Re: [Uta] A quote from the cryptography list on security in practice.
Grant Taylor <gtaylor@tnetconsulting.net> Fri, 22 March 2019 16:09 UTC
Return-Path: <gtaylor@tnetconsulting.net>
X-Original-To: uta@ietfa.amsl.com
Delivered-To: uta@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B67E313117D for <uta@ietfa.amsl.com>; Fri, 22 Mar 2019 09:09:07 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=tnetconsulting.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZfgWRaY91n-a for <uta@ietfa.amsl.com>; Fri, 22 Mar 2019 09:09:06 -0700 (PDT)
Received: from tncsrv06.tnetconsulting.net (tncsrv06.tnetconsulting.net [IPv6:2600:3c00:e000:1e9::8849]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 486FA131156 for <uta@ietf.org>; Fri, 22 Mar 2019 09:09:06 -0700 (PDT)
Received: from Contact-TNet-Consulting-Abuse-for-assistance by tncsrv06.tnetconsulting.net (8.15.2/8.15.2/Debian-3) with ESMTPSA id x2MG93rn000438 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NO) for <uta@ietf.org>; Fri, 22 Mar 2019 11:09:05 -0500
ARC-Filter: OpenARC Filter v0.1.0 tncsrv06.tnetconsulting.net x2MG93rn000438
Authentication-Results: tncsrv06.tnetconsulting.net; arc=none header.d=tnetconsulting.net
ARC-Seal: i=1; a=rsa-sha256; d=tnetconsulting.net; s=2015; t=1553270945; cv=none; b=pTsvWAurn6nUetFb3q30D+wbbXGpvdICoEpwdQSRxD2hiOiTVzaYhMYvg//IVBw+KriZgxUAMG+A4EA+DYemZgvI+17aulrqPRtf+eQoaNy5TwY7RHkrnRgh77IPED/P0Q+uM3ta8JiCZ/qe7JRtuOQkQgsdIJDX1Bn/Ynq5n34=
ARC-Message-Signature: i=1; a=rsa-sha256; d=tnetconsulting.net; s=2015; t=1553270945; c=relaxed/simple; bh=39xmMitzgIqBVKtG52cSSvztiEiZD7id+8fub14WZI4=; h=DKIM-Signature:Subject:To:From:Message-ID:Date:User-Agent: MIME-Version:Content-Type; b=hBFDbP3jnjaPO3ph86RRC7CpHm7qGj4cnMZ2SKrs7br0ulpj7WQ3r9C5IV1zzA0ucCU7E5iC7GcaihmpFXlKglRUrQTocPUvAGyy27deoRCgA7nfnTL9n2A58K3m4hFyF8pWLYS1fmT+g594d6gQYyDepWQFOJB5CaLRLhoVZfM=
ARC-Authentication-Results: i=1; tncsrv06.tnetconsulting.net; none
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=tnetconsulting.net; s=2019; t=1553270945; bh=39xmMitzgIqBVKtG52cSSvztiEiZD7id+8fub14WZI4=; h=Subject:To:References:From:Message-ID:Date:User-Agent: MIME-Version:In-Reply-To:Content-Type:Cc:Content-Disposition: Content-Language:Content-Transfer-Encoding:Content-Type:Date:From: In-Reply-To:Message-ID:MIME-Version:References:Reply-To: Resent-Date:Resent-From:Resent-To:Resent-Cc:Sender:Subject:To: User-Agent; b=SLMbbosJjYR9Hav0f+tJSwcUVXD3K6YJXu+8sdpqzBmTg4ssvfkaceJLEqZVWkl/0 WMP2oX12gB07FlAPzdEndXEFpBxEM+umZ75lkl49IlQJVPwi2kXQncgPFajMZxRgWB Z6i+8xdblBLqRMaOZM8RVozW8MEaDmkO+wDY7XIk=
To: uta@ietf.org
References: <7BF97A13-E9D6-4E6E-AE75-C338D93334E3@dukhovni.org>
From: Grant Taylor <gtaylor@tnetconsulting.net>
Organization: TNet Consulting
Message-ID: <e74810fc-e2cd-8efa-d18a-0700334d80d3@spamtrap.tnetconsulting.net>
Date: Fri, 22 Mar 2019 10:09:03 -0600
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.5.1
MIME-Version: 1.0
In-Reply-To: <7BF97A13-E9D6-4E6E-AE75-C338D93334E3@dukhovni.org>
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg="sha-256"; boundary="------------ms090108090906020800040801"
Archived-At: <https://mailarchive.ietf.org/arch/msg/uta/7h4TNX0oM3PBENGpkPiJbYbhdtE>
Subject: Re: [Uta] A quote from the cryptography list on security in practice.
X-BeenThere: uta@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: UTA working group mailing list <uta.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/uta>, <mailto:uta-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/uta/>
List-Post: <mailto:uta@ietf.org>
List-Help: <mailto:uta-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/uta>, <mailto:uta-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 22 Mar 2019 16:09:08 -0000
On 3/21/19 11:28 PM, Viktor Dukhovni wrote: > ... if security is going to be any use to people it has to be easy > enough that a 60+ year old grandmother who left school before the Internet > arrived can use it because she is the US Secretary of State. This is one of the reasons that I'm quite happy with the state of S/MIME as I and some friends experience it. After an initial speed bump to set things up (and certificate renewal), the day-to-day use is largely painless if not actually transparent. > We have tried the maximalist approach to security for 30 years and it has > been a complete failure. We have one widely deployed Internet security > protocol and it is limited to the transport layer. I think the fact that techies that enjoy this stuff actually don't use as much as they can on their personal systems is a tell tale sign that things are too complex to readily adopt and use. > It is with this in mind, that we can understand how some pragmatic > security concessions can ultimately gain more security for more users > than they appear to forgo at first glance. I don't like it. But I agree. -- Grant. . . . unix || die
- [Uta] A quote from the cryptography list on secur… Viktor Dukhovni
- Re: [Uta] A quote from the cryptography list on s… Grant Taylor