On Thu, Sep 5, 2013 at 11:32 PM, Andrew Sullivan <ajs@xxxxxxxxxxxxxxxxxx> wrote:
On Fri, Sep 06, 2013 at 03:28:28PM +1200, Brian E Carpenter wrote:Why is that discussion of this nailed to the cycle of IETF meetings?
>
> OK, that's actionable in the IETF, so can we see the I-D before
> the cutoff?
It is not. I raised the challenge over a week ago in another forum. Last thing I would do is to give any institution veto power.
The design I think is practical is to eliminate all UI issues by insisting that encryption and decryption are transparent. Any email that can be sent encrypted is sent encrypted.
So that means that we have to have a key distribution infrastructure such that when you register a key it becomes available to anyone who might need to send you a message. We would also wish to apply the Certificate Transparency approach to protect the Trusted Third Parties from being coerced, infiltrated or compromised.
Packaging the implementation is not difficult, a set of proxies for IMAP and SUBMIT enhance and decrypt the messages.
The client side complexity is separated from the proxy using Omnibroker.
Website: http://hallambaker.com/