Re: [plasma] Plasma and File protection Question

Stephen Farrell <stephen.farrell@cs.tcd.ie> Tue, 19 April 2011 23:29 UTC

Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: plasma@ietfc.amsl.com
Delivered-To: plasma@ietfc.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfc.amsl.com (Postfix) with ESMTP id 359B0E0857 for <plasma@ietfc.amsl.com>; Tue, 19 Apr 2011 16:29:32 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -106.599
X-Spam-Level:
X-Spam-Status: No, score=-106.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([208.66.40.236]) by localhost (ietfc.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HhA49uY1JqCt for <plasma@ietfc.amsl.com>; Tue, 19 Apr 2011 16:29:31 -0700 (PDT)
Received: from scss.tcd.ie (hermes.cs.tcd.ie [134.226.32.56]) by ietfc.amsl.com (Postfix) with ESMTP id E2B60E075C for <plasma@ietf.org>; Tue, 19 Apr 2011 16:29:30 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by hermes.scss.tcd.ie (Postfix) with ESMTP id E01DA171C1E; Wed, 20 Apr 2011 00:29:29 +0100 (IST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cs.tcd.ie; h= content-transfer-encoding:content-type:in-reply-to:references :subject:mime-version:user-agent:from:date:message-id:received :received:x-virus-scanned; s=cs; t=1303255769; bh=bZMGtfirRkBWFI z0zXh7O1IecbWaot9hrPrXwhPQXQY=; b=G5ivGNJ+ZvGu5C7mI8u5uLsHwNBEUv Ji2tacEtjZWKtpbpGPeQU82npAdXHc3AVpYcRw78pEOANSyeRuIhR2qFSKAmsxhF iDZdlma6GqeugjzVgwGXykIk/g1a4E2S+15XhBf9nmh3+VZMFh3UWnv/0DR2llav h5NH+k8vDM9nyUhEQLl4ECai83+97i9EjjNKi1WvsJOYoQJh0qaOhdfnpbLjd4Cj EwTmIxIv/s2UpX2sJaYrZ9mMJLu73+SdEJXfxo0M6StayKNxXibT2bin/tJkyX2U qA6/A4V4sfqDEDImocmr07RA4RKnhRNQStdztmOrtcw665/6rdCfOEiw==
X-Virus-Scanned: Debian amavisd-new at scss.tcd.ie
Received: from scss.tcd.ie ([127.0.0.1]) by localhost (scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10027) with ESMTP id zgzGaWYPOa67; Wed, 20 Apr 2011 00:29:29 +0100 (IST)
Received: from [10.87.48.10] (unknown [86.42.177.204]) by smtp.scss.tcd.ie (Postfix) with ESMTPSA id 3A322171C1B; Wed, 20 Apr 2011 00:29:29 +0100 (IST)
Message-ID: <4DAE1AD5.6080909@cs.tcd.ie>
Date: Wed, 20 Apr 2011 00:29:25 +0100
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.2.14) Gecko/20110223 Lightning/1.0b2 Thunderbird/3.1.8
MIME-Version: 1.0
To: Trevor Freeman <trevorf@exchange.microsoft.com>
References: <E545B914D50B2A4B994F198378B1525D33A0036D@DF-M14-12.exchange.corp.microsoft.com> <4DAE012B.9030809@cs.tcd.ie> <E545B914D50B2A4B994F198378B1525D33A00438@DF-M14-12.exchange.corp.microsoft.com>
In-Reply-To: <E545B914D50B2A4B994F198378B1525D33A00438@DF-M14-12.exchange.corp.microsoft.com>
X-Enigmail-Version: 1.1.1
Content-Type: text/plain; charset=windows-1252
Content-Transfer-Encoding: 8bit
Cc: "plasma@ietf.org" <plasma@ietf.org>
Subject: Re: [plasma] Plasma and File protection Question
X-BeenThere: plasma@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "The PoLicy Augmented S/Mime \(plasma\) bof discussion list." <plasma.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/plasma>, <mailto:plasma-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/plasma>
List-Post: <mailto:plasma@ietf.org>
List-Help: <mailto:plasma-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/plasma>, <mailto:plasma-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 19 Apr 2011 23:29:32 -0000

Hi Trevor,

I don't have a real preference/opinion myself except that
a credible proposal here should have real support from
various sources, optimally including the open-source
community.

S.

On 20/04/11 00:13, Trevor Freeman wrote:
> OPC = Open Packaging Convention; it’s the official standard name for zip
> files.
> 
> The attraction of an OPC solution is you can protect anything just as
> you can zip anything so it would generate a universal solution.
> 
> Both OOXML and ODF are widely used standards with multi-vendor support.
>   The reason to cited them as examples is that they have a documented
> file format with extension points we could use to build a solution.
> 
> I doubt the OOXML\ODF thing will go away just like pkix has cmc and cmpJ
> 
> Would you consider OPC a more neutral solution?
> 
>  
> 
> -----Original Message-----
> From: Stephen Farrell [mailto:stephen.farrell@cs.tcd.ie]
> Sent: Tuesday, April 19, 2011 2:40 PM
> To: Trevor Freeman
> Cc: plasma@ietf.org
> Subject: Re: [plasma] Plasma and File protection Question
> 
>  
> 
>  
> 
> I've no idea what OPC is but I'd have thought that OOXML would likely be
> controversial - or have all the word processing types made up since the
> OOXML/ODF kerfuffle [1] of a few years ago?
> 
>  
> 
> S.
> 
>  
> 
> [1] http://en.wikipedia.org/wiki/Office_Open_XML#Standardization_process
> 
>  
> 
> On 19/04/11 22:19, Trevor Freeman wrote:
> 
>> Having agreed that files and are the conceptually the same as email
> 
>> from a policy access control perspective, there is one important
> distinction.
> 
>>
> 
>> 
> 
>>
> 
>> Email has a standard mechanism to define multiple parts of a message
> 
>> to represent different aspects of the message i.e. MIME.
> 
>>
> 
>> 
> 
>>
> 
>> We don’t have that for files so we don’t have a simple generic way to
> 
>> attach the extra metadata to a file.
> 
>>
> 
>> 
> 
>>
> 
>> Some standard file formats have specific extension mechanisms we can
> 
>> use e.g. OOXML which would allow you to define a way to attach the
> 
>> plasma metadata to the file type in question.
> 
>>
> 
>> 
> 
>>
> 
>> Alternatively there exist generic file container standards what can
> 
>> hold any combination of files and data e.g. OPC which would provide a
> 
>> generic solution for any file type.
> 
>>
> 
>> 
> 
>>
> 
>> If we were to expand files for consideration with Plasma, which would
> 
>> be the best first step, a specific solution like OOXML or a generic
> 
>> solution such as OPC?
> 
>>
> 
>> 
> 
>>
> 
>> *Dr Trevor Freeman*  Senior Security Strategist
> 
>>
> 
>> *End to End Trust Team
> 
>> <http://www.microsoft.com/mscorp/twc/endtoendtrust/default.mspx>*
> 
>>
> 
>> *Microsoft Trustworthy
> 
>> Computing<http://www.microsoft.com/mscorp/twc/default.mspx>*
> 
>>
> 
>> 
> 
>>
> 
>>
> 
>>
> 
>> _______________________________________________
> 
>> plasma mailing list
> 
>> plasma@ietf.org <mailto:plasma@ietf.org>
> 
>> https://www.ietf.org/mailman/listinfo/plasma
>