Re: the curse of the S(imple) protocols, was: Re: e2e

To: "Steven M. Bellovin" <smb at cs.columbia.edu>
Subject: Re: the curse of the S(imple) protocols, was: Re: e2e
From: Iljitsch van Beijnum <iljitsch at muada.com>
Date: Fri, 17 Aug 2007 20:31:51 +0200
Cc: SM <sm at resistor.net>, Keith Moore <moore at cs.utk.edu>, ietf at ietf.org
In-reply-to: <20070817155445.9B4227660E2@berkshire.machshav.com>
List-help: <mailto:ietf-request@ietf.org?subject=help>
List-id: IETF-Discussion <ietf.ietf.org>
List-post: <mailto:ietf@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
References: <198A730C2044DE4A96749D13E167AD3701341995@MOU1WNEXMB04.vcorp.ad.vrsn.com> <8244E3BE-1A26-4B0A-99DC-0DF7AF7F8810@cisco.com> <46C29647.5070202@qualcomm.com> <FABD8E3A-D5CF-4EED-927B-A039BCAEE90C@cisco.com> <46C36461.2060907@cs.utk.edu> <46C36599.9040907@cisco.com> <D03E4899F2FB3D4C8464E8C76B3B68B0DBB6F4@E03MVC4-UKBR.domain1.systemhost.net> <6.2.5.6.2.20070816104133.02bbb2f0@resistor.net> <F8AE6F9E-4CE0-43B2-B209-28707DE0C0AE@muada.com> <46C59B00.8040601@cs.utk.edu> <BDB4FDEA-273D-4D91-9CD3-089865284891@muada.com> <20070817155445.9B4227660E2@berkshire.machshav.com>

On 17-aug-2007, at 17:54, Steven M. Bellovin wrote:

S/MIME would be a fine start.  It also won't solve the problem until
someone develops a user interface that DTRT for naive users who don't
understand trust anchors,

Big yellow warning when S/MIME authentication fails in Apple's Mail is hard to miss even if you don't understand exactly what it is...

or how to distinguish myfinancialcompany.com from
myfinancia1company.com when both have valid certificates.

So I can register paypa1.com and then go to Verisign to get a certificate for that domain? If that's true, then I think the law makers in various jurisdictions have work to do.

The very simple idea of having a .bank TLD for financial institutions could also help a lot here.

_______________________________________________
Ietf mailing list
Ietf at ietf.org
https://www1.ietf.org/mailman/listinfo/ietf

Follow-Ups:
- Re: the curse of the S(imple) protocols, was: Re: e2e
  - From: Steven M. Bellovin

References:
- RE: e2e
  - From: Hallam-Baker, Phillip
- Re: e2e
  - From: Fred Baker
- Re: e2e
  - From: Lakshminath Dondeti
- Re: e2e
  - From: Fred Baker
- Re: e2e
  - From: Keith Moore
- Re: e2e
  - From: Michael Thomas
- RE: e2e
  - From: michael.dillon
- RE: e2e
  - From: SM
- Re: e2e
  - From: Iljitsch van Beijnum
- Re: e2e
  - From: Keith Moore
- the curse of the S(imple) protocols, was: Re: e2e
  - From: Iljitsch van Beijnum
- Re: the curse of the S(imple) protocols, was: Re: e2e
  - From: Steven M. Bellovin

Prev by Date: Review of draft-hartman-webauth-phishing-05
Next by Date: Re: the curse of the S(imple) protocols, was: Re: e2e
Previous by thread: Re: the curse of the S(imple) protocols, was: Re: e2e
Next by thread: Re: the curse of the S(imple) protocols, was: Re: e2e
Index(es):
- Date
- Thread

Note Well: Messages sent to this mailing list are the opinions of the senders and do not imply endorsement by the IETF.

Re: the curse of the S(imple) protocols, was: Re: e2e

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.