Re: [pkng] More thoughts: Privacy
Peter Saint-Andre <stpeter@stpeter.im> Tue, 17 November 2009 21:10 UTC
Return-Path: <stpeter@stpeter.im>
X-Original-To: pkng@core3.amsl.com
Delivered-To: pkng@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id BCE2D28C0EB for <pkng@core3.amsl.com>; Tue, 17 Nov 2009 13:10:10 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wsBnUKmoXTZN for <pkng@core3.amsl.com>; Tue, 17 Nov 2009 13:10:09 -0800 (PST)
Received: from stpeter.im (stpeter.im [207.210.219.233]) by core3.amsl.com (Postfix) with ESMTP id 7FBF63A6B02 for <pkng@irtf.org>; Tue, 17 Nov 2009 13:10:09 -0800 (PST)
Received: from dhcp-64-101-72-196.cisco.com (dhcp-64-101-72-196.cisco.com [64.101.72.196]) (Authenticated sender: stpeter) by stpeter.im (Postfix) with ESMTPSA id 0142C40D16; Tue, 17 Nov 2009 14:10:05 -0700 (MST)
Message-ID: <4B03112C.8070304@stpeter.im>
Date: Tue, 17 Nov 2009 14:10:04 -0700
From: Peter Saint-Andre <stpeter@stpeter.im>
User-Agent: Thunderbird 2.0.0.23 (Macintosh/20090812)
MIME-Version: 1.0
To: openca@acm.org
References: <4B030FF1.8030200@Dartmouth.edu>
In-Reply-To: <4B030FF1.8030200@Dartmouth.edu>
X-Enigmail-Version: 0.96.0
OpenPGP: url=http://www.saint-andre.com/me/stpeter.asc
Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg="sha1"; boundary="------------ms080609010103090608010403"
Cc: pkng@irtf.org
Subject: Re: [pkng] More thoughts: Privacy
X-BeenThere: pkng@irtf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "Public Key Next Generation \(PKNG\) Research Group" <pkng.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/listinfo/pkng>, <mailto:pkng-request@irtf.org?subject=unsubscribe>
List-Archive: <http://www.irtf.org/mail-archive/web/pkng>
List-Post: <mailto:pkng@irtf.org>
List-Help: <mailto:pkng-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/pkng>, <mailto:pkng-request@irtf.org?subject=subscribe>
X-List-Received-Date: Tue, 17 Nov 2009 21:10:10 -0000
On 11/17/09 2:04 PM, Massimiliano Pala wrote: > Hi PK-NGers, > > I would like to add one aspect that I think could be an important addition > to current PKIs. Indeed, what we have today is a complete disclosure of > one's > identity. PKI protocols have been designed without taking into any account > privacy concerns. > > As many of the ideas I read on the list are related to easily extend trust > by somehow linking together different infrastructures, I think that we > shall > keep in mind that privacy is very important when linking together different > organizations/authorities. > > I tried to make the point on the PKIX list (I guess most of the people here > are also subscribed to that list) about the OCSP - currently the answer in > traditional PKI is using SSL/TLS for communication between peers - but that > would not solve the problem on the OCSP server, its logs and how policies > should take care of how to handle that data. If the data on the server's > log > is sufficiently anonymized, then it is easier to federate identities and > outsource services or relying on 3rd party servers. I think this is a policy issue for providers of PK* services (just as it is for providers of email services, IM services, microblogging services, and all the rest). Now, I agree that better disclosure of policies will help humans make more informed decisions (if they care to be informed). Peter -- Peter Saint-Andre https://stpeter.im/
- [pkng] More thoughts: Privacy Massimiliano Pala
- Re: [pkng] More thoughts: Privacy Peter Saint-Andre
- Re: [pkng] More thoughts: Privacy Massimiliano Pala
- Re: [pkng] More thoughts: Privacy Stephen Farrell