[plasma] Fwd: New Version Notification for draft-freeman-plasma-requirements-11.txt

Trevor Freeman <trevor.freeman99@icloud.com> Mon, 09 March 2015 05:55 UTC

Return-Path: <trevor.freeman99@icloud.com>
X-Original-To: plasma@ietfa.amsl.com
Delivered-To: plasma@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com []) by ietfa.amsl.com (Postfix) with ESMTP id 38C3B1A6FF7 for <plasma@ietfa.amsl.com>; Sun, 8 Mar 2015 22:55:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.199
X-Spam-Status: No, score=-4.199 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, MIME_QP_LONG_LINE=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id sRj37tCpU-dD for <plasma@ietfa.amsl.com>; Sun, 8 Mar 2015 22:55:27 -0700 (PDT)
Received: from mr11p24im-asmtp002.me.com (mr11p24im-asmtp002.me.com []) (using TLSv1.2 with cipher DHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 70DB81A6EF1 for <plasma@ietf.org>; Sun, 8 Mar 2015 22:55:27 -0700 (PDT)
Received: from [] (c-24-17-210-106.hsd1.wa.comcast.net []) by mr11p24im-asmtp002.me.com (Oracle Communications Messaging Server 64bit (built Dec 4 2014)) with ESMTPSA id <0NKX00FVDKFUZK50@mr11p24im-asmtp002.me.com> for plasma@ietf.org; Mon, 09 Mar 2015 05:55:09 +0000 (GMT)
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10432:5.13.68,1.0.33,0.0.0000 definitions=2015-03-09_01:2015-03-06,2015-03-08,1970-01-01 signatures=0
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 spamscore=0 suspectscore=0 phishscore=0 adultscore=0 bulkscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=7.0.1-1412110000 definitions=main-1503090065
References: <20150309002715.4237.43431.idtracker@ietfa.amsl.com>
From: Trevor Freeman <trevor.freeman99@icloud.com>
Content-type: multipart/alternative; boundary=Apple-Mail-42E91483-33C3-45B6-87B1-A1DA961C90C4
X-Mailer: iPad Mail (12B466)
Message-id: <D3DDA59E-C4AF-4864-A303-33E6C66E9A31@icloud.com>
Date: Sun, 08 Mar 2015 22:55:07 -0700
To: "plasma@ietf.org" <plasma@ietf.org>
Content-transfer-encoding: 7bit
MIME-version: 1.0 (1.0)
Archived-At: <http://mailarchive.ietf.org/arch/msg/plasma/FaCZ16rrbN4SkCgsBS-xVc2Nsd4>
Subject: [plasma] Fwd: New Version Notification for draft-freeman-plasma-requirements-11.txt
X-BeenThere: plasma@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "The PoLicy Augmented S/Mime \(plasma\) bof discussion list." <plasma.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/plasma>, <mailto:plasma-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/plasma/>
List-Post: <mailto:plasma@ietf.org>
List-Help: <mailto:plasma-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/plasma>, <mailto:plasma-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 09 Mar 2015 05:55:30 -0000

Fyi a new version of the requirements draft was just published

Sent from my iPad

Begin forwarded message:

> From: internet-drafts@ietf.org
> Date: March 8, 2015 at 5:27:15 PM PDT
> To: Patrick Patterson <ppatterson@carillon.ca>ca>, Jim Schaad <ietf@augustcellars.com>om>, Jim Schaad <ietf@augustcellars.com>om>, Patrick Patterson <ppatterson@carillon.ca>ca>, Trevor Freeman <trevor.freeman99@icloud.com>om>, Trevor Freeman <trevor.freeman99@icloud.com>
> Subject: New Version Notification for draft-freeman-plasma-requirements-11.txt
> A new version of I-D, draft-freeman-plasma-requirements-11.txt
> has been successfully submitted by Trevor Freeman and posted to the
> IETF repository.
> Name:        draft-freeman-plasma-requirements
> Revision:    11
> Title:        Requirements for Message Access Control
> Document date:    2015-03-05
> Group:        Individual Submission
> Pages:        49
> URL:            http://www.ietf.org/internet-drafts/draft-freeman-plasma-requirements-11.txt
> Status:         https://datatracker.ietf.org/doc/draft-freeman-plasma-requirements/
> Htmlized:       http://tools.ietf.org/html/draft-freeman-plasma-requirements-11
> Diff:           http://www.ietf.org/rfcdiff?url2=draft-freeman-plasma-requirements-11
> Abstract:
>  S/MIME delivers confidentiality, integrity, and data origination
>  authentication for email. However, there are many situations where
>  organizations also want robust access control applied to information
>  in messages. The Enhanced Security Services (ESS) RFC5035 for S/MIME
>  defines an access control mechanism for email, but the  access check
>  happens after the data is decrypted by the recipient which devalues
>  the protection afforded by the cryptography and provides very weak
>  guarantees of policy compliance. Another major issues for S/MIME is
>  its dependency on a single type of identity credential, an X.509
>  certificate. Many users on the Internet today do not have X.509
>  certificates and therefore cannot use S/MIME.  Furthermore, the
>  requirement to discover the X.509 certificate for every recipient of
>  an encrypted message by the sender has proven to be an unreliable
>  process for a number of reasons.
>  This document presents requirements for an alternative model to ESS to
>  address the identified issues with access control in order to deliver
>  more robust compliance for S/MIME protected messages. This document
>  describes an access control model which uses cryptographic keys to
>  enforce access control policy decisions where the policy check is
>  performed prior to the decryption of the message contents. This
>  authorization model can be instantiated using many existing standards
>  and is in not intended to be a one off just for email, being
>  applicable to other data types.
>  This document also presents requirements for the abstraction of the
>  specifics of the authentication technologies used by S/MIME users. The
>  abstraction makes it possible for other forms of authentication
>  credentials to be used with S/MIME thereby enabling much broader
>  adoption. The authentication abstraction model also removes the
>  dependency on the need to discover encryption keys by the sender. This
>  abstraction can be used independently from access control to enable
>  simple scenarios where authentication of the recipient is sufficient
>  to grant access to the message.
>  The name Plasma was assigned to this effort as part of the IETF
>  process. It is derived from PoLicy enhAnced Secure eMAil.
> Please note that it may take a couple of minutes from the time of submission
> until the htmlized version and diff are available at tools.ietf.org.
> The IETF Secretariat