IETF Logo Mail Archive

Re: [saag] post-X509 cryptographic identities

Michael Richardson <mcr+ietf@sandelman.ca> Fri, 14 February 2020 19:31 UTC

Return-Path: <mcr@sandelman.ca>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 06D2D120B33 for <saag@ietfa.amsl.com>; Fri, 14 Feb 2020 11:31:59 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 2.501
X-Spam-Level: **
X-Spam-Status: No, score=2.501 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, KHOP_HELO_FCRDNS=0.399, RCVD_IN_SBL_CSS=3.335, SPF_HELO_NONE=0.001, SPF_SOFTFAIL=0.665, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id X64DjXWxoSvC for <saag@ietfa.amsl.com>; Fri, 14 Feb 2020 11:31:57 -0800 (PST)
Received: from relay.sandelman.ca (minerva.sandelman.ca [IPv6:2a01:7e00::3d:b000]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 166AE120A3A for <saag@ietf.org>; Fri, 14 Feb 2020 11:31:56 -0800 (PST)
Received: from dooku.sandelman.ca (ip5f5bd773.dynamic.kabel-deutschland.de [95.91.215.115]) by relay.sandelman.ca (Postfix) with ESMTPS id 158241F47F for <saag@ietf.org>; Fri, 14 Feb 2020 19:31:55 +0000 (UTC)
Received: by dooku.sandelman.ca (Postfix, from userid 179) id 6E2691A2B8F; Fri, 14 Feb 2020 20:31:54 +0100 (CET)
From: Michael Richardson <mcr+ietf@sandelman.ca>
To: IETF SAAG <saag@ietf.org>
In-reply-to: <CACsn0cnrZhTpgC9aQgciJjfhGC4VuhV4irYbO3om6c-vsrYnFw@mail.gmail.com>
References: <alpine.DEB.2.20.2002131443470.25433@grey.csi.cam.ac.uk> <20200213171324.GP18021@localhost> <d3d01f1f-5784-da84-1c59-e636d349bd2a@netmagic.com> <20200213175626.GR18021@localhost> <65357327-e2d7-89cc-221e-ed8ac2875048@netmagic.com> <A91F5BD6-BFBA-4BA7-9158-3F41A8F0F7D9@gmail.com> <20200213191952.GS18021@localhost> <9FEBBD2A-3578-436A-92E3-192CADC9FA8B@gmail.com> <20200213205158.GT18021@localhost> <43D1454A-C1DD-4742-A14C-F608F296208C@gmail.com> <20200213213953.GU18021@localhost> <2945E4D6-BFFF-4477-9AB3-24534CC687A0@gmail.com> <2de1f6eb-d0af-73f7-3662-ed4b93368421@netmagic.com> <CACsn0cnrZhTpgC9aQgciJjfhGC4VuhV4irYbO3om6c-vsrYnFw@mail.gmail.com>
Comments: In-reply-to Watson Ladd <watsonbladd@gmail.com> message dated "Fri, 14 Feb 2020 07:33:14 -0800."
X-Mailer: MH-E 8.6; nmh 1.7+dev; GNU Emacs 25.2.1
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-="; micalg="pgp-sha512"; protocol="application/pgp-signature"
Date: Fri, 14 Feb 2020 20:31:54 +0100
Message-ID: <8728.1581708714@dooku>
Archived-At: <https://mailarchive.ietf.org/arch/msg/saag/15dhlEgh6IJoPCM9vsoGZQZv7MQ>
Subject: Re: [saag] post-X509 cryptographic identities
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/saag/>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 14 Feb 2020 19:31:59 -0000

Watson Ladd <watsonbladd@gmail.com> wrote:
    > In this world plenty of economic transactions take place with DNS names
    > as the only identifier. Plenty of people are known by monikers that
    > have nothing to do with any government: Muhammed Ali, Prince, Kirk
    > Douglass, Liberace, etc. The state doesn't determine these: remember
    > "Say my name!"?

Agreed, and those are all, btw, local names.

Those people convince the world to accept them as their name, to enter it
into our personal trusted store.  That we all happen to believe we are each
referring to the same person when say "Prince" just means that they are
effective. (But, an aunt has a dog named "Prince", and I know who is
referring to when she says _Prince_.  It's Mimi's Prince, not AMI's Prince)

So, they don't, in general, register them with some authority who them
imposes it on us.  DNS names are registered with an authority.

-- 
]               Never tell me the odds!                 | ipv6 mesh networks [ 
]   Michael Richardson, Sandelman Software Works        | network architect  [ 
]     mcr@sandelman.ca  http://www.sandelman.ca/        |   ruby on rails    [

v2.23.0 | Report a Bug | By Email