Re: [Trans] Call for adoption: draft-strad-trans-redaction-00

"Ryan Sleevi" <ryan-ietf@sleevi.com> Wed, 21 September 2016 22:00 UTC

Return-Path: <ryan-ietf@sleevi.com>
X-Original-To: trans@ietfa.amsl.com
Delivered-To: trans@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0F63012BA91 for <trans@ietfa.amsl.com>; Wed, 21 Sep 2016 15:00:55 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.501
X-Spam-Level:
X-Spam-Status: No, score=-1.501 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_SORBS_SPAM=0.5] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=sleevi.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YrO-IWqMV0mH for <trans@ietfa.amsl.com>; Wed, 21 Sep 2016 15:00:54 -0700 (PDT)
Received: from homiemail-a87.g.dreamhost.com (sub4.mail.dreamhost.com [69.163.253.135]) (using TLSv1.1 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F338212B440 for <trans@ietf.org>; Wed, 21 Sep 2016 15:00:53 -0700 (PDT)
Received: from homiemail-a87.g.dreamhost.com (localhost [127.0.0.1]) by homiemail-a87.g.dreamhost.com (Postfix) with ESMTP id BFCBAC009F41; Wed, 21 Sep 2016 15:00:52 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sleevi.com; h=message-id :in-reply-to:references:date:subject:from:to:cc:reply-to :mime-version:content-type:content-transfer-encoding; s= sleevi.com; bh=++TTY40GsAYJzX5SS7HqngZRWTA=; b=UeOi4rKxSPsuoBsPa +aPFZ6omD/ouT4mke9LWGa7y07KY5z0GiriIempk7wmHYAvYLiv9HXH0VLC5eTYp bpjEObUN+XjPIDnz07H6F+2r1TTUX8zqgkqYx1jKdl/yROEmuU6B9pqSRuDD7BSN DaG9Nj8ri8PGwSghEnarRtkzf0=
Received: from webmail.dreamhost.com (caiajhbihbdd.dreamhost.com [208.97.187.133]) (Authenticated sender: ryan@sleevi.com) by homiemail-a87.g.dreamhost.com (Postfix) with ESMTPA id 855B8C0026B2; Wed, 21 Sep 2016 15:00:52 -0700 (PDT)
Received: from 104.132.1.83 (SquirrelMail authenticated user ryan@sleevi.com) by webmail.dreamhost.com with HTTP; Wed, 21 Sep 2016 15:00:52 -0700
Message-ID: <73d1a74ad89a671bb9ecf57cb41dbfd7.squirrel@webmail.dreamhost.com>
In-Reply-To: <c8a14597-e2f9-7270-33f3-861dc8d1ada5@gmail.com>
References: <b7a2d798-0201-4341-0b3b-c5efff34b126@gmail.com> <5b357047-d412-70de-4aa6-9499fa8837b5@comodo.com> <CABrd9SRpg2kMdQahfVUVpvy5e6tnLMKcv-Ka56vB4_QqgLoCWA@mail.gmail.com> <ccb1675a-6215-305c-9ca5-ff12edbc2b60@gmail.com> <D40801F0.1533%tarah_wheeler@symantec.com> <c8a14597-e2f9-7270-33f3-861dc8d1ada5@gmail.com>
Date: Wed, 21 Sep 2016 15:00:52 -0700
From: Ryan Sleevi <ryan-ietf@sleevi.com>
To: Melinda Shore <melinda.shore@gmail.com>
User-Agent: SquirrelMail/1.4.21
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/trans/wN5m0LsemRUtuIZY00jCbtkA4c8>
Cc: Tarah Wheeler <tarah_wheeler@symantec.com>, "trans@ietf.org" <trans@ietf.org>
Subject: Re: [Trans] Call for adoption: draft-strad-trans-redaction-00
X-BeenThere: trans@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
Reply-To: ryan-ietf@sleevi.com
List-Id: Public Notary Transparency working group discussion list <trans.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/trans>, <mailto:trans-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/trans/>
List-Post: <mailto:trans@ietf.org>
List-Help: <mailto:trans-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/trans>, <mailto:trans-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 21 Sep 2016 22:00:57 -0000

On Wed, September 21, 2016 11:15 am, Melinda Shore wrote:
>  On 9/21/16 5:23 AM, Tarah Wheeler wrote:
> > Hi, I'm Tarah, and I'm new at Symantec. I'll be reviewing and responding
> > to the CT redaction thread, and actively involved in proposals.
>
>  A few months ago Symantec had stated that they'll be publishing
>  redacted labels - is that still the case?

Symantec has stood up an RFC 6962-like log that supports an earlier
version of the redaction scheme, which reflects the thinking from 6962-bis
Draft 14.

It is not trusted by any CT client widely deployed, because it does not
implement RFC 6962 (which, as we know, does not support redaction).

Symantec has also had trouble, both with first-party and third-party
integrations (such as Venafi), with logging redacted certificates,
resulting in what might be described as 'over-redacted' certificates. That
is, certificates which are redacted even though their domains are public
and widely known, which is at conflict with Symantec's stated need for the
use case of redaction.

This has been summarized at
https://sslmate.com/blog/post/ct_redaction_in_chrome_53 for example, but
reflects redaction occurring for widely used, publicly disclosed domain
names - which seems at direct odds with the stated use cases.

Such previous explanations of Symantec's redaction policies can be found
at
http://www.symantec.com/connect/blogs/privacy-redaction-and-certificate-transparency
and
http://www.symantec.com/connect/blogs/balancing-certificate-transparency-and-privacy
, however, the evidence since these posts indicate an inconsistency in the
actual use case and policies.

This is perhaps a useful study into the utility, and the risk, of redaction.