From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id 41E7C1384B4 for ; Mon, 28 Dec 2015 18:35:29 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 3F26821C039; Mon, 28 Dec 2015 18:35:21 +0000 (UTC) Received: from mail-ig0-f182.google.com (mail-ig0-f182.google.com [209.85.213.182]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 3144021C01F for ; Mon, 28 Dec 2015 18:35:20 +0000 (UTC) Received: by mail-ig0-f182.google.com with SMTP id to18so141833103igc.0 for ; Mon, 28 Dec 2015 10:35:20 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date:message-id:subject :from:to:content-type; bh=+3joFGkgxj3z32KdTh+Idz7rDqqm4uxKAPZsVTpLHUU=; b=0ncDmmXAdgEvdTDQudmL4tQySFihb4OHjzgv024ZI5zP1PnjetdgZOVSIBGwFhaJlK BhPZHzC+tcgGX2xMj87LddxTTVtuBeotySJIhhzievMAERu2Hv37yUAiaUoG8JqW29fs 9ATUOj73ZwjaxlidZWJrtD0awpUBumpiPhnutADxLHmT5cf764OsPKefCmkbQZ8MTfip im1kk7AYZV1leagxXTdrc7bjghNuYewAiRudfD0zkj1Tzn0POZZ8IP293qvcQedALfGH kTIdmx1kbqk5Ho0f8GkmBJjP6d+OPB8a1KAUXpHZvx8jsuRIgXESQ1TLG1S+yZH+E/bI 4G1Q== Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@lists.gentoo.org Reply-to: gentoo-dev@lists.gentoo.org MIME-Version: 1.0 X-Received: by 10.51.17.38 with SMTP id gb6mr30087871igd.75.1451327719585; Mon, 28 Dec 2015 10:35:19 -0800 (PST) Sender: freemanrich@gmail.com Received: by 10.64.225.228 with HTTP; Mon, 28 Dec 2015 10:35:19 -0800 (PST) In-Reply-To: <9AB9A178-B4A1-4493-A3A4-0B3A855E603F@gentoo.org> References: <5655EBF0.9000804@gentoo.org> <56560A11.8030700@gentoo.org> <56561851.2020900@gentoo.org> <20151228014934.e94250f4670cde139dbc7867@gentoo.org> <21A8380F-6010-4CDD-8DEF-02FA11217D21@gentoo.org> <20151228145813.40343a43@symphony.aura-online.co.uk> <9AB9A178-B4A1-4493-A3A4-0B3A855E603F@gentoo.org> Date: Mon, 28 Dec 2015 13:35:19 -0500 X-Google-Sender-Auth: QxZc4kwi9pzZ4y6RUvxe_Z0AJRw Message-ID: Subject: Re: [gentoo-dev] [RFC] New project: Crypto From: Rich Freeman To: gentoo-dev Content-Type: text/plain; charset=UTF-8 X-Archives-Salt: 5c923aa2-5a79-4171-a851-90779ca0d96f X-Archives-Hash: 9aeaea0426811339274451f412a2ea91 On Mon, Dec 28, 2015 at 10:07 AM, Kristian Fiskerstrand wrote: >> On 28 Dec 2015, at 15:58, James Le Cuirot wrote: >> >> On Mon, 28 Dec 2015 09:42:40 -0500 >> Rich Freeman wrote: > >>> And this would be why I don't bother to sign my emails any longer. >>> The FOSS world is still stuck in the days when people ran X11-based >>> MUAs and stored their mail in conventional folders. I've yet to see a >>> decent browser-based MUA or Android client which does signing. >>> Squirrelmail does, but it is really lacking compared to something like >>> Gmail. >> >> I haven't tried the feature myself but K9 Mail, which is highly >> regarded, does it via APG on Android. > > iirc k9 doesnt support PGP/MIME (RFC3156), but some interesting things happening with OpenKeychain > (https://www.openkeychain.org/k-9/ ) in that regard. We actually discussed it a bit during last OpenPGP summit in zurich. > K9 also doesn't support email tagging as far as I'm aware, and I don't believe there is a browser version of it either (I do require an MUA accessible by a browser, as this is how I compose 99% of my emails - I read this email on androids, and am replying from a browser right now). To some extent they can be forgiven for not supporting tagging, as I don't believe IMAP supports it either, so we need standards as well as FOSS clients to make it work. But, it isn't like I'm paying anybody to solve the problem, so we all make do, either living without features or without signatures as the case may be. > The main issue is key storage, though. For signatures you can use a dedicated > signing subkey, however you get in problem with encrypted emails as mobile devices > are not really secure devices and should never have cryptographic material. What could > work in this case is a NFC (or for that matter bluetooth, although it needs to be properly > paired etc etc) channel with a separate device with a separate keychain and display so > you can verify the request, and never actually expose private key material to the cellphone. That concern is hardly unique to phones. PCs suffer just as much from this problem. The solution could potentially be the same. For signing it is a straightforward problem since there is nothing to be kept secret except the key material itself (just send the message to the signing device, and return the signature back). For encryption you have additional challenges if you want to be able to make any use of the plaintext without it getting stolen - once decrypted it is only secure as any device that comes in contact with it. And there is no reason that mobile and browser frameworks couldn't talk to such devices with the right standards. If it were up to me the government would hand out signing devices just as they hand out passports. It seems kind of silly in this day and age that we haven't solved the key-management problem and half of our commerce involves giving 16-digit numbers to everybody we do business with and asking them to keep them secret for us. -- Rich