Re: [therightkey] Draft charter for a Transparency Working Group
Ralph Holz <holz@net.in.tum.de> Sat, 14 December 2013 11:08 UTC
Return-Path: <holz@net.in.tum.de>
X-Original-To: therightkey@ietfa.amsl.com
Delivered-To: therightkey@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EBB221ADF6E for <therightkey@ietfa.amsl.com>; Sat, 14 Dec 2013 03:08:52 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.55
X-Spam-Level:
X-Spam-Status: No, score=-1.55 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HELO_EQ_DE=0.35] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id etUqCNpYVcoP for <therightkey@ietfa.amsl.com>; Sat, 14 Dec 2013 03:08:51 -0800 (PST)
Received: from smtp.serverkommune.de (serverkommune.de [176.9.61.43]) by ietfa.amsl.com (Postfix) with ESMTP id 058321ADF6A for <therightkey@ietf.org>; Sat, 14 Dec 2013 03:08:50 -0800 (PST)
Received: by smtp.serverkommune.de (Postfix, from userid 5001) id 992DA80B0E; Sat, 14 Dec 2013 12:08:42 +0100 (CET)
Received: from [192.168.178.34] (ex6.serverkommune.de [176.9.61.43]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by smtp.serverkommune.de (Postfix) with ESMTPSA id 9D4CB80A89 for <therightkey@ietf.org>; Sat, 14 Dec 2013 12:08:41 +0100 (CET)
Message-ID: <52AC3C39.3010306@net.in.tum.de>
Date: Sat, 14 Dec 2013 12:08:41 +0100
From: Ralph Holz <holz@net.in.tum.de>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.2.0
MIME-Version: 1.0
To: therightkey@ietf.org
References: <CABrd9SSzGJy18tf_iR5jFNk-sJyX66OPhmM4H23K5X2ZpWniyQ@mail.gmail.com>
In-Reply-To: <CABrd9SSzGJy18tf_iR5jFNk-sJyX66OPhmM4H23K5X2ZpWniyQ@mail.gmail.com>
X-Enigmail-Version: 1.6
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 8bit
X-Virus-Scanned: clamav-milter 0.97.8 at ex6
X-Virus-Status: Clean
Subject: Re: [therightkey] Draft charter for a Transparency Working Group
X-BeenThere: therightkey@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: <therightkey.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/therightkey>, <mailto:therightkey-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/therightkey/>
List-Post: <mailto:therightkey@ietf.org>
List-Help: <mailto:therightkey-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/therightkey>, <mailto:therightkey-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 14 Dec 2013 11:08:53 -0000
On 12/11/2013 05:55 PM, Ben Laurie wrote: > Who's in? I'd like to be part of it. > Cryptographically verifiable logs can help to ameliorate the problems > by making it possible to discover and rectify errors before they can > cause harm. Correct me if I am wrong, but the following comes to mind. I'd probably say "too much harm" or "significant harm": the public log concept allows for a short time window for successful attack. Much depends on the number of logs a CA pushes their certs to, and how many monitors watch these logs for suspicious changes. I am less concerned about the consistency proofs and audit paths here, and more about what monitors actually do. I.e., deployment issues. > Work items: Specify a standards-track mechanism to apply verifiable > logs to HTTP/TLS (i.e. RFC 6962-bis). One thing that I was wondering about is whether the work can be taken further at some point to include that mechanism from Sovereign Keys that allows to give, say, an alternate Tor routing (or hidden service), for a given domain, in order to avoid censorship. I'd agree that's not a primary topic for CT, but a worthwhile goal to keep in mind for later. Ralph -- Ralph Holz I8 - Network Architectures and Services Technische Universität München http://www.net.in.tum.de/de/mitarbeiter/holz/ Phone +49.89.289.18043 PGP: A805 D19C E23E 6BBB E0C4 86DC 520E 0C83 69B0 03EF
- [therightkey] Draft charter for a Transparency Wo… Ben Laurie
- Re: [therightkey] Draft charter for a Transparenc… Rob Stradling
- Re: [therightkey] Draft charter for a Transparenc… Stephen Farrell
- Re: [therightkey] Draft charter for a Transparenc… Phillip Hallam-Baker
- Re: [therightkey] Draft charter for a Transparenc… Daniel Kahn Gillmor
- Re: [therightkey] Draft charter for a Transparenc… Livingood, Jason
- Re: [therightkey] Draft charter for a Transparenc… Paul Wouters
- Re: [therightkey] Draft charter for a Transparenc… Ben Laurie
- Re: [therightkey] Draft charter for a Transparenc… Ben Laurie
- Re: [therightkey] Draft charter for a Transparenc… Ben Laurie
- Re: [therightkey] Draft charter for a Transparenc… Ben Laurie
- Re: [therightkey] Draft charter for a Transparenc… Leif Johansson
- Re: [therightkey] Draft charter for a Transparenc… Leif Johansson
- Re: [therightkey] Draft charter for a Transparenc… Phillip Hallam-Baker
- Re: [therightkey] Draft charter for a Transparenc… Warren Kumari
- Re: [therightkey] Draft charter for a Transparenc… Lucy Lynch
- Re: [therightkey] Draft charter for a Transparenc… Lucy Lynch
- [therightkey] Fwd: [perpass] Draft charter for a … Phillip Hallam-Baker
- Re: [therightkey] Draft charter for a Transparenc… Paul Lambert
- Re: [therightkey] [perpass] Draft charter for a T… Ben Laurie
- Re: [therightkey] Draft charter for a Transparenc… Ben Laurie
- Re: [therightkey] Draft charter for a Transparenc… Ben Laurie
- Re: [therightkey] Draft charter for a Transparenc… Leif Johansson
- Re: [therightkey] Draft charter for a Transparenc… Stephen Farrell
- Re: [therightkey] Draft charter for a Transparenc… Paul Lambert
- Re: [therightkey] Draft charter for a Transparenc… Ben Laurie
- Re: [therightkey] Draft charter for a Transparenc… Phillip Hallam-Baker
- Re: [therightkey] Draft charter for a Transparenc… Ben Laurie
- Re: [therightkey] Draft charter for a Transparenc… Ben Laurie
- Re: [therightkey] Draft charter for a Transparenc… Stephen Farrell
- Re: [therightkey] Draft charter for a Transparenc… Ben Laurie
- Re: [therightkey] Draft charter for a Transparenc… Warren Kumari
- Re: [therightkey] Draft charter for a Transparenc… Ralph Holz
- Re: [therightkey] Draft charter for a Transparenc… Ben Laurie
- Re: [therightkey] Draft charter for a Transparenc… Tom Fitzhenry
- Re: [therightkey] Draft charter for a Transparenc… Stephen Farrell
- Re: [therightkey] Draft charter for a Transparenc… Stephen Farrell
- Re: [therightkey] Draft charter for a Transparenc… Ben Laurie