Re: [VCARDDAV] Signed vCards

DataPacRat <datapacrat@gmail.com> Mon, 02 September 2013 21:23 UTC

Return-Path: <datapacrat@gmail.com>
X-Original-To: vcarddav@ietfa.amsl.com
Delivered-To: vcarddav@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E9F8821E8051 for <vcarddav@ietfa.amsl.com>; Mon, 2 Sep 2013 14:23:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.487
X-Spam-Level:
X-Spam-Status: No, score=-2.487 tagged_above=-999 required=5 tests=[AWL=0.113, BAYES_00=-2.599, NO_RELAYS=-0.001]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fOMVraMyioqy for <vcarddav@ietfa.amsl.com>; Mon, 2 Sep 2013 14:23:53 -0700 (PDT)
Received: from mail-we0-x231.google.com (mail-we0-x231.google.com [IPv6:2a00:1450:400c:c03::231]) by ietfa.amsl.com (Postfix) with ESMTP id 4570211E8165 for <vcarddav@ietf.org>; Mon, 2 Sep 2013 14:23:53 -0700 (PDT)
Received: by mail-we0-f177.google.com with SMTP id q55so4101136wes.22 for <vcarddav@ietf.org>; Mon, 02 Sep 2013 14:23:52 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=yNnQUpr39U5ozVFy1qVtJWD+HSp99bCSky+J8cSWghk=; b=aynr6SnBmp49uyCGG/JuK9zsDNBYgPQkN47c/FfxoUsVLZpfv8MwGhMt+hY89x5hNI MlaPyoVZ/hKGUtlFJ4KBfMLL3b60B8lmu1slvYi0Lp/GoeFvJSXgHEL5z83uP+Upr1K2 lAmj1sXcOcWaKtuTHYMFWM3J7+QOvM/J8NjMVZ1033mfcDGk5i/82ltbY+9GX5pNigv0 NYPlggIMEmupe1O39YFMnNuonicQcSlkGHWL0jy8pN56a6FKUFU9nTGJffe6fJUyIK7A GrVEENq/LCkrN0PCpC4X29H1Prnsoie4zKmG/lExXWpeYrRnYwFFCIrvfi7PtnQqcMLv Z3dw==
MIME-Version: 1.0
X-Received: by 10.180.20.15 with SMTP id j15mr2265579wie.0.1378157032420; Mon, 02 Sep 2013 14:23:52 -0700 (PDT)
Received: by 10.194.133.193 with HTTP; Mon, 2 Sep 2013 14:23:52 -0700 (PDT)
In-Reply-To: <CAB5WduBu7OE=mpwM8SSDMg=UMjsS+hfSKjXcQD7FyuV-2bF=Ww@mail.gmail.com>
References: <CAB5WduA09GVZ7j2q4e9aM-CYBj27_deKT=VHhVL0+gzG1yRq0A@mail.gmail.com> <CAD6ztsqqQwbN_-yv9+-tHuh8X1MfBRKEqF6ugH=0avHTuKxzWA@mail.gmail.com> <CAB5WduCO7mNPAqgqYWXmceog3wVNox5reUAjsCQRUXRQB0Wftw@mail.gmail.com> <51D18BC4.5030300@cisco.com> <CAB5WduAJSiqEjsw+DUo4Emy-Tw30nTw1WA2MshxJAfHN1sh0WA@mail.gmail.com> <51D1A52C.6000806@viagenie.ca> <CAB5WduDEe+tC21L6AbW0HRzTf5Z6L0oCA+M4X8_p1ERK0rFPtA@mail.gmail.com> <51D570F4.1020204@cisco.com> <CAB5WduC9OQDknwZj5PHQ0t8Y4V1vtpafeJuZXsnhrWKSmDfwFQ@mail.gmail.com> <CAB5WduC-m-TH9a1WrFY6QX8cQ2bJ8EgOD8+swEwpVxM7my42UA@mail.gmail.com> <CAB5WduBgpkQO+-4iNDspxR7X7JKeFU3UfjfiPd7qWWr7QRY3ew@mail.gmail.com> <CAB5WduCG356V5bHH8-7PYUtF3VqW5VRM-e=N0h7rbAJN51sSuA@mail.gmail.com> <51E42D85.4060806@viagenie.ca> <CAB5WduBJEXSsV5T-1MA+05wkQ6CZs8PySwUaQaAHew0E7dErbQ@mail.gmail.com> <CAB5WduBHej1O95X5UrFMkVJ1CQRdLzLOUjCF1AT6uz+-DTN4Ww@mail.gmail.com> <CAB5WduDQ6mHgSoWpX3JghF3CAMn8F0hV+y4zSTWc+Gi8EtY8UA@mail.gmail.com> <CAJNb_g1A64NWkpBqZsKsoLShB41Gqq3q21QnvDEdhENUYSi3XA@mail.gmail.com> <CAB5WduB4NMfLi_iYaTzivHWnV98rQbHMVWU4PEs6uO03uhJucA@mail.gmail.com> <CAB5WduAMy+UTrhKT6+dBh86iSCgcOtBEmkYctCUOzCOwxEo13w@mail.gmail.com> <CAJNb_g3trtyUjWikmTVBPoeVwzexL-DLx4=kfaWczuv6zGA-Lw@mail.gmail.com> <EE5149CF64A654342B9D06A8@cyrus.local> <CAJNb_g2wA_=YZu6hscNpRo_1QD9D+cbPX6BzgJrymLsTsK5F2Q@mail.gmail.com> <CAB5WduCYfFr3o4FQ86h3nj1dyb0fNSMwrBUjRHKrNLY8UDy-gA@mail.gmail.com> <CAB5WduA_T4T+y6Gzt938NtR7+sCgDuEmz2cK3RXke-25EAN2pg@mail.gmail.com> <CAB5WduCpdi5Q3p6Pv3C-YfSHXkS0ziAP9Jc9BKKKTRHCOz=fnw@mail.gmail.com> <CAB5WduD5bf8UXf+zTC-Z+Wt0NWaoKU3sVWpmjA-xHdDuKxRCPg@mail.gmail.com> <CAB5WduBu7OE=mpwM8SSDMg=UMjsS+hfSKjXcQD7FyuV-2bF=Ww@mail.gmail.com>
Date: Mon, 02 Sep 2013 17:23:52 -0400
Message-ID: <CAB5WduBhTpfiEuRoEjSQo+O5NQceaJsL-e-n=CwK0-Z=JK_gbQ@mail.gmail.com>
From: DataPacRat <datapacrat@gmail.com>
To: Michael Angstadt <mike.angstadt@gmail.com>, Simon Perreault <simon.perreault@viagenie.ca>
Content-Type: text/plain; charset="ISO-8859-1"
Cc: "vcarddav@ietf.org" <vcarddav@ietf.org>
Subject: Re: [VCARDDAV] Signed vCards
X-BeenThere: vcarddav@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: IETF vcarddav wg mailing list <vcarddav.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/vcarddav>, <mailto:vcarddav-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/vcarddav>
List-Post: <mailto:vcarddav@ietf.org>
List-Help: <mailto:vcarddav-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/vcarddav>, <mailto:vcarddav-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 02 Sep 2013 21:23:54 -0000

Yet another example I'm considering adding is a rough description of
how to use signed vCards to create an ad-hoc certificate authority
system. This would involve one vCard with an authority describing
itself, and signing it all; another vCard where that authority issues
a card describing a second entity and its key, using the CONFIDENCE
parameter to give its level of belief; and a third card where that
second entity describes a third, offering its CONFIDENCE level. And,
finally, a simple analysis of how the first CONFIDENCE value can
affect the second, for anyone who is able to examine the full chain of
vCards. Finishing up with how the full analysis would need to take
into account how trustworthy the reader considers the AUTHORITY to be,
which could be accomplished out-of-sight of a user using web-of-trust
techniques, such as the second and third entities issuing their own
vCards describing their CONFIDENCE level in the first.

Anyone care to comment before I try writing that up?



Thank you for your time,
--
DataPacRat
"Then again, I could be wrong."