IETF Logo Mail Archive

Re: [saag] Revised version of draft-knodel-e2ee-definition

Christopher Wood <caw@heapingbits.net> Fri, 12 May 2023 16:22 UTC

Return-Path: <caw@heapingbits.net>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 61E50C14CEF9 for <saag@ietfa.amsl.com>; Fri, 12 May 2023 09:22:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.797
X-Spam-Level:
X-Spam-Status: No, score=-2.797 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=heapingbits.net header.b="n+Fdmm6e"; dkim=pass (2048-bit key) header.d=messagingengine.com header.b="THw+LQ3+"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fgA6mlcCAH8V for <saag@ietfa.amsl.com>; Fri, 12 May 2023 09:22:51 -0700 (PDT)
Received: from wout5-smtp.messagingengine.com (wout5-smtp.messagingengine.com [64.147.123.21]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B19E6C14F74E for <saag@ietf.org>; Fri, 12 May 2023 09:22:51 -0700 (PDT)
Received: from compute4.internal (compute4.nyi.internal [10.202.2.44]) by mailout.west.internal (Postfix) with ESMTP id 4D341320093E; Fri, 12 May 2023 12:22:49 -0400 (EDT)
Received: from mailfrontend1 ([10.202.2.162]) by compute4.internal (MEProxy); Fri, 12 May 2023 12:22:49 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=heapingbits.net; h=cc:cc:content-transfer-encoding:content-type:content-type :date:date:from:from:in-reply-to:in-reply-to:message-id :mime-version:references:reply-to:sender:subject:subject:to:to; s=fm1; t=1683908568; x=1683994968; bh=cM9MMi9Ih+eJ4vcJBIoO3U/zN PB+u2+w0b9u0nbVQao=; b=n+Fdmm6emqCad3bHc+dL/mfFfc/00a+GqAeS+SVOv z0gZ9CF8mcsCgQcP1r3GJEUpzqVwKkRVIBAmCaU7ImDWo8tAs5CpuRC2fwrcrLot 7w188QsKOxDxI/NRq6P84J73zyS8jhnRGM3/8grOYj+bX4j/zlc7m7UurRcVw5vk iGbINBRDEs+DZWAU3HN7WBsOKiAZ6I7acF+iI7Ymiriyk5DPmnzgQ7et/HgmhQn2 VsTOyjwpXD4GB7qyGVmU461evxNFVWdRJbY4KZolFy9pRePAgMmALtBvFt/FDugx ivLNMRgjR9vcWp5I+dJ85GW63+VWSQi5YL1XBWUBmrCAQ==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:cc:content-transfer-encoding :content-type:content-type:date:date:feedback-id:feedback-id :from:from:in-reply-to:in-reply-to:message-id:mime-version :references:reply-to:sender:subject:subject:to:to:x-me-proxy :x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm1; t= 1683908568; x=1683994968; bh=cM9MMi9Ih+eJ4vcJBIoO3U/zNPB+u2+w0b9 u0nbVQao=; b=THw+LQ3+mVBLDEpZBjFMwpuWM10vwTGmvp48ZKEnD59RQ5FBGvD GI1kIp7Efv1jgewTh/OhMUeeIIbaDCJ96lWclPRdh0tHjjlCgMVbwaiuKJoCmzvt P/IdV2ZVNcHBo7IzNKsdMnE8vVNMvkLNErJKmtMbjjs9iWGo/O+0XEhSUVqNGGiU /JgKoUmsrel8YkgsOahC4henjyItxkQDjRL6zqi5FgVEtc581muAiXzmJqsuPcU9 sTIbRBsBjpc1kPzqHIXoyb0iEYMp2L73OWONpdSb3emJcwJBfGrxs8VBpMQC3E4T jxUkgME/EfFwEnAoI7srIfX7IlOT+GotG8Q==
X-ME-Sender: <xms:2GdeZLUNCXXEiWCtVhlBhUBwDxr0QEAU8dMsTGHTk4NhKHMFAp9IGw> <xme:2GdeZDmQ_dcaETYhGPalUzKmtNc0iTY0zOMIYQRjONcwEw5RCKAphkWYPMLdV8WB5 uWvX97Wz7njIUSCA0U>
X-ME-Received: <xmr:2GdeZHb2dSCccETRXI-XdsDj3m2rrintAjeUnQNTJ7W_Tj23vIU1mltVhK-Nh4ODs2lk>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvhedrfeehtddguddttdcutefuodetggdotefrod ftvfcurfhrohhfihhlvgemucfhrghsthforghilhdpqfgfvfdpuffrtefokffrpgfnqfgh necuuegrihhlohhuthemuceftddtnecusecvtfgvtghiphhivghnthhsucdlqddutddtmd enucfjughrpegtggfuhfgjffevgffkfhfvofesthhqmhdthhdtjeenucfhrhhomhepvehh rhhishhtohhphhgvrhcuhghoohguuceotggrfieshhgvrghpihhnghgsihhtshdrnhgvth eqnecuggftrfgrthhtvghrnhepieelfffgfffgkeefffduuddtffekteetvefhvdevleet vddufeehfeeuffeluedvnecuvehluhhsthgvrhfuihiivgeptdenucfrrghrrghmpehmrg hilhhfrhhomheptggrfieshhgvrghpihhnghgsihhtshdrnhgvth
X-ME-Proxy: <xmx:2GdeZGVgU5u_fRfjLSoxnYMAP8_5XA5uohgbPXFT9QOqdoW_UVPeKg> <xmx:2GdeZFmNerqa8zBOSL5SOiGBfmExSjTGIaWE_nXdCgMjrO58QuKYmw> <xmx:2GdeZDfBHn4wHrMsH5fAqvShP1BJcK9J-5rMYwn-oHltLZiVyH1BmA> <xmx:2GdeZFszjpPOEJtbJAXFejyY1_5Vi2JHO3y8KpRlQQmPBG3EMEKLvw>
Feedback-ID: i2f494406:Fastmail
Received: by mail.messagingengine.com (Postfix) with ESMTPA; Fri, 12 May 2023 12:22:48 -0400 (EDT)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3696.120.41.1.1\))
From: Christopher Wood <caw@heapingbits.net>
In-Reply-To: <CABcZeBM83kL8uoc1TPme1Pw8So6tdpJGAkNbPZp4acTpupQ9Sw@mail.gmail.com>
Date: Fri, 12 May 2023 09:22:43 -0700
Cc: Mallory Knodel <mknodel@cdt.org>, IETF SAAG <saag@ietf.org>
Content-Transfer-Encoding: quoted-printable
Message-Id: <F64497C4-E98C-4E4D-B369-60C56D9C326C@heapingbits.net>
References: <CAGL5yWb=5MomKHwNKiEDph3kjrcbvonaL2ZEytGpKeNk7A87sQ@mail.gmail.com> <CABcZeBOzzOU-HDb2hmzcCipgiVqB6gACQMfo9GJsTT7UNw+eOA@mail.gmail.com> <CAGL5yWZsFnV1eSrrT2-7yh=0VhwqyQJL-RaEU33M2P9S9_KF=g@mail.gmail.com> <CABcZeBMKx6pPwUaXy05dP9nOvNST0_zX46ChqvApKC__HL9ELA@mail.gmail.com> <17a053ac-2b91-7fa0-ef5a-01fde9d2599f@cdt.org> <7b26d659-07fb-a4ba-8052-c9c22e4f4b44@lear.ch> <CABcZeBM5Rm2SWhkcW88H0UGSikFDZ4Xtdkj-vmWTKh4Rk46Gig@mail.gmail.com> <6b31ada0-c302-08ae-a6d2-584b2bd601a8@cdt.org> <CABcZeBM83kL8uoc1TPme1Pw8So6tdpJGAkNbPZp4acTpupQ9Sw@mail.gmail.com>
To: Eric Rescorla <ekr@rtfm.com>
X-Mailer: Apple Mail (2.3696.120.41.1.1)
Archived-At: <https://mailarchive.ietf.org/arch/msg/saag/0zuAtu9u4QNtbnpHFfSUc5LoqXw>
Subject: Re: [saag] Revised version of draft-knodel-e2ee-definition
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/saag/>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 12 May 2023 16:22:56 -0000

> On May 12, 2023, at 8:17 AM, Eric Rescorla <ekr@rtfm.com> wrote:
> 
> 
> 
> On Fri, May 12, 2023 at 7:50 AM Mallory Knodel <mknodel@cdt.org> wrote:
> Hi Eric,
> 
> On 5/12/23 10:28 AM, Eric Rescorla wrote:
>> 
>> I think the analysis needs to start with the purpose of this
>> document. Is it intended to assist the IETF in designing protocol
>> specifications? If so, how?  If intended for some other audience, then
>> who? Once there is agreement on that question, then we can discuss the
>> shape of the document.
>> 
> The purpose is to define e2ee and as multiple people have said on this list, there is not agreement. It's to make clear what we mean when we talk about e2ee.
> 
> What IETF purpose does it serve to have such a definition? In what contexts
> would we refer to it? In my experience designing protocols, while we may informally
> talk about E2EE to motivate the work we are doing (e.g,, when comparing
> media that is encrypted to an MCU with DTLS-SRTP to media that is
> encrypted to the endpoints with MLS-SFrame), when we actually design the
> protocol we try to use more formal notions. Could you perhaps give me an
> example of a setting in the IETF in which referring to this document would
> help us make progress?
>  
> Are you suggesting that the analysis go into the document text? Or that we have a group discussion here about why we wrote it? Or that we have a group discussion about something else?
> 
> What I am suggesting is that there be group agreement on the purpose of
> this work.
> 
> 
>> In terms of process, I think it should be clear at this point that
>> this document is unsuitable for AD sponsorship. That really only works
>> for documents which are largely finished, which is not the case
>> here. If this document is to proceed, it really needs to be in a WG.
>> This suggests that the next step is SECDISPATCH to determine whether
>> or not the IETF wants to work on this problem.
>> 
> On the contrary, the authors have been able to make relevant changes to the text based on feedback in this process so far. We see a way forward with all of the feedback and we'll have a new version out soon. Most recently I've asked about the systems question because that, too, is pretty straightforward to change. Welcome your thoughts on that since you raised them.
> 
> Well, I think this actually is doing a good job of demonstrating my point, which is
> that the dynamic is presently one of people commenting and the authors deciding
> what changes to make in response to that. That's very different from a WG setting
> in which the WG is responsible for the content. As I said, that's maybe fine in
> cases where the document is largely finished, but that's not the case here.

+1. I support Ekr’s suggestion of bringing this to SECDISPATCH to determine if (a) there is a place in the IETF to work on this definition and then (b) lean on the community to establish consensus around this definition. Given the importance of this topic, I think it’s prudent that we strive to build something that has consensus, even if that means taking a little bit longer to get something concrete.

Best,
Chris

v2.23.0 | Report a Bug | By Email