IETF Logo Mail Archive

Re: [Trans] Privacy-preserving proof of sct exclusion

Ben Laurie <benl@google.com> Sun, 26 March 2017 16:46 UTC

Return-Path: <benl@google.com>
X-Original-To: trans@ietfa.amsl.com
Delivered-To: trans@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 27C2112957F for <trans@ietfa.amsl.com>; Sun, 26 Mar 2017 09:46:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.701
X-Spam-Level:
X-Spam-Status: No, score=-2.701 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id XIapqk3OpSbx for <trans@ietfa.amsl.com>; Sun, 26 Mar 2017 09:46:23 -0700 (PDT)
Received: from mail-vk0-x230.google.com (mail-vk0-x230.google.com [IPv6:2607:f8b0:400c:c05::230]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5AAA01293DF for <trans@ietf.org>; Sun, 26 Mar 2017 09:46:23 -0700 (PDT)
Received: by mail-vk0-x230.google.com with SMTP id s68so30037541vke.3 for <trans@ietf.org>; Sun, 26 Mar 2017 09:46:23 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=vUGSYX1V244thdRn81tDwgUiaZ+vNEarYtc8SvH34oM=; b=pmslIcK6JZb1tOsUmrP/zh5uP5cVSanzjStxCBlUqK2Y37zxiyT+Zb6h94TNyYfdnQ IGCNd/MGpKOPuPolvycFFl7MZUvOCTQQIAv/rVHqdi2y1CGh9DvdgZdquYT/EiEahIO2 3wgkY6gQqCsjyY/D1nwqEfzT0HocdL8FNNmtw3W7f4xMtI4Z8oshpKOonKPzSBwltSCk ++mA6fmQbJNj0ruBnn+l0IUccSBwPyM6cAeTClNsQKzSjnKVA/8S6+w9CBate5vuxbOQ 8VdAmZjelxsoR8O+R9KAbyXrYtjDbv1eAFASB0kVGXCFGi91ivIAAQBanFoyqF1+4F9R r4Dw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=vUGSYX1V244thdRn81tDwgUiaZ+vNEarYtc8SvH34oM=; b=kxu10250g47/KyPBLuHQBoBWfzAxFoqcJlHs4NXElmj6CffhROH2nXM7eImdMl4gtr tD6ybdvnOiBc9WgfHjYf+CEm64wrEdoX6OleP4iS9Eg3wZIQDn2dW1djjQGitPyehd7f cUX96l56YHlcckJ5PnKsjp8h6APZbCO1LYN4EcvyVgd+OiQEVg+b3rlaOs2//9jGVoJt I+8stvG4L8mHTe9elTxIs5Rzi45yIFG0EkeFfaRd+oGEJiPJzC5RPnCrrl63cNS/MxLg I8qLzp50xs4u0/TjHdGTBF/DYXg9fGOZp+H0TrdQ02A9Fz3ms/irH4HGon1S6OeLss5f Va7g==
X-Gm-Message-State: AFeK/H1e/O4SQ1m30BUs62sfxsLVNzoQs83RkmuG3bRRaWII7YSoxigpg9scK/YoS9InIq452/tm0oXcAUlKA+Ye
X-Received: by 10.159.59.9 with SMTP id i9mr8815973uah.6.1490546782291; Sun, 26 Mar 2017 09:46:22 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.31.174.73 with HTTP; Sun, 26 Mar 2017 09:46:21 -0700 (PDT)
In-Reply-To: <MWHPR02MB2861B9B66FE5AE28613ECFB5C3310@MWHPR02MB2861.namprd02.prod.outlook.com>
References: <MWHPR02MB2861B9B66FE5AE28613ECFB5C3310@MWHPR02MB2861.namprd02.prod.outlook.com>
From: Ben Laurie <benl@google.com>
Date: Sun, 26 Mar 2017 17:46:21 +0100
Message-ID: <CABrd9SQDDBmmaOFn5Nk24qe-WyPYJGx02-PrYNPzr+oqd1braQ@mail.gmail.com>
To: Saba Eskandarian <sabae@stanford.edu>
Cc: "trans@ietf.org" <trans@ietf.org>
Content-Type: multipart/alternative; boundary="f403043c51d07b5566054ba4f776"
Archived-At: <https://mailarchive.ietf.org/arch/msg/trans/7yAiAX5sEmxBvBFnz4iP9NIOWys>
Subject: Re: [Trans] Privacy-preserving proof of sct exclusion
X-BeenThere: trans@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Public Notary Transparency working group discussion list <trans.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/trans>, <mailto:trans-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/trans/>
List-Post: <mailto:trans@ietf.org>
List-Help: <mailto:trans-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/trans>, <mailto:trans-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 26 Mar 2017 16:46:25 -0000

On 25 March 2017 at 22:39, Saba Eskandarian <sabae@stanford.edu> wrote:

> Hello,
>
> I'm on the agenda for Tuesday's meeting to share a privacy-preserving
> proof of sct exclusion from a log (I think Eran alluded to this work in a
> message a while ago).
>
> My posted slides will not include many words, so I wanted to share a link
> to the preprint of our academic paper on the subject in case anyone wants
> to read the details there. The paper is targeted at a somewhat different
> audience, but it can be found here: https://arxiv.org/abs/1703.02209
>
> Thanks and looking forward to meeting you all next week!
>

Cool, but I immediately see a problem - you require logs to be in timestamp
order, but they aren't. I can't immediately think of a way to get that
property without also considerably increasing time to inclusion in the log.

That seems undesirable - in fact, we're trying to go the other way, i.e.
reduce time to inclusion, in general.

Also, engineering reality doesn't change, so increasing time to inclusion
is also likely to increase MMD.

Secondly, its interesting, but doesn't seem particularly useful: when an
SCT corresponds to a cert that has not been included, you want to reveal
the cert, not hide it. What you want to hide is who is revealing it.

~saba
>
> _______________________________________________
> Trans mailing list
> Trans@ietf.org
> https://www.ietf.org/mailman/listinfo/trans
>
>

v2.23.0 | Report a Bug | By Email