[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Secure email with limited usable metadata

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Secure email with limited usable metadata
From: Andreas Krey <a.krey@xxxxxx>
Date: Tue, 2 Jul 2013 08:15:39 +0200
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 02 Jul 2013 02:15:56 -0400
In-reply-to: <CAJVRA1SXrB9qy5Uq36tUHW1JQSO32YzL16c9DHAD4C+PQXNV2w@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <N1-b4XXucOHMJ@xxxxxxxxxxxxx> <51D1B12E.9040305@xxxxxxxxxxxxxx> <1372720324.46694.YahooMailNeo@xxxxxxxxxxxxxxxxxxxxxxxxxxxx> <CAJVRA1SXrB9qy5Uq36tUHW1JQSO32YzL16c9DHAD4C+PQXNV2w@xxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mutt/1.4.2.1i

On Mon, 01 Jul 2013 22:18:06 +0000, coderman wrote:
...
> you should assume this number will always approach anything greater
> than zero; and how do you handle a reduction? axe clients without
> prejudice?

Put new clients into the next instance of this service, formally
operated by someone else?

> better option: end-to-end only, usable privacy that is secure by
> default - the only mode is secure.  then you can publish "lawful
> intercepts" of ciphertext without risk to any users.**

Lawful intercepts also include the access metadata (which I assume to
be equally secure here), and access to the emails themselves. While
encrypted the service still has to know source and destination to
some extent.

Also, LI interception is a cost factor.

> if you're forced to cooperate with active malware explotation of
> customers through assisted MitM via your services it is time to pull
> the plug and announce while you find a sane jurisdiction.

I guess under NSLs this could be construed as publishing same,
so the NSL effectively forces you to stay in business.

Andreas

-- 
"Totally trivial. Famous last words."
From: Linus Torvalds <torvalds@*.org>
Date: Fri, 22 Jan 2010 07:29:21 -0800
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] Secure email with limited usable metadata
  - From: coderman

References:
- Re: [tor-talk] Secure email with limited usable metadata
  - From: Moritz Bartl
- Re: [tor-talk] Secure email with limited usable metadata
  - From: Praedor Tempus
- Re: [tor-talk] Secure email with limited usable metadata
  - From: coderman

Prev by Author: Re: [tor-talk] Tor Weekly News ??? July 3rd, 2013
Next by Author: Re: [tor-talk] Theft of Tor relay private keys?
Previous by thread: Re: [tor-talk] Secure email with limited usable metadata
Next by thread: Re: [tor-talk] Secure email with limited usable metadata
Index(es):
- Author
- Thread