Re: [Secret] BoF Follow-up on charter definition
Michael Richardson <mcr+ietf@sandelman.ca> Wed, 16 February 2022 21:37 UTC
Return-Path: <mcr+ietf@sandelman.ca>
X-Original-To: secret@ietfa.amsl.com
Delivered-To: secret@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B40F63A16C5 for <secret@ietfa.amsl.com>; Wed, 16 Feb 2022 13:37:44 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.1
X-Spam-Level:
X-Spam-Status: No, score=-7.1 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=sandelman.ca
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RjL3zGJ6Yn-t for <secret@ietfa.amsl.com>; Wed, 16 Feb 2022 13:37:40 -0800 (PST)
Received: from tuna.sandelman.ca (tuna.sandelman.ca [IPv6:2607:f0b0:f:3:216:3eff:fe7c:d1f3]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5694F3A16C1 for <secret@ietf.org>; Wed, 16 Feb 2022 13:37:38 -0800 (PST)
Received: from localhost (localhost [127.0.0.1]) by tuna.sandelman.ca (Postfix) with ESMTP id 1665538A51; Wed, 16 Feb 2022 16:45:45 -0500 (EST)
Received: from tuna.sandelman.ca ([127.0.0.1]) by localhost (localhost [127.0.0.1]) (amavisd-new, port 10024) with LMTP id PqOaCPpc9kKN; Wed, 16 Feb 2022 16:45:44 -0500 (EST)
Received: from sandelman.ca (obiwan.sandelman.ca [209.87.249.21]) by tuna.sandelman.ca (Postfix) with ESMTP id 2DEBB389EB; Wed, 16 Feb 2022 16:45:44 -0500 (EST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=sandelman.ca; s=mail; t=1645047944; bh=sW8HIk+e9rLjQTUzcn07v1pV+jWze9afP6A4wb+ac0M=; h=From:To:Subject:In-Reply-To:References:Date:From; b=t2yb+XWi/C8KSS5rNKy57vRPKBr+Y0n3LK+3ZcMhlb4kMRfRSOAcG/qkCMFjjwFmH UvdcKRwLtoY8n/Y39lebABBQJVgzC334pcNldlCfuulNik0SYzwViH5QBFZ7iCFtsO y7akXIBPeri59P3uR/uf3qSq/ZgTZVhSrtckezEbYKwP81E75NxgSKievjah/t7s79 vxfM9d/FeyHZ+h1y+MRopwn+eVmqsBNOVjc/xqvYFW6mUkXenDiGiEHMA+jUNTw926 QN+EYDdob3t+f7EL/fTCI9mAaKb6H/piNc05ZYmSFNIfDn5T+o4pJrKflzhy39LnPU lyy4yaLZztY/A==
Received: from localhost (localhost [IPv6:::1]) by sandelman.ca (Postfix) with ESMTP id 6A369343; Wed, 16 Feb 2022 16:37:35 -0500 (EST)
From: Michael Richardson <mcr+ietf@sandelman.ca>
To: Matthew Byington <mbyington=40apple.com@dmarc.ietf.org>, secret@ietf.org
In-Reply-To: <7C07A6C7-15CE-442D-87CD-3D8825E11313@apple.com>
References: <7C07A6C7-15CE-442D-87CD-3D8825E11313@apple.com>
X-Mailer: MH-E 8.6+git; nmh 1.7+dev; GNU Emacs 26.1
X-Face: $\n1pF)h^`}$H>Hk{L"x@)JS7<%Az}5RyS@k9X%29-lHB$Ti.V>2bi.~ehC0; <'$9xN5Ub# z!G,p`nR&p7Fz@^UXIn156S8.~^@MJ*mMsD7=QFeq%AL4m<nPbLgmtKK-5dC@#:k
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-="; micalg="pgp-sha512"; protocol="application/pgp-signature"
Date: Wed, 16 Feb 2022 16:37:35 -0500
Message-ID: <2818.1645047455@localhost>
Archived-At: <https://mailarchive.ietf.org/arch/msg/secret/ScfO4PLjHWZlBuUjcHmEKiSwoo0>
Subject: Re: [Secret] BoF Follow-up on charter definition
X-BeenThere: secret@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Secure Credential Transfer <secret.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secret>, <mailto:secret-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secret/>
List-Post: <mailto:secret@ietf.org>
List-Help: <mailto:secret-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secret>, <mailto:secret-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 16 Feb 2022 21:37:45 -0000
Matthew Byington <mbyington=40apple.com@dmarc.ietf.org> wrote: > There are many situations in which it is desirable to share a digital > credential with another person. For example, you may want to provide > access to your vehicle to a friend or a family member. You may also > want to provide access to your home to your cat sitter. Or, you may > want to share a hotel key with your spouse. Today, no such standardized > method exists in a cross-platform, multidisciplinary capacity. I still have no idea what it is that we need to share. It still reads like it's a private **key** to me. I would love to be able to share a digital hotel key without the hotel's permission, but I just don't believe that is a real use case today. For the car, I fear that the car maker is also involved. I know of no home locks that offer any kind of delegated authorization that does not require a cloud interface, but I'd sure like a counter-example. But, if we are dealing with an access/authorization that provides for delegation, then the digital statement is some kind of document signed by a key. It needs privacy because of eavesdroppers, but not because there is a private key involved. I think it is critical that the charter include some references. Maybe it would start with: "When digital credential systems such as XXX, YYY, ZZZ are used to provide authorization to devices like home door locks, hotel door locks, or ignition systems for vehicles, there are often situations where it is useful to be able to delegate authorization to another person." While it is claimed that we don't need to know anything about the systems involved, and reading about the mailboxes, etc. I can see how that appears to be the case. But reading those details re-inforces for me, the view that we are sharing a private key. This is one reason I don't think we can start with the proposed ID. (And as Klensin said: I'm not quite sure why SMTP + SMIME wouldn't be good enough) -- Michael Richardson <mcr+IETF@sandelman.ca> . o O ( IPv6 IøT consulting ) Sandelman Software Works Inc, Ottawa and Worldwide
- [Secret] BoF Follow-up on charter definition Matthew Byington
- Re: [Secret] BoF Follow-up on charter definition Michael Richardson