IETF Logo Mail Archive

Re (subtopic): Four corner model

"Anders Rundgren" <anders.rundgren@telia.com> Tue, 19 August 2003 07:24 UTC

Received: from above.proper.com (above.proper.com [208.184.76.39]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id DAA00234 for <smime-archive@lists.ietf.org>; Tue, 19 Aug 2003 03:24:04 -0400 (EDT)
Received: from above.proper.com (localhost [127.0.0.1]) by above.proper.com (8.12.9/8.12.8) with ESMTP id h7J6qGqt053213 for <ietf-smime-bks@above.proper.com>; Mon, 18 Aug 2003 23:52:16 -0700 (PDT) (envelope-from owner-ietf-smime@mail.imc.org)
Received: (from majordom@localhost) by above.proper.com (8.12.9/8.12.9/Submit) id h7J6qGnD053208 for ietf-smime-bks; Mon, 18 Aug 2003 23:52:16 -0700 (PDT)
X-Authentication-Warning: above.proper.com: majordom set sender to owner-ietf-smime@mail.imc.org using -f
Received: from smtp4.hy.skanova.net (smtp4.hy.skanova.net [195.67.199.133]) by above.proper.com (8.12.9/8.12.8) with ESMTP id h7J6qAqt053201 for <ietf-smime@imc.org>; Mon, 18 Aug 2003 23:52:11 -0700 (PDT) (envelope-from anders.rundgren@telia.com)
Received: from arport (t11o913p25.telia.com [213.64.28.25]) by smtp4.hy.skanova.net (8.12.9/8.12.9) with SMTP id h7J6pvqD024021; Tue, 19 Aug 2003 08:51:58 +0200 (CEST)
Message-ID: <009401c3661e$41d0c980$0500a8c0@arport>
From: Anders Rundgren <anders.rundgren@telia.com>
To: Steve Hole <steve.hole@messagingdirect.com>, Julien Pierre <jpierre@netscape.com>
Cc: ietf-smime@imc.org
References: <3F3DA098.1040008@netscape.com> <3F3C4C43.6010205@netscape.com> <3F3AF421.6060008@netscape.com> <2A1D4C86842EE14CA9BC80474919782E01112FFC@mou1wnexm02.verisign.com> <001301c360ef$41128990$0500a8c0@arport> <EXECMAIL.20030814103028.E@kepler.messagingdirect.com> <EXECMAIL.20030815124859.C1437@kepler.esys.ca> <EXECMAIL.20030818101458.A1101@kepler.esys.ca>
Subject: Re (subtopic): Four corner model
Date: Tue, 19 Aug 2003 08:50:56 +0200
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2800.1106
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106
Sender: owner-ietf-smime@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-smime/mail-archive/>
List-ID: <ietf-smime.imc.org>
List-Unsubscribe: <mailto:ietf-smime-request@imc.org?body=unsubscribe>
Content-Transfer-Encoding: 7bit

Some more on this topic.

Some TTP CAs (read: banks) have modeled their services after
their payment services.  e-governments have signed up such CAs
to supply citizen certificates.    Although I am fully convinced that
banks have an important role to fill in a TTP-based market (as
the on-line banking security requirements and on-line e-government
security requirements, are likely to be very similar), I strongly believe that
the four-corner model where each receiver (a,k.a. relying party)
must have
- a business contract with each trust network
- a unique relying party ID for each trust network
- a proprietary software installation for each trust network 
and pay for each revocation check, is something that governments
should reject.  For more details see:  
http://www.x-obi.com/OBI400/e-government-ID-A.Rundgren.pdf

Another problem I see with this model is that it seems rather impossible
to support secure e-mail between individuals as e-mail packages
cannot easily match the requirements above.

Anders Rundgren
Consultant PKI and secure e-business

v2.43.4 | Report a Bug | By Email | System Status