IETF Logo Mail Archive

Re: [saag] Ubiquitous Encryption: spam filtering

Phillip Hallam-Baker <phill@hallambaker.com> Tue, 30 June 2015 19:54 UTC

Return-Path: <hallam@gmail.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3E88B1B2C8D for <saag@ietfa.amsl.com>; Tue, 30 Jun 2015 12:54:35 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.277
X-Spam-Level:
X-Spam-Status: No, score=-1.277 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FM_FORGED_GMAIL=0.622, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jg4arzQWn0Sa for <saag@ietfa.amsl.com>; Tue, 30 Jun 2015 12:54:33 -0700 (PDT)
Received: from mail-la0-x233.google.com (mail-la0-x233.google.com [IPv6:2a00:1450:4010:c03::233]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3B4FC1B2B29 for <saag@ietf.org>; Tue, 30 Jun 2015 12:54:33 -0700 (PDT)
Received: by lagh6 with SMTP id h6so26972938lag.2 for <saag@ietf.org>; Tue, 30 Jun 2015 12:54:31 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date:message-id:subject :from:to:cc:content-type; bh=MBxnZeuChYgV9AeCl0WM5DUx/fDb8iu5Hoblcab5Eh4=; b=lUvdG8jRQnlRPCzUEq8FyARN+TRqQ36C8DZvhvpCtwYeuT27ahNdNH72UfotZepjgS lxwDv55eFafEmlHYQnh0+4ihz3pbnXTkO2eHiAxieIVSg4C2tw9Sfbw2RpY5xCRh0EAB uz63azLMoaGeOa226+B+h4whXWqDqn8LslHgg4eCszQow+/DFdirLPObRVSh8qFcHlZE oAuQJwXCiu8T0/k/b3QAk4ccJto3U0SaaZuiUXjJ6BwyZq8CbkyudHeAps6nV276OO/g FAjsFs48pH3xnSL/pbPV+VuzW90kLN+AQZSUnK9WpSUEdqh7fE4jaiU9izBdQVtSB6bE NSmA==
MIME-Version: 1.0
X-Received: by 10.112.164.35 with SMTP id yn3mr15984220lbb.91.1435694071266; Tue, 30 Jun 2015 12:54:31 -0700 (PDT)
Sender: hallam@gmail.com
Received: by 10.112.203.163 with HTTP; Tue, 30 Jun 2015 12:54:31 -0700 (PDT)
In-Reply-To: <559236DF.7080203@bogus.com>
References: <20150623151902.89304.qmail@ary.lan> <CAMm+LwjG7=r1B5J2P9WNpEefs9kC+b9ZLM+Q71-KJ=3jb6Gq_Q@mail.gmail.com> <559236DF.7080203@bogus.com>
Date: Tue, 30 Jun 2015 15:54:31 -0400
X-Google-Sender-Auth: 8m4-Ml6LbCFsz_lFm-XpSkacnc8
Message-ID: <CAMm+Lwhcx-AGo_T1E4cjNoAP9n4xnGweGebq2z4cHRpWBNopTA@mail.gmail.com>
From: Phillip Hallam-Baker <phill@hallambaker.com>
To: joel jaeggli <joelja@bogus.com>
Content-Type: multipart/alternative; boundary="001a11c335301fc7ba0519c19374"
Archived-At: <http://mailarchive.ietf.org/arch/msg/saag/FYxZAxNQSLLoJRN39S-YZe_b8rI>
Cc: "saag@ietf.org" <saag@ietf.org>
Subject: Re: [saag] Ubiquitous Encryption: spam filtering
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/saag/>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 30 Jun 2015 19:54:35 -0000

On Tue, Jun 30, 2015 at 2:27 AM, joel jaeggli <joelja@bogus.com> wrote:

> On 6/29/15 8:13 PM, Phillip Hallam-Baker wrote:
> >
> >
> > On Tue, Jun 23, 2015 at 11:19 AM, John Levine <johnl@taugh.com
> > <mailto:johnl@taugh.com>> wrote:
> >
> >     I can't find in the archives whether the ubiquitous encryption
> >     discussion has looked at the knotty issues of spam filtering.
> >
> >     It's a really hard problem -- filtering is essential to keep mail
> >     usable, both due to the sheer volume of the spam and the need to keep
> >     phishing and malware away from recipients.  You can do some filtering
> >     on the envelope, but there's no substitute for looking at the
> contents
> >     of the message.
> >
> >     All of the middlebox issues apply, it's much easier to do the
> >     filtering on a large shared server than at endpoints.  Partly that's
> >     because the endpoints often have limited bandwidth and compute power
> >     (think phones) and partly it's because effective filtering needs to
> >     consult shared frequently updated lists of malware signatures and
> >     malicious urls.
> >
> >
> > I don't think it is actually much of a problem in practice. People just
> > have to be prepared to accept that they probably don't want end-to-end
> > encrypted mail from people they don't know. Once that is accepted, the
> > solutions are fairly straightforward, the publicly visible email
> > encryption key is to the spam filter, after a reply send an end to end
> > key...
> >
> > Main constraint is that you don't want to accept end-to-end encrypted
> > email unless it is signed by someone you know. So the endy mail problem
> > becomes an introduction problem.
>
> The fact that parties that are known to each other have not in general
> been mutually authenticated is a, if not the, significant conduit of
> phishing.


The first last and only reason phishing is possible is that we use
authentication credentials that we expect people to keep in their head,
never write down and only ever give them to people who are trustworthy.

Needless to say, the result has been a fiasco.

If a tenth the amount of whining that goes on complaining about the
occasional failures of the part of the Web security infrastructure that
(mostly) works had gone into avoiding relying on usernames and passwords
thirty years after crack.

v2.23.0 | Report a Bug | By Email