[plasma] FW: New Version Notification for draft-freeman-plasma-requirements-02.txt
"Jim Schaad" <ietf@augustcellars.com> Mon, 23 July 2012 20:43 UTC
Return-Path: <ietf@augustcellars.com>
X-Original-To: plasma@ietfa.amsl.com
Delivered-To: plasma@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EE58611E808C for <plasma@ietfa.amsl.com>; Mon, 23 Jul 2012 13:43:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.599
X-Spam-Level:
X-Spam-Status: No, score=-3.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 62sxyr1gRGd4 for <plasma@ietfa.amsl.com>; Mon, 23 Jul 2012 13:43:00 -0700 (PDT)
Received: from smtp4.pacifier.net (smtp4.pacifier.net [64.255.237.176]) by ietfa.amsl.com (Postfix) with ESMTP id 3C09B11E808A for <plasma@ietf.org>; Mon, 23 Jul 2012 13:43:00 -0700 (PDT)
Received: from Tobias (173-8-216-38-Oregon.hfc.comcastbusiness.net [173.8.216.38]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: schaad@nwlink.com) by smtp4.pacifier.net (Postfix) with ESMTPSA id 02DE638F3E for <plasma@ietf.org>; Mon, 23 Jul 2012 13:42:59 -0700 (PDT)
From: Jim Schaad <ietf@augustcellars.com>
To: plasma@ietf.org
References: <20120706204230.23987.26959.idtracker@ietfa.amsl.com>
In-Reply-To: <20120706204230.23987.26959.idtracker@ietfa.amsl.com>
Date: Mon, 23 Jul 2012 13:41:35 -0700
Message-ID: <00db01cd6913$8d946460$a8bd2d20$@augustcellars.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
X-Mailer: Microsoft Outlook 14.0
Thread-Index: AQCng9bfEz2ExA0xK5Me4KAVzGQSU5mDHz9A
Content-Language: en-us
X-Mailman-Approved-At: Mon, 23 Jul 2012 13:44:28 -0700
Subject: [plasma] FW: New Version Notification for draft-freeman-plasma-requirements-02.txt
X-BeenThere: plasma@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "The PoLicy Augmented S/Mime \(plasma\) bof discussion list." <plasma.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/plasma>, <mailto:plasma-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/plasma>
List-Post: <mailto:plasma@ietf.org>
List-Help: <mailto:plasma-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/plasma>, <mailto:plasma-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 23 Jul 2012 20:43:01 -0000
Trevor is having issues sending to the list, so some of you might have missed seeing that a new version of this document has been published. Jim > -----Original Message----- > From: internet-drafts@ietf.org [mailto:internet-drafts@ietf.org] > Sent: Friday, July 06, 2012 1:43 PM > To: trevorf@microsoft.com > Cc: ppatterson@carillon.ca; ietf@augustcellars.com > Subject: New Version Notification for draft-freeman-plasma-requirements- > 02.txt > > > A new version of I-D, draft-freeman-plasma-requirements-02.txt > has been successfully submitted by Trevor Freeman and posted to the > IETF repository. > > Filename: draft-freeman-plasma-requirements > Revision: 02 > Title: Requirements for Message Access Control > Creation date: 2012-07-06 > WG ID: Individual Submission > Number of pages: 53 > URL: http://www.ietf.org/internet-drafts/draft-freeman-plasma- > requirements-02.txt > Status: http://datatracker.ietf.org/doc/draft-freeman-plasma- > requirements > Htmlized: http://tools.ietf.org/html/draft-freeman-plasma- > requirements-02 > Diff: http://tools.ietf.org/rfcdiff?url2=draft-freeman-plasma- > requirements-02 > > Abstract: > There are many situations where organizations want to protect > information with robust access control, either for implementation of > intellectual property right protections, enforcement of contractual > confidentiality agreements or because of legal regulations. The > Enhanced Security Services (ESS) for S/MIME defines an access control > mechanism which is enforced by the recipient's client after > decryption of the message. The ESS mechanism therefore is dependent > on the correct access policy configuration of every recipient's > client. This mechanism also provides full access to the data to all > recipients prior to the access control check, this is considered to > be inadequate due to the difficulty in demonstrating policy > compliance. > > This document lays out the deficiencies of the current ESS security > label, and presents requirements for a new model for doing/providing > access control to messages where the access check is performed prior > to message content decryption. This new model also does not require > policy configuration on the client to simplify deployment and > compliance verification. > > The proposed model additionally provides a method where non-X.509 > certificate credentials can be used for encryption/decryption of > S/MIME messages. > > > > > The IETF Secretariat