IETF Logo Mail Archive

Re: [therightkey] DNSNMC Subject line is stupid

Phillip Hallam-Baker <hallam@gmail.com> Fri, 03 January 2014 15:57 UTC

Return-Path: <hallam@gmail.com>
X-Original-To: therightkey@ietfa.amsl.com
Delivered-To: therightkey@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E3F181ADFD7 for <therightkey@ietfa.amsl.com>; Fri, 3 Jan 2014 07:57:59 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.701
X-Spam-Level:
X-Spam-Status: No, score=0.701 tagged_above=-999 required=5 tests=[BAYES_50=0.8, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4jgeLuJNW505 for <therightkey@ietfa.amsl.com>; Fri, 3 Jan 2014 07:57:58 -0800 (PST)
Received: from mail-la0-x232.google.com (mail-la0-x232.google.com [IPv6:2a00:1450:4010:c03::232]) by ietfa.amsl.com (Postfix) with ESMTP id C32CA1ADED6 for <therightkey@ietf.org>; Fri, 3 Jan 2014 07:57:57 -0800 (PST)
Received: by mail-la0-f50.google.com with SMTP id el20so8128390lab.37 for <therightkey@ietf.org>; Fri, 03 Jan 2014 07:57:49 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:date:message-id:subject:from:to:cc:content-type; bh=AiSGnc9PCMsIefm4B/CK733mUyCe0RhzSMnRA+q2o2o=; b=wiwh5tdhfR/X+ckUb/0KrAtEgQwjfNv9YrIZ23Icco/5kmi9kmYoAGZWYdy63Lksvw /AdrnfhgvQmrIkpIjGi3WW9MhKLIlgtSxUgRau5hft/5zCnrmQMZe1bc0+XX1Imf2ta0 rsl/eBODbqmJlkPrdkbTTDkNTzq56+/okyrm/Bg3cre273HyHHXXmlWwMla/vlVhE30+ d5paNUdU2fNeGzELFsMei8K/7aoEFiIQRZVVjC3mZuGcPsRm489/+cczl4QW73o6gXiL Aw0U08i+rzPA3ehohSCUlD6BsdAsjtB0W7SIaT/ooWKgTqmMKnX6mA0WhAZB1kF+N9Ny ztHg==
MIME-Version: 1.0
X-Received: by 10.152.1.197 with SMTP id 5mr37030188lao.0.1388764669718; Fri, 03 Jan 2014 07:57:49 -0800 (PST)
Received: by 10.112.37.172 with HTTP; Fri, 3 Jan 2014 07:57:49 -0800 (PST)
Date: Fri, 03 Jan 2014 10:57:49 -0500
Message-ID: <CAMm+Lwj1MS1yK4Luh5VvgSa9z24UwQ6iJUsS79nkkwgQ3-7gbA@mail.gmail.com>
From: Phillip Hallam-Baker <hallam@gmail.com>
To: Rob Stradling <rob.stradling@comodo.com>
Content-Type: multipart/alternative; boundary="089e0112bfced0b51304ef12f813"
Cc: Leif Johansson <leifj@mnt.se>, "therightkey@ietf.org" <therightkey@ietf.org>
Subject: Re: [therightkey] DNSNMC Subject line is stupid
X-BeenThere: therightkey@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: <therightkey.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/therightkey>, <mailto:therightkey-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/therightkey/>
List-Post: <mailto:therightkey@ietf.org>
List-Help: <mailto:therightkey-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/therightkey>, <mailto:therightkey-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 03 Jan 2014 15:58:00 -0000

Part of my trouble with this thread is that the original proposal was
presented in the way it was.

It might well be that there is a better way to do PKI than the approach
Kohnfelder described in his master's thesis. But I don't think that the
person who comes up with it will be describing the existing system as
'deprecated' before a single line of code is deployed.


I am currently working on podcasts to describe my new approach to a general
audience because getting any PKI deployed depends on buy in from people
that are far outside this group and the IETF and even the techie community.

We are not going to get change until we have real people appearing in Apple
Stores and Microsoft stores asking how they can get usable secure email to
protect them from [The russian mafia/ GRU/ Iran/ China/ NSA]. If Google had
physical stores in malls, I would include them in that list.


But we are not going to get people hassling for deployment until there is a
scheme that is really right and not just 'good enough' for a group of
highly motivated ideologues like ourselves.

Part of the problem with PGP and S/MIME is that people just want it to work
so much that they blind themselves to the obvious defects let alone the
less obvious ones. The result looks like a Palm Treo, not an iPhone. You
could use the Palm to surf the Web and send email and it kinda worked
without crashing more than six times a day. But people at Palm never did
understand why that was so much of a problem and they never made much of an
effort to make the phone really right because web on your phone is so cool
it doesn't really need to be perfect... right?

When someone is so infatuated by their own idea that they describe it as
'deprecating' the existing system before they have even tried it in the
real world then I don't think it is going to get very far.


Anyway, I am thinking we should have international cryptography day
sometime in early summer. Give some time to get code wrote.

v2.23.0 | Report a Bug | By Email