rWGkGIXF2/SWpupIdjo2y1RZJPm4H45lIN0xB lS5g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc; bh=Gwl9EFwT3E03WxkGZT81eSoby4KM3kw/KNtGPLr3GNQ=; b=HIsnSw7O/Ona0E/V9KWF3+00KRiaRZrzEBcTuVaMAmo2uhoqfYw5QXo99N9uw9/6Lx +vXEJ5G+A/nhpuoZpUe1LasjLSFSU7242YIFaRnAoqU/1YR6GT3frlj1OcdGBvtWAUuO LJdBu0GL8sg21y3kP8fbpggY6q2HI7sUKoJjNHFtZdQ4302OH2Nqksrvt22rpe7ODeZn 95w51LROa5FS7p0L0r5tNY9zDHRlDUqG/OtNSxuF9olODVKJM18j/owAMw8sq07AUK9V d6agC071rydsgDhqdJEUh9XYHuE9yc/ccmorIObh5wzQE0Srkyn9YQkcZAqbnDK/PQ4k kiPQ==
X-Gm-Message-State: AD7BkJKWzRTKaHHQcNp+S5WUQoY9f0U6Huh/qnWSo+B0CgJeE4h6lRSMRBmj4FverrYH9qHOg+C5RUZ8yQYBjycS
MIME-Version: 1.0
X-Received: by 10.159.38.85 with SMTP id 79mr2249518uag.45.1458757612105; Wed, 23 Mar 2016 11:26:52 -0700 (PDT)
Received: by 10.159.36.179 with HTTP; Wed, 23 Mar 2016 11:26:52 -0700 (PDT)
In-Reply-To: <alpine.OSX.2.11.1603221443230.18473@ary.lan>
References: <CAAFsWK3HEXDgqONxBohBCGMKk2qMa230fxcNEaGhoTwQZVYQoQ@mail.gmail.com> <alpine.OSX.2.11.1603221443230.18473@ary.lan>
Date: Wed, 23 Mar 2016 11:26:52 -0700
Message-ID: <CAAFsWK2Xbw0eU2oz4edtmPH5PhwJgQkTYWKhFruZnCnD37c_CQ@mail.gmail.com>
From: Wei Chuang <weihaw@google.com>
To: John R Levine <johnl@taugh.com>
Content-Type: multipart/alternative; boundary="001a113d1a8c48ba99052ebb79e5"
Archived-At: <http://mailarchive.ietf.org/arch/msg/pkix/W1SnctZ4QK6xjRezX1GJfqY7Fso>
Cc: PKIX <pkix@ietf.org>, Brian Haberman <brian@innovationslab.net>, IETF SMIME <smime@ietf.org>
Subject: Re: [pkix] Key lookup service via draft-bhjl-x509-srv-00
X-BeenThere: pkix@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: PKIX Working Group <pkix.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pkix>, <mailto:pkix-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/pkix/>
List-Post: <mailto:pkix@ietf.org>
List-Help: <mailto:pkix-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pkix>, <mailto:pkix-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 23 Mar 2016 18:26:55 -0000
Thanks for the explanation. On Tue, Mar 22, 2016 at 1:38 PM, John R Levine <johnl@taugh.com> wrote: > I think this draft (draft-bhjl-x509-srv-00 >> <https://tools.ietf.org/html/draft-bhjl-x509-srv-00>) very usefully >> defines >> a means to lookup certificates for S/MIME users, and wonder if we could >> discuss this. As far as I can tell it hasn't been discussed else where. >> > > > > Another worry is that the security of this proposal is based on DNSSEC >> which is only very slowly being deployed and many clients may not be able >> to interoperate with that. >> > > Not really. The keys deliberately are *not* automatically authoritative > so it's not a privacy crisis if someone inserts a fake server. Clients > need to apply local policy to decide whether to trust them, just like you > would for keys from traditional PGP key servers or anywhere else. I think the benefits of an authoritative server out weighs the worries that you suggest. In the web world, its been very helpful to be certain what one should chain up via browser certificate pinning or HPKP. A whole host of malfeasance was found this way. Even in the limited use that S/MIME has today, in government and defense, its likely to be very useful. > The only thing that depends on DNSSEC for trust is the new option for a > domain to publish a S/MIME signing key for its users' keys. Lacking > DNSSEC, the traditional CA PKI is still there. > > There some risk in authenticating via email CA PKI. What use of S/MIME there is suggests a fair amount of domain private issued or self issued certificates and consequently S/MIME MUAs often make it easy to add these private trust anchors. Due to human factors that we've often read about, its would not be difficult to convince users to accept a fraudulent certificate and trust anchor, and thereby lessens the strength of email CA PKI and its ability to effectively distinguish a fake key server. -Wei > R's, > John >
- [pkix] Key lookup service via draft-bhjl-x509-srv… Wei Chuang
- Re: [pkix] Key lookup service via draft-bhjl-x509… John R Levine
- Re: [pkix] Key lookup service via draft-bhjl-x509… Wei Chuang
- Re: [pkix] Key lookup service via draft-bhjl-x509… John R Levine
- Re: [pkix] [smime] Key lookup service via draft-b… Miller, Timothy J.
- Re: [pkix] [smime] Key lookup service via draft-b… John R Levine
- Re: [pkix] [smime] Key lookup service via draft-b… Wei Chuang
- Re: [pkix] [smime] Key lookup service via draft-b… John R Levine
- Re: [pkix] [smime] Key lookup service via draft-b… Wei Chuang
- Re: [pkix] [smime] Key lookup service via draft-b… Miller, Timothy J.
- Re: [pkix] [smime] Key lookup service via draft-b… Wei Chuang
- Re: [pkix] [smime] Key lookup service via draft-b… Miller, Timothy J.
- Re: [pkix] [smime] Key lookup service via draft-b… John R Levine
- Re: [pkix] [smime] Key lookup service via draft-b… Miller, Timothy J.
- Re: [pkix] [smime] Key lookup service via draft-b… John R Levine
- Re: [pkix] [smime] Key lookup service via draft-b… Miller, Timothy J.
- Re: [pkix] [smime] Key lookup service via draft-b… John R Levine
- Re: [pkix] [smime] Key lookup service via draft-b… Michael StJohns
- Re: [pkix] [smime] Key lookup service via draft-b… John Levine