X.509 / PKI, PGP, and IBE Secure Email Technologies
James A. Donald
jamesd at echeque.com
Sun Dec 11 12:49:05 EST 2005
--
From: Bill Stewart <bill.stewart at pobox.com>
> The real security issue for your mother is [...] her
> bank and eBay don't cryptographically sign their mail.
And, since her bank and ebay are under massive attack
from phishers, and your mother, if she is using any of
the common email clients is using a cryptographically
enabled mail agent, why don't they sign their email?
This is exactly the attack that PKI was designed to
address.
My possibly biased answer to this question, based on my
past job as key keeper for two companies, would be that
not only can your mother not sign her stuff with PKI,
but the chairman of the board finds it even harder.
Does anyone else have war stories on this issue?
Just as big companies find it hard to write software
that does not open their servers to a cross scripting
attack, and hard to interact with their users in ways
that do not train their users to respond to phishing
attacks, and hard to write server side software that
does not rely on the behavior of client side forms, they
also find it hard to sign their email.
In the unlikely event that my mother is threatened by
man in the middle attacks, she will allow me to set up
secret key on her computer, and will follow my
instructions on how to use it, but the chairman of the
board will not, nor will the marketing department.
That is my experience - does anyone else have any
experience that differs from this, or confirms this?
And before we sneer at the chairman of the board - hands
up all programmers who failed to client and server side
disable all past cookies and issue new https and http
cookies on receiving a valid login, and all programmers
who failed to enumerate and sterilize all fields
appearing in any response.
It is not my position that inability to sign means that
the chairman of the board is stupid. It is that
cryptographic signatures are too @#$%^&* hard and need
to be made user friendly.
First write software that is easy enough for your
mother. Then we can work on making it easy enough for
the marketing department.
--digsig
James A. Donald
6YeGpsZR+nOTh/cGwvITnSR3TdzclVpR0+pr3YYQdkG
gvDLBPaNQFZ3Y0yhzmO2KnYEKGolt9E+eey2rPxE
4bGpW6AUGiMGbJFzaXJ8QcBY0HMhbypcque+5LrMd
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com
More information about the cryptography
mailing list