[plasma] FW: New Version Notification for draft-freeman-plasma-requirements-02.txt

"Jim Schaad" <ietf@augustcellars.com> Mon, 23 July 2012 20:43 UTC

Return-Path: <ietf@augustcellars.com>
X-Original-To: plasma@ietfa.amsl.com
Delivered-To: plasma@ietfa.amsl.com
Received: from localhost (localhost []) by ietfa.amsl.com (Postfix) with ESMTP id EE58611E808C for <plasma@ietfa.amsl.com>; Mon, 23 Jul 2012 13:43:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.599
X-Spam-Status: No, score=-3.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id 62sxyr1gRGd4 for <plasma@ietfa.amsl.com>; Mon, 23 Jul 2012 13:43:00 -0700 (PDT)
Received: from smtp4.pacifier.net (smtp4.pacifier.net []) by ietfa.amsl.com (Postfix) with ESMTP id 3C09B11E808A for <plasma@ietf.org>; Mon, 23 Jul 2012 13:43:00 -0700 (PDT)
Received: from Tobias (173-8-216-38-Oregon.hfc.comcastbusiness.net []) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: schaad@nwlink.com) by smtp4.pacifier.net (Postfix) with ESMTPSA id 02DE638F3E for <plasma@ietf.org>; Mon, 23 Jul 2012 13:42:59 -0700 (PDT)
From: Jim Schaad <ietf@augustcellars.com>
To: plasma@ietf.org
References: <20120706204230.23987.26959.idtracker@ietfa.amsl.com>
In-Reply-To: <20120706204230.23987.26959.idtracker@ietfa.amsl.com>
Date: Mon, 23 Jul 2012 13:41:35 -0700
Message-ID: <00db01cd6913$8d946460$a8bd2d20$@augustcellars.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
X-Mailer: Microsoft Outlook 14.0
Thread-Index: AQCng9bfEz2ExA0xK5Me4KAVzGQSU5mDHz9A
Content-Language: en-us
X-Mailman-Approved-At: Mon, 23 Jul 2012 13:44:28 -0700
Subject: [plasma] FW: New Version Notification for draft-freeman-plasma-requirements-02.txt
X-BeenThere: plasma@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "The PoLicy Augmented S/Mime \(plasma\) bof discussion list." <plasma.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/plasma>, <mailto:plasma-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/plasma>
List-Post: <mailto:plasma@ietf.org>
List-Help: <mailto:plasma-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/plasma>, <mailto:plasma-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 23 Jul 2012 20:43:01 -0000

Trevor is having issues sending to the list, so some of you might have missed seeing that a new version of this document has been published.


> -----Original Message-----
> From: internet-drafts@ietf.org [mailto:internet-drafts@ietf.org]
> Sent: Friday, July 06, 2012 1:43 PM
> To: trevorf@microsoft.com
> Cc: ppatterson@carillon.ca; ietf@augustcellars.com
> Subject: New Version Notification for draft-freeman-plasma-requirements-
> 02.txt
> A new version of I-D, draft-freeman-plasma-requirements-02.txt
> has been successfully submitted by Trevor Freeman and posted to the
> IETF repository.
> Filename:	 draft-freeman-plasma-requirements
> Revision:	 02
> Title:		 Requirements for Message Access Control
> Creation date:	 2012-07-06
> WG ID:		 Individual Submission
> Number of pages: 53
> URL:             http://www.ietf.org/internet-drafts/draft-freeman-plasma-
> requirements-02.txt
> Status:          http://datatracker.ietf.org/doc/draft-freeman-plasma-
> requirements
> Htmlized:        http://tools.ietf.org/html/draft-freeman-plasma-
> requirements-02
> Diff:            http://tools.ietf.org/rfcdiff?url2=draft-freeman-plasma-
> requirements-02
> Abstract:
>    There are many situations where organizations want to protect
>    information with robust access control, either for implementation of
>    intellectual property right protections, enforcement of contractual
>    confidentiality agreements or because of legal regulations.  The
>    Enhanced Security Services (ESS) for S/MIME defines an access control
>    mechanism which is enforced by the recipient's client after
>    decryption of the message. The ESS mechanism therefore is dependent
>    on the correct access policy configuration of every recipient's
>    client. This mechanism also provides full access to the data to all
>    recipients prior to the access control check, this is considered to
>    be inadequate due to the difficulty in demonstrating policy
>    compliance.
>    This document lays out the deficiencies of the current ESS security
>    label, and presents requirements for a new model for doing/providing
>    access control to messages where the access check is performed prior
>    to message content decryption. This new model also does not require
>    policy configuration on the client to simplify deployment and
>    compliance verification.
>    The proposed model additionally provides a method where non-X.509
>    certificate credentials can be used for encryption/decryption of
>    S/MIME messages.
> The IETF Secretariat