IETF Logo Mail Archive

Re: [saag] Scope of draft-knodel-e2ee-definition

Mallory Knodel <mknodel@cdt.org> Fri, 12 May 2023 17:51 UTC

Return-Path: <mknodel@cdt.org>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BF047C1524A3 for <saag@ietfa.amsl.com>; Fri, 12 May 2023 10:51:03 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, NICE_REPLY_A=-0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cdt.org
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id R_DhzKxdfxyG for <saag@ietfa.amsl.com>; Fri, 12 May 2023 10:51:00 -0700 (PDT)
Received: from mail-pl1-x630.google.com (mail-pl1-x630.google.com [IPv6:2607:f8b0:4864:20::630]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 402F4C1524DB for <saag@ietf.org>; Fri, 12 May 2023 10:51:00 -0700 (PDT)
Received: by mail-pl1-x630.google.com with SMTP id d9443c01a7336-1adc913094aso21504625ad.0 for <saag@ietf.org>; Fri, 12 May 2023 10:51:00 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cdt.org; s=google; t=1683913859; x=1686505859; h=in-reply-to:from:references:cc:to:content-language:subject :user-agent:mime-version:date:message-id:from:to:cc:subject:date :message-id:reply-to; bh=5k9weip0yxsS2Q3szZ9osOfvugcMyzPguxDGWxu66/8=; b=eD3ql9aAxCRAZTECXw/uS/fC+7g1dp3pQ+YF7nbvcSj9Wn23WQv0CQEgZKUNsVST6u wvIMSs6vRXv7J0wio6e1HB/QkAGf2mYH5+8KMAEcz/SA7GNvFG4aCJoUDR9MZtdBOpF0 RKY3rgofS6hZ5+AxWigfCa+oZXVfns8fvRvcQ=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20221208; t=1683913859; x=1686505859; h=in-reply-to:from:references:cc:to:content-language:subject :user-agent:mime-version:date:message-id:x-gm-message-state:from:to :cc:subject:date:message-id:reply-to; bh=5k9weip0yxsS2Q3szZ9osOfvugcMyzPguxDGWxu66/8=; b=SaJoogDnQYVfbK7DjA7pOEtsBxRWfDaPu4336kMnHKZeZ4WYNIFSYNknG6mEeQMN6Q ZfNVeGc2P2RPggE9E94pZxz0SxAuW0HpY5mGF8lBqrp8qpGDIAa6UYmUEvXe5ueRrFr+ iiugXDYlLJGfj97rOSD5WVkjm499wdH+N2pO44VAlWapLmvrLjm0uq82ayWcKuSUr6ky NRyUMcHVOYdw9xmzeOZqECWIF9fLcFx9ZIdhZITNu0/OKW1fmhEq7B6oTlyVho2s1VgA vhuracw4r5dIdrOhAVEfckpILP+IjKd9auzEn4FHnxaU4AlAJGIjuq2ojKSqp4Xx1d+o kMlw==
X-Gm-Message-State: AC+VfDwmLBUSDpa3VLcQX2IZAC3d/lOmrVVoB5/1f05uPZeXV3/WsZ+j XCgE3owc5n4/1abB+gjPCIAdYw==
X-Google-Smtp-Source: ACHHUZ6Ba+QpztJyTX2+IqfQiqPZl/UfLTnq8n6Ymtk3Yt5RgWlXE3WsBHUIaQfMALYWI28XZIJu2w==
X-Received: by 2002:a17:902:c1c4:b0:1a8:1320:133 with SMTP id c4-20020a170902c1c400b001a813200133mr23109641plc.51.1683913859430; Fri, 12 May 2023 10:50:59 -0700 (PDT)
Received: from [172.20.4.237] ([134.204.1.199]) by smtp.gmail.com with ESMTPSA id s23-20020a170902989700b001a96269e12csm8201273plp.51.2023.05.12.10.50.58 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Fri, 12 May 2023 10:50:58 -0700 (PDT)
Content-Type: multipart/alternative; boundary="------------r0n09hJteAHSNSOb3QxMyggN"
Message-ID: <435847cc-7273-333f-0a38-2954bacd8a82@cdt.org>
Date: Fri, 12 May 2023 13:50:57 -0400
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:102.0) Gecko/20100101 Thunderbird/102.10.0
Content-Language: en-US
To: "Black, David" <David.Black=40dell.com@dmarc.ietf.org>, Paul Wouters <paul.wouters=40aiven.io@dmarc.ietf.org>
Cc: IETF SAAG <saag@ietf.org>
References: <CAGL5yWb=5MomKHwNKiEDph3kjrcbvonaL2ZEytGpKeNk7A87sQ@mail.gmail.com> <CABcZeBOzzOU-HDb2hmzcCipgiVqB6gACQMfo9GJsTT7UNw+eOA@mail.gmail.com> <CAGL5yWZsFnV1eSrrT2-7yh=0VhwqyQJL-RaEU33M2P9S9_KF=g@mail.gmail.com> <MN2PR19MB4045B8827B359AEDACEDBD7483649@MN2PR19MB4045.namprd19.prod.outlook.com>
From: Mallory Knodel <mknodel@cdt.org>
In-Reply-To: <MN2PR19MB4045B8827B359AEDACEDBD7483649@MN2PR19MB4045.namprd19.prod.outlook.com>
Archived-At: <https://mailarchive.ietf.org/arch/msg/saag/LqnivfRQzPGvJqkQnsm4WinsHRU>
Subject: Re: [saag] Scope of draft-knodel-e2ee-definition
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/saag/>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 12 May 2023 17:51:03 -0000

On 4/24/23 10:29 PM, Black, David wrote:

> Picking up on a response to EKR that it looks like he didn’t follow up on:
>
> >> The text here seems extremely focused on Instant Messaging-type
> >> applications and doesn't fit well with other protocols, even when they
> >> provide end-to-end encryption. Either it should be scoped down to
> >> Messaging or it should be adjusted to be more broadly applicable.
>
> >
>
> > What other protocols does it not fit with? Wouldn't the same apply to
>
> > video conferencing, audio streams, file exchange protocols, etc? Do
>
> > you have an example of a protocol that falls outside the scope of
>
> > this document?
>
> The draft generally assumes that “users” are accessing “messages” that 
> are transmitted via the protocol, which is a scope-limiting assumption.
>
Yes-- messages + video + audio + media + email.

-M



> A more specific concern is that the Availability, Deniability and 
> Disappearing messages paragraphs in 3.1.2 effectively limit the scope 
> of this draft to a space that includes instant messaging applications 
> and the like:
>
>   * The Availability paragraph is problematic for most infrastructure
>     protocols, including “file exchange protocols” and infrastructure
>     management protocols, because it doesn’t seriously address
>     Availability of the communication service involved.  If I want to
>     exchange (transfer) a file, I care about availability of the
>     service that performs that transfer, not just the end-system
>     availability of the file after the transfer.
>   * The Deniability paragraph is wrong for a plethora of protocols,
>     starting with S/MIME for email and certificate-authenticated TLS,
>     both of which have non-repudiation properties.  It’s likewise
>     wrong for end-to-end encryption of stored data.  As I’ve pointed
>     out previously, there are many protocols for which
>     Non-Repudiation, the opposite of Deniability, is wanted.
>   * The Disappearing messages paragraph is wrong for protocols that
>     don’t use messages and don’t want data to disappear – the latter
>     is true of most storage protocols, including “file exchange
>     protocols.”
>
> Mallory’s prior suggestion that this draft is about protocols that 
> transfer “content” may be a step in the right direction.  Another 
> suggestion would be to describe the space of protocols for which the 
> Availability, Deniability and Disappearing messages paragraphs are 
> correct, focusing on protocols with “users” who want to communicate 
> “messages” …
>
> Thanks, --David
>
>
> _______________________________________________
> saag mailing list
> saag@ietf.org
> https://www.ietf.org/mailman/listinfo/saag

-- 
Mallory Knodel
CTO, Center for Democracy and Technology
gpg fingerprint :: E3EB 63E0 65A3 B240 BCD9 B071 0C32 A271 BD3C C780

v2.23.0 | Report a Bug | By Email