Re: [lamps] smile.p7m as attachments in MUA

Pavan Kumar Dinesh <pdinesh@gmu.edu> Wed, 29 June 2022 17:53 UTC

Return-Path: <pdinesh@gmu.edu>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4A373C14F737 for <spasm@ietfa.amsl.com>; Wed, 29 Jun 2022 10:53:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.905
X-Spam-Level:
X-Spam-Status: No, score=-1.905 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=gmuedu.onmicrosoft.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JTVx8HEFhI_N for <spasm@ietfa.amsl.com>; Wed, 29 Jun 2022 10:53:36 -0700 (PDT)
Received: from NAM10-BN7-obe.outbound.protection.outlook.com (mail-bn7nam10on2049.outbound.protection.outlook.com [40.107.92.49]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7063AC14F744 for <spasm@ietf.org>; Wed, 29 Jun 2022 10:53:36 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=en2Rp2MUuXEAOHY+ZalNSCBH6NO4b2abOpTyjwyglT9O6IefBo2SZkyAON67AiWm337j0hnvtYBuDwqig37bpVjyeDN57PPwsro08+Ubiqz/YYOXjuBUHI09FMak5XS1GWHGZ1R6OtIK2K4Z3mEDhuFB0BOX7RNaRsYkJPf5ybvxMCZGfaACI+CbFH8PamyAc+/rJe5HIhdymybvt86Pw7RZjGQZ7I+5iVG/A4rrzEsPHQLgtsPlKD7iJwWU1YKSFkibpVZhV1+5ls4SuJtN82XJ1M/pc6V4zh77QXHLE9Htl3ytP8yavATi5bUXMSJ2AF59iJLPlNxTJNZvrRaq3w==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=m3JHybdpGXanX04Idg9+9bY3TlaKjiJYUrDqrANH4U4=; b=gbBER0bILNOyAtoLWiDaMe1X5qtpA9Zb/3Wi92SVpISr0gOPSHZFKgnMSznh/aksIPmpOfWMFxgIu0w9x6sbf5eeFJQjKLYuB8OwuYMLO53FhLNxMmDW/06lOpBF4tL/CBFE+4Y/TQDua+/ni4TYmrE7SRL8uGgWlpErxiTYfPJfOikaLbvFEJMkb+nrh1vIdcSt/uJbxnBjGAcPi5h/G5PcIzJKDf1jl1si9K3gB1BVJElqo1kyKRTITCFxiFnZMF9cB8AJM5gvHssCOF3uI7oFagUxMQGvfsuGsIUnxn1X/Lcc1EPcFYbMJcSASvxKnFMTQRQ+8KVaFF99BcfKDA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=gmu.edu; dmarc=pass action=none header.from=gmu.edu; dkim=pass header.d=gmu.edu; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmuedu.onmicrosoft.com; s=selector2-gmuedu-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=m3JHybdpGXanX04Idg9+9bY3TlaKjiJYUrDqrANH4U4=; b=y1qcw7Cvh//vfs1V89S9O4RBHDknNIURopjchffrtYqY26gn2H7jHjkZfIFj/1mFpwhiYdMWfJdVB6f1/b+RVVrF73exu8XdwqXwiCnlLIVyqQyKqmuGcbfDe9zOR7ZD5IjqYWEj00woDzbBgj3inKmecA+DoT7nptfb5zOl64s=
Received: from SN6PR05MB5247.namprd05.prod.outlook.com (2603:10b6:805:e0::32) by BL0PR05MB4692.namprd05.prod.outlook.com (2603:10b6:208:29::12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5395.14; Wed, 29 Jun 2022 17:53:32 +0000
Received: from SN6PR05MB5247.namprd05.prod.outlook.com ([fe80::95b1:5d01:9a1d:1fc]) by SN6PR05MB5247.namprd05.prod.outlook.com ([fe80::95b1:5d01:9a1d:1fc%5]) with mapi id 15.20.5395.013; Wed, 29 Jun 2022 17:53:31 +0000
From: Pavan Kumar Dinesh <pdinesh@gmu.edu>
To: Russ Housley <housley@vigilsec.com>
CC: LAMPS <spasm@ietf.org>, Tawhidul Islam <tislam20@gmu.edu>, Eric Osterweil <eoster@gmu.edu>
Thread-Topic: [lamps] smile.p7m as attachments in MUA
Thread-Index: AQHYgyC/Zos9UXX7wU2YU/KKvwymeK1VTE8AgBFui3M=
Date: Wed, 29 Jun 2022 17:53:31 +0000
Message-ID: <SN6PR05MB5247000A949AB18ACD8C03F3B2BB9@SN6PR05MB5247.namprd05.prod.outlook.com>
References: <SN6PR05MB524761A318CF3A9D5E2858A1B2AE9@SN6PR05MB5247.namprd05.prod.outlook.com> <B6A50E7C-4D0B-47F8-AB41-6B742AC9C755@vigilsec.com>
In-Reply-To: <B6A50E7C-4D0B-47F8-AB41-6B742AC9C755@vigilsec.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=gmu.edu;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 544dd209-3ad1-4dc0-ec99-08da59f847d8
x-ms-traffictypediagnostic: BL0PR05MB4692:EE_
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:SN6PR05MB5247.namprd05.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230016)(4636009)(346002)(136003)(396003)(39860400002)(376002)(366004)(41300700001)(54906003)(966005)(7696005)(6506007)(53546011)(5660300002)(235185007)(26005)(9686003)(186003)(71200400001)(786003)(76116006)(6916009)(91956017)(316002)(66476007)(66556008)(66946007)(8676002)(64756008)(4326008)(66446008)(8936002)(52536014)(2906002)(38070700005)(55016003)(83380400001)(38100700002)(122000001)(75432002)(478600001)(86362001)(33656002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: Fe/FZcpq7RS2krvH+m/Iyt2WDS6x/277UAp8Nl+i81J4lcRLIgkfKkcCBmEIxQ7l+wJMk7aqveyR3Aib/PPS7AehqdcV5Ai3OrzF7CSZ/MRtL/SBfhZfF50WiCoww6fCs6g83gpXKpwR/frSF/VyYp8VdAvI0vbqH1p0MFqAAUdpefw47Fa4SLlucv5/B0p4f8Jq786yNQ36uuMA9gevJaMxkDuIFxNMa4nJh6Pi/0HHljvwr03Jou3aDrKLfrVPlbXs44CIbNnrTd+e70LGaQ37U1CiVfoJELi17U24b90N+mUwkqBk5kGN5xrRSdoW+YDPx/SbF4+lPukBDUGf4HLVa3szRw0YtY/eNN2mrfm3NCPvu/1eJAH3OxZTN8sv0Mu9aEhmOiWqAWsmXrdM5+Kkv+rV52hnx7V2vXDDkDMfKdeuHHeYl8OjhA2TZeXMWWzIerR6StWW6fTHkTewpAGoC1fHPkC7mQECEs3sJaNGzH54jeHB/LlKGsuzjRb1C3mHE34on3b0TE7g8lPa/C0GEG8pMiVhD/zJO06Uw2v1VbKiQc6GB2yWxlMMdlWgd47Yvj89pq7temcVkQK3KdRI8pleuZQXEKR4YCNHOXvIuocU7JiguFAe14dXDBCaz2ISifRPnX3GrLh5UrfyjFHXxKFqrrz6iZXyKRTF75X86m/QTfDBVMTPEFzBbf+2PCJNjkXYtY4B/XVgZYKo5CuiegxbTH9KIUvUyiy6mxpb79ifIT+aXaSzRHZfIBv/U6VLCXIYJAIqji86DSleNjqloE395ww0xKSIEmnYyorJAqbtNFIbUq6LfgXneY/U/WSDAMYCB1ZwifjFdiNgCWeRaFZkiTFJThjvMU3g4d2DxrSxR5Rpa4G31ied8khXU2jbjpgdQ8wxHIvvACpknryr71l9iVve6AE6vvQ42XRTuMyOeVQctBmElsyz63O+9r/ThrIJtmrxQ+0KMy0Sj/XsqmcKS8kySfPU2uJ/ygHiKkutmjHZfd0KOf28oURaWuT558ysHF/xPEClyvkktZTSnpehbzREAaWQmIPClO6Ey92Y4/Nu5Og10f0MO211DW0Eu1CDrxRArnDit0VZNjm1GEUt5pJHwPIGC2qn7gmQiWFF2QQ7ZG8KVB4utGPdznBKlIgGV67eA/dEK+zxgWiN50cX1A4hwYgkZxY3ti4wgO+RRCTHRaUaeFS2nvAFQWNKc69V4rNk0gFdRGq+J/WD5SHlE3wP3B8PG+2sNDufXOKHrq2b+2AZ7JSfepE+8ReqBPq/NZsK5T3q2ipH2Q0CHpanys/19QOZBzS5z3+1eE83PcOfhMtfCAQ/8sztH9a5NV6eKDygkec5BYv26XwTs9NDYNz6DM3a417IG6AE4f+5sAPTLW6XxBaTymNce3JYjrMUMUpA70Xz6DjriAyouBOs9l4jjfxmiyGamRJEcXJtGOg+z130uFHfV0VgSWdMGuBQkQYp7Vu348qM90mREncT4FGuD+HV7X0QRUS0MUTgJwo9soUsEbKVAkVB6x+GrM7ty6TABTGAStr4pZQKHuYATJE5IYlTEFGyojQOIyG8CARaPY28r5F33hjt
Content-Type: multipart/alternative; boundary="_000_SN6PR05MB5247000A949AB18ACD8C03F3B2BB9SN6PR05MB5247namp_"
MIME-Version: 1.0
X-OriginatorOrg: gmu.edu
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: SN6PR05MB5247.namprd05.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 544dd209-3ad1-4dc0-ec99-08da59f847d8
X-MS-Exchange-CrossTenant-originalarrivaltime: 29 Jun 2022 17:53:31.8194 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 9e857255-df57-4c47-a0c0-0546460380cb
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: RWCQXjcSyClcBd8KOyQa7SdCEefR69h4bMZ4q83BdRtsKWkHxgajWERm/G46Y2fh
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BL0PR05MB4692
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/Cfw0dFUcj288N4CY1VUsVbipZCU>
Subject: Re: [lamps] smile.p7m as attachments in MUA
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 29 Jun 2022 17:53:38 -0000

Thank you, Russ, for the quick response. Sorry about the delay in getting back to you. We went through the Section 3.2.1 of RFC 8551 and we've gotten more insight and will report back on some of the blockers we're having in a while on the same thread.

Thanks again.

________________________________
From: Russ Housley <housley@vigilsec.com>
Sent: Saturday, June 18, 2022 11:37 AM
To: Pavan Kumar Dinesh <pdinesh@gmu.edu>
Cc: LAMPS <spasm@ietf.org>; Tawhidul Islam <tislam20@gmu.edu>; Eric Osterweil <eoster@gmu.edu>
Subject: Re: [lamps] smile.p7m as attachments in MUA

Please see Section 3.2.1 of RFC 8551.

Russ

On Jun 18, 2022, at 10:41 AM, Pavan Kumar Dinesh <pdinesh@gmu.edu<mailto:pdinesh@gmu.edu>> wrote:

TLDR: Is "smime.p7m" a file that is attached to emails, or a reserved name used by recipient MUAs that represents the source MIME of the email?

Hello,

We are students working on an MUA extension that sends SMIME emails as attachments.
A file containing the "multipart/signed" or "application/pkcs7-mime" MIME structures is attached to the email being sent.

>From our understanding, this should be similar to how MUAs sometimes show SMIME messages as an attachment called "smime.p7m". RFC 8551 describes .p7m as the extension for "application/pkcs7-mime", and examples include Content-Disposition: attachment (Section 3.3).

However, when calling the attachment "smime.p7m" (Or really anything with the ".p7m" extension) , certain MUA (Apple Mail) has odd behavior on the recipient side, renaming the attachment to "Mail Attachment.eml" and showing security warnings for user before message displayed. This occurs no matter the content of the attached file. This makes us suspect sending emails with *.p7m named attachments is not widely compatible (perhaps a conflict with reserved file names for the MUA).

Any words of wisdom on what "smime.p7m" actually is when mail clients show it as an attachment? Is that something we can send as an attachment at all?

Thank you!
_______________________________________________
Spasm mailing list
Spasm@ietf.org<mailto:Spasm@ietf.org>
https://www.ietf.org/mailman/listinfo/spasm