[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: draft-ietf-ltans-dssc-00 comments

To: "Susanne Okunick" <susanne.okunick@xxxxxxxxxxxxxxxxx>
Subject: Re: draft-ietf-ltans-dssc-00 comments
From: "todd glassey" <tglassey@xxxxxxxxxxxxx>
Date: Mon, 10 Sep 2007 10:09:05 -0700
Cc: <ietf-ltans@xxxxxxx>, <thomas.kunz@xxxxxxxxxxxxxxxxx>
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=dk20050327; d=earthlink.net; b=PaABejWqhuXGomeKdMGY/WmOimGORV5hBjFKET/U1v+/Y1lVbKMAPjB7tno2XjcX; h=Received:Message-ID:From:To:Cc:References:Subject:Date:MIME-Version:Content-Type:Content-Transfer-Encoding:X-Priority:X-MSMail-Priority:X-Mailer:X-MimeOLE:X-ELNK-Trace:X-Originating-IP;
List-archive: <http://www.imc.org/ietf-ltans/mail-archive/>
List-id: <ietf-ltans.imc.org>
List-unsubscribe: <mailto:ietf-ltans-request@imc.org?body=unsubscribe>
References: <2666EB2A846BAC4BB2D7F593301A78680187F4D4@xxxxxxxxxxxxxxxxxxxx> <> <004c01c7f3b9$aacb0680$174f7d40@xxxxxxxxxxxxxxxx> <46E56352.1020900@xxxxxxxxxxxxxxxxx>
Sender: owner-ietf-ltans@xxxxxxxxxxxx


Susanne ...

----- Original Message -----From: "Susanne Okunick" <susanne.okunick@xxxxxxxxxxxxxxxxx>

To: "todd glassey" <tglassey@xxxxxxxxxxxxx>
Cc: <ietf-ltans@xxxxxxx>; <thomas.kunz@xxxxxxxxxxxxxxxxx>
Sent: Monday, September 10, 2007 8:31 AM
Subject: Re: draft-ietf-ltans-dssc-00 comments

Susanne
that doesn't make sense from either EU Laws or those of the US as well.Sorry if this is a like a bucket of very cold water in the face, but itstime to wake up and smell the coffee... Any long term document storageand management protocol MUST take into account any and all laws whichwould constrain the operations and formulation of the proofing models it(said protocol) produces.
You are right.


Thanks!

And within that global requirement, all evidence-standards pretty muchrequire a 'full chain of custody' to be proven and without that, theircontent will not be admissible in the US Courts and any Court's the UShas Joint Judicial MRA's with(Mutual Recognition Agreements). As suchthe entire chain of custody and each signing and resigning needs to beresolved and proven or there is an imperfect history for the LTANSprotected file.While this may seem like its not something that is important the 'settingaside of this requirement' will in the US Make LTANS unusable since theCourt's wont accept it as a reliable method of storing information. Thatmeans the ETSI TSA recommendation is PROBABLY also in jeopardy since itclearly violates the intent and scope of those same laws as well...
The requirement 'full chain of custody' does not contradict LTANS/ourdraft.

But its not the focus or only form that the LTANS system can be used in -creating wiggle room for introducing problems to the trust model and itsportability... The idea is to create ' trusted records which are ultimatelyportable"...

The LTANS system is supposed to provide the "Trust Anchor" for thoserecords...

E. g. ERS does not prohibit to keep policies, protocols or whateverneeded for the complete evidence as required in the respective country.

No but it doesnt differentiate between hierarchical trust models andflattened-out ones. I.e. ones compressed so only the most recent trust-eventis visible externally. .. and why this is important is that if the documentis routinely 'flattened' out - that is 'made such that there is only oneoperable layer of policy and history' visible, then that chain of custody iseliminated even if there is some history provided internally to the file.Each 'stage' and each certification(IMHO) MUST be reproduceable over thestorage lifetime of the LTANS-stored Object.

Actually ERS allows the integration of such data.

yes butit gets converted to payload as opposed to keeping it as operablepolicy.

The same is true for our draft: All policies additionally may kept by anarchive service and presented to court.

As to multiple proofs, the key issue is whether they are presented as anintegrated part of the document/signature proofing blob or as an external'assurance' tool. My concern is that the Court's

The funniest part is that this WG wants to take the word (and theconsensus) of technical people who have NO EXPERIENCE in pursuing legalrecourse for IP issues or the complexity and pain of that process, whichis typical for the IETF... "We know everything" & "Our consensus isalways right".
If you have some constructive improvement suggestions concerning ourdraft, we will be grateful.

Suzzane - as a positive suggestion - and one which I have already onnumerous occaisions suggested to that IETF for its technical solutions forany protocols that are to provide evidence in a court of law or othermediation type forum, that for those initiatives, in addition to their beingvetted by Security and Network Guru's which is what is done here in theIETF, that they in addition are vetted by the Audit Community that will beforced to use them as well.

Perhaps it makes sense, to put the general discussion about LTANS in anown thread.

I think that might be a good idea. Especially since specific use models forLTANS will need to be developed and handed to that Audit Community to getthem to sign off on LTAN's use.


Susanne and Thomas

Follow-Ups:
- Re: draft-ietf-ltans-dssc-00 comments
  - From: todd glassey

References:
- RE: draft-ietf-ltans-dssc-00 comments
  - From: Tobias Gondrom
- RE: draft-ietf-ltans-dssc-00 comments
  - From: Susanne Okunick
- Re: draft-ietf-ltans-dssc-00 comments
  - From: todd glassey
- Re: draft-ietf-ltans-dssc-00 comments
  - From: Susanne Okunick

Prev by Date: Re: draft-ietf-ltans-dssc-00 comments
Next by Date: Re: draft-ietf-ltans-dssc-00 comments
Previous by thread: Re: draft-ietf-ltans-dssc-00 comments
Next by thread: Re: draft-ietf-ltans-dssc-00 comments
Index(es):
- Date
- Thread