Re: [Trans] How to redact an entry
Eran Messeri <eranm@google.com> Fri, 24 February 2017 19:22 UTC
Return-Path: <eranm@google.com>
X-Original-To: trans@ietfa.amsl.com
Delivered-To: trans@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 942681294DC for <trans@ietfa.amsl.com>; Fri, 24 Feb 2017 11:22:27 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id gwJkl9BlvPZW for <trans@ietfa.amsl.com>; Fri, 24 Feb 2017 11:22:25 -0800 (PST)
Received: from mail-wr0-x231.google.com (mail-wr0-x231.google.com [IPv6:2a00:1450:400c:c0c::231]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 034041294D4 for <trans@ietf.org>; Fri, 24 Feb 2017 11:22:24 -0800 (PST)
Received: by mail-wr0-x231.google.com with SMTP id 89so19225757wrr.3 for <trans@ietf.org>; Fri, 24 Feb 2017 11:22:24 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=jEEtcxJGhLU7gyTYWeKyT8hfTm2g7rMGTL29qEnS86A=; b=ediCMGZ/wKClZVnmUtceVve7icCatlPzW2FkqltmpeFyDJp3pNuKA/opJUgHEFDuhM 5KkWvDZIYfhJsf733puOeDQe16kf0oTDT4IWXhdiygI95e3StzroSPnQpmJyhvpmppKA kFGVmc6upPY92QxIZvd/lGLVKXe+83K9k6I5Ec2kDLWRCCsBPHhvcSb8+H9FiMbrJzzD /Ej2tsGgpJ+OyJc4W2rUaJY03tbrniK4nzlmrHfy1LL+e/rESQ+yTYvDI2DyXMpA32Nt tXNV3xd4RxeH91cYkSqbBAOpAaQssfRs/p1LLnCOF+w7LqMKZkZazdjC3BNsAAc2d0cb HbbA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=jEEtcxJGhLU7gyTYWeKyT8hfTm2g7rMGTL29qEnS86A=; b=j+p67LMKoztKysuM1q719uSYjqCuo7MR4zVaH0PpfyHZWUecwFH5BcbIDcyShXDKLB ZoLOC343zRyPezcb6touAiaqNsYfPuk8aSuWYxgvWdsTaglWznne9WdgTcdIdvpkNlUt GZRJMmGoG+wIBOLt1MeSU88Klm2TW7pLm1z3ItN5ILlWAjyLYWNcawEnj9aNAJyZwVFi 7/hNCvNAnsRDZL2GJ3aoyF+o4ygcUlFc6lFZ92SsGvPJLDey0S+MmQOUyjrMZNlAVrl9 Sr92MuMxSMgBMQ/Q06L82mOF5b0g937yVi7PAcbNUfwV/2+VpSoakTQ0o68+C/OalTgf lKVw==
X-Gm-Message-State: AMke39mHmAwcYRl4hwqPDKRsdrdL39i49RqX1sqqa91/P12RFdhe93Xq7YiRM/ocxKiQFsIHE750tCfzwmLD1hnJ
X-Received: by 10.223.134.52 with SMTP id 49mr3934856wrv.50.1487964143348; Fri, 24 Feb 2017 11:22:23 -0800 (PST)
MIME-Version: 1.0
Received: by 10.28.158.15 with HTTP; Fri, 24 Feb 2017 11:21:52 -0800 (PST)
In-Reply-To: <CAMm+Lwim3NDovHGp62UBKhGc4ewYQQkq2=qH9ssAOFk=JTF=Cw@mail.gmail.com>
References: <CABrd9SSeePrsNq8ERjxpbEvUAdyb=yQOGAom0qh9SZMoP=nsMw@mail.gmail.com> <CAMm+LwiZUw+JpEanY5vkxGBOtdrs9HfYzp34cBtwDv34uJCjKw@mail.gmail.com> <4E665C5B-BC28-428E-9BFB-626D3364E05B@nohats.ca> <CABrd9STPBWt=p-eAW5t=QSw2oexuSeW5tbtcbczagA0jx77gQA@mail.gmail.com> <alpine.LRH.2.20.1611160636020.4488@bofh.nohats.ca> <CABrd9SQjMkWCOv1jPky+DiOE61qCTXej2Ovy9nRVAKs66OtEGA@mail.gmail.com> <CAMm+Lwim3NDovHGp62UBKhGc4ewYQQkq2=qH9ssAOFk=JTF=Cw@mail.gmail.com>
From: Eran Messeri <eranm@google.com>
Date: Fri, 24 Feb 2017 11:21:52 -0800
Message-ID: <CALzYgEcQZb-Yc_b2Mp+dd9hFKAAj5o4Wg9suH6Nq5J03EMz-=A@mail.gmail.com>
To: Phillip Hallam-Baker <ietf@hallambaker.com>
Content-Type: multipart/alternative; boundary="001a1146c03c34361305494ba632"
Archived-At: <https://mailarchive.ietf.org/arch/msg/trans/wPfUd4VtBNmPbI5TEEUhzunvQcg>
Cc: "trans@ietf.org" <trans@ietf.org>, Paul Wouters <paul@nohats.ca>, Ben Laurie <benl@google.com>
Subject: Re: [Trans] How to redact an entry
X-BeenThere: trans@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Public Notary Transparency working group discussion list <trans.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/trans>, <mailto:trans-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/trans/>
List-Post: <mailto:trans@ietf.org>
List-Help: <mailto:trans-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/trans>, <mailto:trans-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 24 Feb 2017 19:22:27 -0000
Following up on this thread, after a few discussions about it in online & offline forums: - It is necessary to have the "Redaction reason" entry in the log to commit the log to the redaction of a particular entry and avoid allowing the log to present redacted/unredacted view at will. - A few have echoed Phillip's sentiment that once an entry is suppressed then the suppression reason can't be effectively audited for correctness. - There was a strong push-back against this mechanism on the basis that it weakens the basic properties we get from the Merkle tree right now. Potential problems: What if the "Redaction reason" entry itself was redacted? - A suggestion by Peter Bowen was to simply not serve the redacted entry: The only API method by which a suppressed entry can be obtain is 'get-entries', it's possible to return an error when the range specified includes a suppressed entry. That suffers from the same drawback of the log being able to selectively presenting redacted/unredacted view. - An approach many see as superior is to reduce the chances of having entries with undesirable content in the log by restricting the certificates that may be logged (e.g. forbidding certificates with embedded images). Eran On Wed, Nov 16, 2016 at 6:20 AM, Phillip Hallam-Baker <ietf@hallambaker.com> wrote: > Lets break this down. > > In what way is suppression of a previously enrolled certificate different > to not enrolling the certificate at all? > > The only ones I can see is that it means that 1) the CA is off the hook, > they fulfilled their duties and 2) the fact that suppression has occurred > is visible. > > > CT relies on there being some feedback mechanism to detect unenrolled > certs, the same would apply to suppressed certs. > > So let us imagine that a government coerces a CA to issue a bogus cert and > then coerces a notary to suppress it. What next? > > Well first off anyone who has a copy of that cert taken from the > repository before the suppression is going to hard look at it. So the > chance of people being aware of the suppression and working out the reason > for it is essentially 99%. > > > A person formerly very senior in NSA told me that the governing paradigm > post Snowden was 'NOBUS': Nobody but us. Sure they might want to perform > this type of attack if they think they can get away with it but they won't > do things that are liable to get caught. > > > > > On Wed, Nov 16, 2016 at 6:48 AM, Ben Laurie <benl@google.com> wrote: > >> On 16 November 2016 at 11:39, Paul Wouters <paul@nohats.ca> wrote: >> > On Wed, 16 Nov 2016, Ben Laurie wrote: >> > >> > (no hats on) >> > >> >> On 16 November 2016 at 03:46, Paul Wouters <paul@nohats.ca> wrote: >> >>> >> >>> How can I as log consumer detect the difference between the log >> removing >> >>> illegal content and the log being compelled by a government to hide a >> >>> rogue >> >>> certificate? >> >> >> >> >> >> Court orders are court orders. That issue is not in the log's domain. >> > >> > >> > It was an example. the core isuse is, how can a consumer determine the >> > log censored itself with a valid reason, versus an attack, compromise, >> > having been compelled, or for financial gain or any other invalid >> reason? >> > >> > Using a hash of a removed cert won't allow anyone to verify the reason >> > for removal. And clearly the content cannot remain their either. It's >> > a catch22. >> >> This is why the redaction reason entry exists, so that there _is_ >> something to reason about. If you (a consumer) are unconvinced by the >> reason, well, there are public fora where you can voice your concerns. >> > > > _______________________________________________ > Trans mailing list > Trans@ietf.org > https://www.ietf.org/mailman/listinfo/trans > >
- [Trans] How to redact an entry Ben Laurie
- Re: [Trans] How to redact an entry Phillip Hallam-Baker
- Re: [Trans] How to redact an entry Paul Wouters
- Re: [Trans] How to redact an entry Phillip Hallam-Baker
- Re: [Trans] How to redact an entry Paul Wouters
- Re: [Trans] How to redact an entry Phillip Hallam-Baker
- Re: [Trans] How to redact an entry Ben Laurie
- Re: [Trans] How to redact an entry Ben Laurie
- Re: [Trans] How to redact an entry Paul Wouters
- Re: [Trans] How to redact an entry Ben Laurie
- Re: [Trans] How to redact an entry Phillip Hallam-Baker
- Re: [Trans] How to redact an entry Eran Messeri
- Re: [Trans] How to redact an entry Peter Bowen