On Aug 26, 2014, at 7:48 AM, Osterweil, Eric <[email protected]> wrote:
> A few of us felt that it might be productive to outline a set of requirements > that we foresee DANE facing in enterprises environments (w.r.t. > encrypted/signed email). To that end, we put together the draft: > ``Enterprise Requirements for Secure Email Key Management'' > http://tools.ietf.org/html/draft-osterweil-dane-ent-email-reqs-00 Although you are using DANE for that, the general topic is email-end-to-end. You might therefore want to instead discuss the principles on the "endymail" mailing list that Stephen Farrell just announced yesterday on the SAAG list; see below. --Paul Hoffman Begin forwarded message: > From: Stephen Farrell <[email protected]> > Subject: [saag] new list for discussion of end-to-end email security/privacy > improvements > Date: August 25, 2014 at 11:20:41 AM PDT > To: "[email protected]" <[email protected]> > > > Hi all, > > Following on from discussion in Toronto in appaswg and saag, > and a subsequent request, we've created a mailing list for > discussing this topic. Pete Resnick and I will initially > manage the list. If you're interested, please subscribe. > Once Pete and I figure there's a good enough set of folks > subscribed we'll fire off a starter email. That usually takes > a few days, so probably Wed-Thu this week. > > The list [1] description is: > > There is significant interest in improving the > privacy-related properties of Internet mail. One focus of > current efforts is on the per-hop (connection-based) > protections provided by TLS. However a wide range of other > work has a focus on end-to-end protection, at the Internet > scale of billions of end users and perhaps millions of > operators. Such work typically involves new forms of mail > header or body protection, new public key management > (compared to S/MIME or PGP), and security mechanisms more > appropriate for mobile/web user-agents. Other > security-relevant approaches may be discussed if needed. > Various proposals and development efforts on this topic are > underway outside the IETF. This mailing list provides an > IETF venue for discussion of elements that might be commonly > needed by such efforts and to identify work that the IETF > could do to aid in achieving better end-to-end security > deployed for Internet email. > > Cheers, > S. > > [1] https://www.ietf.org/mailman/listinfo/endymail _______________________________________________ dane mailing list [email protected] https://www.ietf.org/mailman/listinfo/dane
