[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Authentication and email

To: Harald Tveit Alvestrand <harald@alvestrand.no>, wgchairs@ietf.org
Subject: Re: Authentication and email
From: Paul Hoffman / VPNC <paul.hoffman@vpnc.org>
Date: Tue, 11 Feb 2003 10:22:02 -0800
In-reply-to: <1539370000.1044982475@askvoll.hjemme.alvestrand.no>
References: <3E354398.BF1D5575@lmf.ericsson.se><611987020.1043699189@localhost><3E3674FA.202781D7@lmf.ericsson.se><674756478.1043761959@localhost><3E369EAE.80761DAC@lmf.ericsson.se><p05210219ba5e0c696c00@[165.227.249.18]><3E4547DE.2667AC9E@lmf.ericsson.se><p0521031aba6b0517a4e8@[165.227.249.18]> <sjmadh3olo1.fsf@kikki.mit.edu> <p0521031fba6dd7e4584a@[63.202.92.156]><1539370000.1044982475@askvoll.hjemme.alvestrand.no>

At 5:54 PM +0100 2/11/03, Harald Tveit Alvestrand wrote:

realistically....

in email, security is available whenever two users want it, have mail systems that implement it, and there is no bit-damaging component between them.
at the moment I can't send secure mail between my two mail readers (because I have not upgraded one of them with the optional-to-install security components).

and about 50% of the time I see PGP-signed mail, I get the "I don't trust this" beep, for one reason or another.

At the point where the IETF sets down a single interoperable standard for email security, this situation is likely to improve. It is even more likely to improve if that standard is not based on other standards that have known interoperability issues.

Realistically, that won't happen, but we can always hope. But we can learn the lessons from this debacle and try to not make the same mistakes with other IETF protocols.

--Paul Hoffman, Director
--VPN Consortium

References:
- Authentication and email
  - From: Gonzalo Camarillo <Gonzalo.Camarillo@lmf.ericsson.se>
- Re: Authentication and email
  - From: Harald Tveit Alvestrand <harald@alvestrand.no>
- Re: Authentication and email
  - From: Gonzalo Camarillo <Gonzalo.Camarillo@lmf.ericsson.se>
- Re: Authentication and email
  - From: Harald Tveit Alvestrand <harald@alvestrand.no>
- Re: Authentication and email
  - From: Gonzalo Camarillo <Gonzalo.Camarillo@lmf.ericsson.se>
- Re: Authentication and email
  - From: Paul Hoffman / IMC <phoffman@imc.org>
- Re: Authentication and email
  - From: Gonzalo Camarillo <Gonzalo.Camarillo@lmf.ericsson.se>
- Re: Authentication and email
  - From: Paul Hoffman / IMC <phoffman@imc.org>
- Re: Authentication and email
  - From: Derek Atkins <derek@ihtfp.com>
- Re: Authentication and email
  - From: Paul Hoffman / VPNC <paul.hoffman@vpnc.org>
- Re: Authentication and email
  - From: Harald Tveit Alvestrand <harald@alvestrand.no>

Prev by Date: Re: automating the network: the big picture...
Next by Date: Re: automating the network: the big picture...
Previous by thread: Re: Authentication and email
Next by thread: Re: Authentication and email
Index(es):
- Date
- Thread