IETF Logo Mail Archive

Re: [plasma] Security Boundary Inspection - outgoing messages

Trevor Freeman <trevorf@exchange.microsoft.com> Thu, 25 August 2011 17:55 UTC

Return-Path: <trevorf@exchange.microsoft.com>
X-Original-To: plasma@ietfa.amsl.com
Delivered-To: plasma@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4985721F8C6B for <plasma@ietfa.amsl.com>; Thu, 25 Aug 2011 10:55:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -110.412
X-Spam-Level:
X-Spam-Status: No, score=-110.412 tagged_above=-999 required=5 tests=[AWL=0.187, BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 26MhnFpyEzGQ for <plasma@ietfa.amsl.com>; Thu, 25 Aug 2011 10:55:55 -0700 (PDT)
Received: from mail.exchange.microsoft.com (mail7.exchange.microsoft.com [131.107.1.27]) by ietfa.amsl.com (Postfix) with ESMTP id A511A21F8862 for <plasma@ietf.org>; Thu, 25 Aug 2011 10:55:55 -0700 (PDT)
Received: from df-h14-02.exchange.corp.microsoft.com (157.54.78.140) by DF-G14-02.exchange.corp.microsoft.com (157.54.87.56) with Microsoft SMTP Server (TLS) id 14.2.202.2; Thu, 25 Aug 2011 10:57:09 -0700
Received: from PIO-MLT-05.exchange.corp.microsoft.com (157.54.94.22) by DF-H14-02.exchange.corp.microsoft.com (157.54.78.140) with Microsoft SMTP Server (TLS) id 14.2.202.4; Thu, 25 Aug 2011 10:57:09 -0700
Received: from DF-M14-12.exchange.corp.microsoft.com ([fe80::7c94:4036:120:c95f]) by PIO-MLT-05.exchange.corp.microsoft.com ([fe80::d940:e316:1daa:5e6a%10]) with mapi id 14.02.0202.002; Thu, 25 Aug 2011 10:57:08 -0700
From: Trevor Freeman <trevorf@exchange.microsoft.com>
To: "Fitch, Scott C" <scott.c.fitch@lmco.com>, "'plasma@ietf.org'" <plasma@ietf.org>
Thread-Topic: [plasma] Security Boundary Inspection - outgoing messages
Thread-Index: AcxS5MG+6UZR93WDRcaB0KoMCtIIVgBU/PyAACDLnYADpLd88A==
Date: Thu, 25 Aug 2011 17:57:08 +0000
Message-ID: <E545B914D50B2A4B994F198378B1525D394DCA92@DF-M14-12.exchange.corp.microsoft.com>
References: <01b401cc53fe$32ea0d60$98be2820$@nwlink.com> <3AED781EC260354F87ADB219D005398748CF9D124D@HVXMSP1.us.lmco.com>
In-Reply-To: <3AED781EC260354F87ADB219D005398748CF9D124D@HVXMSP1.us.lmco.com>
Accept-Language: en-GB, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [157.54.51.103]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Subject: Re: [plasma] Security Boundary Inspection - outgoing messages
X-BeenThere: plasma@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "The PoLicy Augmented S/Mime \(plasma\) bof discussion list." <plasma.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/plasma>, <mailto:plasma-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/plasma>
List-Post: <mailto:plasma@ietf.org>
List-Help: <mailto:plasma-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/plasma>, <mailto:plasma-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Aug 2011 17:55:56 -0000

Hi Scott,

I think we can raise the bar here wrt spammers. I think it reasonable to publish policy if you require inbound inspection as a default. You can always set an exception for supersensitive content but you don't need to publish that. Plasma does allow the mail agent to establish the authenticity of the data without decryption because we will have a detached signature on the outside. If someone sends to a domain who publishes the policy for inbound inspection as a default and they don't permit access or the receiver doesn't like the domain where the email comes from it then the receiver can reject or drop the email. We will call that out in the security considerations. 

Trevor

-----Original Message-----
From: plasma-bounces@ietf.org [mailto:plasma-bounces@ietf.org] On Behalf Of Fitch, Scott C
Sent: Saturday, August 06, 2011 2:39 PM
To: 'plasma@ietf.org'
Subject: Re: [plasma] Security Boundary Inspection - outgoing messages

I think it makes sense to include in the same section as inbound inspection. Though plasma makes outbound inspection much easier over traditional s/mime, it doesn't help inbound spam filtering. Yes, partner enterprises or large ISPs may (pre)authorize messages goings to each other (which helps with malware proliferation). But I doubt that any spammer would be so kind. So we'll still have to rely heavily on other techniques for inbound messages. 

------
Sent from my BlackBerry

----- Original Message -----
From: Jim Schaad [mailto:jimsch@nwlink.com]
Sent: Saturday, August 06, 2011 01:59 AM
To: Fitch, Scott C; plasma@ietf.org <plasma@ietf.org>
Subject: EXTERNAL: RE: [plasma] Security Boundary Inspection - outgoing messages

Do you feel this needs to be a separate scenario, or can we just include it as part of the current e-mail pipelineing section and discussion transitions across boundaries in both directionsl

Jim


> -----Original Message-----
> From: plasma-bounces@ietf.org [mailto:plasma-bounces@ietf.org] On 
> Behalf Of Fitch, Scott C
> Sent: Thursday, August 04, 2011 1:38 PM
> To: plasma@ietf.org
> Subject: [plasma] Security Boundary Inspection - outgoing messages
> 
> A scenario that is missing from the v02 of the document is the ability 
> to
scan
> outgoing messages. Plasma offers a huge improvement over current 
> S/MIME implementations. This capability is definitely of interest to
organizations who
> want to know what information is leaving their security boundaries via
email.
> I recommend adding it as an additional scenario to the document and 
> would be willing to help write it up if needed.
> 
> 
> Scott Fitch
> Cyber Architect
> Lockheed Martin Enterprise Business Services
> 
> 
> _______________________________________________
> plasma mailing list
> plasma@ietf.org
> https://www.ietf.org/mailman/listinfo/plasma


_______________________________________________
plasma mailing list
plasma@ietf.org
https://www.ietf.org/mailman/listinfo/plasma

v2.8.7 | Report a Bug | By Email