Re: STEED - Usable end-to-end encryption

2011-10-24 Thread Matthias-Christian Ott 
On Fri, Oct 21, 2011 at 01:46:02AM +0200, Marcus Brinkmann wrote:
 On 10/20/2011 10:25 PM, Matthias-Christian Ott wrote:
  But who are the providers? Except for people who work in computer
  science, physics or similar fields I don't know people who run their own
  mail servers or are part of a cooperative. Most other people use a
  handful of providers who often offer free service in exchange for the
  loss of privacy or at least some form of semi-targeted advertisement. Do
  you expect those providers to ruin their business models by implementing
  this proposal? I wouldn't count on them.
 
 Maybe.  But the only way to fail for certain is by not trying.  There are
 other business models and market pressures beside those that you are
 highlighting.  It's not easy to predict.

I agree, there are other business models and perhaps there will be
demand for this, but I just summarised the service providers almost all
“non-technical” people I communicate with use.

  Perhaps the providers could also be forced by law not to implement
  this, because (if I remember correctly) come countries require that
  they store at least the header information (including subject, which
  should also be encryted by the system) for traffic analysis. So in
  the worst case the providers couldn't implement this without breaking
  the law (I doubt that citizens could use the system without breaking the
  law in this situation either, but individuals are often more venturous
  than organisations).
 
 STEED is fully compatible with existing mail encryption, so we do not include
 the headers in the plaintext.  I am not an expert, but as far as I know the
 regulation usually demands to store connection data that is available, it does
 not ask for data that is not available for whatever reason.  I think your
 interpretation of the regulations in that area is overly pessimistic, but I
 could be wrong.  Maybe you can verify this?

I'm not aware of any overview of e-mail data rentention, so I don't
have complete picture, but a quick search on EU data retention laws
showed that only SMTP envelope data is officially stored, so at least
in these countries it's not a problem (though I think the subject
should be encrypted as well). Moreover, I agree that as long as the
body and thus the actual contents are not stored there is reason
why a provider could break the law by providing STEED services to
their costumers. Fortunately many countries have laws to garantuee
(at leas in theory) privacy of correspondance and these laws of a
long tradition, so it seems hard to abolish them. However, I see the
possibility that providers could be forced to cooperate with government
agencies, but this would have little impact and would require bigger
efforts to “break” STEED this way (e.g. MITM attacks by publishing
false keys for new contacts).

  What about making everyone their own provider? The efforts in this
  direction intiated by Eben Moglen that lead to the FreedomBox and other
  projects seem to go in the right direction. It doesn't seem to me less
  realistic than requiring cooperation from providers.
 
 I think everybody deserves private email communication, not only those who are
 willing to be their own provider.  We don't expect people to carry out their
 own snail mail letters either, and the business model of the post office does
 not require spying on the letters.

I agree, but I also talked to people who don't care about privacy
(nothing to hide) and don't understand it. Therefore, it is important
not to rely on the market to provide the means for private e-mail
communication (do it yourself instead of relying on other people to do
it).

 But, we have to go where the users are, and we have to try our best to get the
 providers cooperation.  There is no benefit in ignoring them and their users
 just for our convenience.

Let's say you had the opportunity to convince a smaller independent
hosting provider that e.g. sells web hosting, e-mail and resells
internet connectivity, how would you do this? There had to be real
demand and easily installable and maintainable software to convince them
to implement STEED.

Recently I did some search and inquiries on DNSSEC, for which there is
argueably real demands from private and enterprise customers and there
is working software, but only relatively few companies worldwide offer
it and I don't expect it to be widely deployed within the next years.
However, people running their own server have it running or at leas
prepared (waiting for the registras to close the trust chain by
submitting their public key to the registry) for some time now.

 Maybe you are still not convinced.  Then let me give you an illustrative
 analogy.  (Disclaimer: I am not associated with SawStop or anybody involved,
 nor have I met anybody involved or used their product).  An inventor created a
 table saw that can prevent injury by stopping the blade as soon as it is
 touched by human flesh (SawStop).  According to the

Re: STEED - Usable end-to-end encryption

2011-10-24 Thread Mark H. Wood 
On Fri, Oct 21, 2011 at 06:55:47PM +0100, MFPA wrote:
 If you are trying to get people to think about privacy, maybe
 suggesting Diaspora as an alternative to Facebook is a direction to
 consider...

I would suggest that, if you are trying to get people to think about
privacy, about the only thing worth saying to them (initially) is to
point out real-life examples of bad things happening to average people
who didn't think about privacy.

No one can desire salvation until he believes that he is in jeopardy.

-- 
Mark H. Wood, Lead System Programmer   mw...@iupui.edu
Asking whether markets are efficient is like asking whether people are smart.


pgpSNcORr6GO6.pgp
Description: PGP signature
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: STEED - Usable end-to-end encryption

2011-10-24 Thread Robert J. Hansen 
On 10/24/11 11:15 AM, Mark H. Wood wrote:
 No one can desire salvation until he believes that he is in jeopardy.

Although hellfire-and-damnation preachers are a popular cultural idea,
they're really quite rare: most preachers go more for the John 10:10
angle [*].  They've found through centuries of proselytization
experience that things work better if you pitch the benefit of the
faith, rather than the hypothesized penalties if you live without it.

The relevance here should be plain: we need to pitch the benefits of
confidential and assured communications, not the hypothetical penalties
if they fail to take our advice.



[*] I am come that they might have life, and that they might have it
more abundantly.  John 10:10, KJV



signature.asc
Description: OpenPGP digital signature
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: STEED - Usable end-to-end encryption

2011-10-24 Thread Mark H. Wood 
On Mon, Oct 24, 2011 at 11:24:40AM -0400, Robert J. Hansen wrote:
 On 10/24/11 11:15 AM, Mark H. Wood wrote:
  No one can desire salvation until he believes that he is in jeopardy.
 
 Although hellfire-and-damnation preachers are a popular cultural idea,
 they're really quite rare: most preachers go more for the John 10:10
 angle [*].  They've found through centuries of proselytization
 experience that things work better if you pitch the benefit of the
 faith, rather than the hypothesized penalties if you live without it.

And I agree with this.  The problem with applying the turn-or-burn
sermon to proselytization is that it requires that the audience
already believes in sin and hell, and that the problem is one of
raising awareness.  Unbelievers...don't believe.  It is fortunate to
such efforts that an argument couched in terms of benefit is available.

 The relevance here should be plain: we need to pitch the benefits of
 confidential and assured communications, not the hypothetical penalties
 if they fail to take our advice.

So, in the absence of any threat, what exactly *are* those benefits?

The cited passage asserts that the hearer is missing out -- he could
have more than he has now.  How much more can I get out of email by
using crypto?  What do I get, if I don't believe that my privacy is
threatened or I do not value privacy?

-- 
Mark H. Wood, Lead System Programmer   mw...@iupui.edu
Asking whether markets are efficient is like asking whether people are smart.


pgpEr6jJyBnF3.pgp
Description: PGP signature
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: STEED - Usable end-to-end encryption

2011-10-24 Thread dan 

 
 With respect to your question: what we offer is privacy, but most people
 do not understand privacy, do not care about privacy, and would not care
 about privacy even if they understood it.
 
 During graduate school the politically-active members of the Computer
 Science department were up in arms over government surveillance.
 Flyers, bulletin board notices, EFF fundraising campaigns, and the like.
 Yet, when the Department required all TAs sign up for Facebook, in the
 interests of being accessible to the undergraduates, there wasn't any
 outcry.  I was serving as the Area Steward for the graduate student
 labor union and tried to drum up some outrage that we were being
 *required* to sign up for a privacy-annihilating 'service.'  Nobody was
 interested -- not even the people who had flyers on their doors
 condemning Total Information Awareness and EFF stickers on their laptops.
 

You got that right, Brother.

To be more pointed, how many folks on this list carry a cell phone?

--dan


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users