Delivery-Date: Sun, 04 Jan 2015 16:31:35 -0500
Return-Path: <tor-talk-bounces@lists.torproject.org>
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on moria.seul.org
X-Spam-Level: 
X-Spam-Status: No, score=-4.7 required=5.0 tests=BAYES_00,DKIM_SIGNED,
	RCVD_IN_DNSWL_MED,RP_MATCHES_RCVD,T_DKIM_INVALID,URIBL_BLOCKED autolearn=ham
	version=3.3.1
X-Original-To: archiver@seul.org
Delivered-To: archiver@seul.org
Received: from eugeni.torproject.org (eugeni.torproject.org [38.229.72.13])
	(using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by khazad-dum.seul.org (Postfix) with ESMTPS id BE81A1E03AF
	for <archiver@seul.org>; Sun,  4 Jan 2015 16:31:33 -0500 (EST)
Received: from eugeni.torproject.org (localhost [127.0.0.1])
	by eugeni.torproject.org (Postfix) with ESMTP id 8E2CF3304C;
	Sun,  4 Jan 2015 21:31:30 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
 by eugeni.torproject.org (Postfix) with ESMTP id 33FA132F08
 for <tor-talk@lists.torproject.org>; Sun,  4 Jan 2015 21:31:27 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at 
Received: from eugeni.torproject.org ([127.0.0.1])
 by localhost (eugeni.torproject.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id ue5RL2kaxzIk for <tor-talk@lists.torproject.org>;
 Sun,  4 Jan 2015 21:31:27 +0000 (UTC)
Received: from jbcrawford.us (jbcrawford.us [209.141.58.113])
 by eugeni.torproject.org (Postfix) with ESMTP id 0342432F06
 for <tor-talk@lists.torproject.org>; Sun,  4 Jan 2015 21:31:26 +0000 (UTC)
Received: from localhost (localhost.localdomain [127.0.0.1])
 by jbcrawford.us (Postfix) with ESMTP id DA0FB48E34BC
 for <tor-talk@lists.torproject.org>; Sun,  4 Jan 2015 14:31:23 -0700 (MST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=jbcrawford.us;
 s=mail; t=1420407083;
 bh=0h4fka09l8yiZnL0PFgcIHE07Gp3BGppuOx2qM5zRlE=;
 h=Date:From:To:Subject:References:In-Reply-To:From;
 b=XdUkD9jF796B3S3c1MzZikAgC11O1Iw8PQuJLDfsmsCMdk/KPJGY7Tpf444j2+HAm
 hGfdveb81O+RnUFj+o79bnePXNJPuArLllqYToWPy1053YoFCJ9wKqKxkzQVNEhSQq
 wQs7gFLbG/Q2Iv9fqj0vCjXL/mbKvZgRo+lCObQg=
X-Virus-Scanned: Electronictelefacsimile at jbcrawfod.us
Received: from jbcrawford.us ([127.0.0.1])
 by localhost (jbcrawford.us [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id N0HjTMzc6ZwN for <tor-talk@lists.torproject.org>;
 Sun,  4 Jan 2015 14:31:19 -0700 (MST)
Received: from [127.0.0.1] (localhost [127.0.0.1])
 (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
 (No client certificate requested)
 by jbcrawford.us (Postfix) with ESMTPSA id 8E7F748E34B9
 for <tor-talk@lists.torproject.org>; Sun,  4 Jan 2015 14:31:19 -0700 (MST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=jbcrawford.us;
 s=mail; t=1420407079;
 bh=0h4fka09l8yiZnL0PFgcIHE07Gp3BGppuOx2qM5zRlE=;
 h=Date:From:To:Subject:References:In-Reply-To:From;
 b=rIVYq8H7DC5WRYN0IP5KfKXbFfz+LjFkaGEWdLFL4lKgXszAicEN7n+Zp40qdqGJW
 pd06+oK/RM9pwNqnN0cYA7XMvZ801NIi+tdr5F9kVC+UmkPuCmgnnMx3H94DbteKpN
 XVmpWLT/Df/Gqa3/8oyoYltiixBnk3SKBFN5RoM4=
Message-ID: <54A9B125.6000400@jbcrawford.us>
Date: Sun, 04 Jan 2015 13:31:17 -0800
From: "Jesse B. Crawford" <jesse@jbcrawford.us>
MIME-Version: 1.0
To: tor-talk@lists.torproject.org
References: <54A4A69B.4020803@riseup.net>
 <20150101132852.73822cef@localhost.localdomain> <54A4C6BF.3040207@riseup.net>
 <20150101143551.00c64c7e@localhost.localdomain>
 <218CCDA8-6BB7-4C1C-B806-A1CEAB42A1C0@riseup.net>
 <20150101170451.33e950e6@localhost.localdomain> <54A59E83.1080300@riseup.net>
 <20150102104622.3e5fb008@localhost.localdomain>
 <0BE4AC7A-4DA6-4F56-8B88-9C2B93E9FC7A@riseup.net>
 <CADop2NEx22J2qGspApv588uC8o32OmS8zzV5yyek_UxtMxZGiw@mail.gmail.com>
 <CAJaLD9+M8EErJ11LRGQYrYLOf+9+8dQL6RawC+3UY-ojLd=sWQ@mail.gmail.com>
 <54A607EB.1020505@riseup.net>
 <CADop2NE5tY_97XdYY=UWfd_xvbByPqd95LW4Z8G4Q+m44n-YZQ@mail.gmail.com>
 <54A72481.5020108@torservers.net> <54A72877.6090900@veloc1ty.de>
 <54A72FFA.7090305@sky-ip.org> <54A74EBD.5070407@jbcrawford.us>
 <20150103132326.04b88929@puckey.org> <54A8C4A6.3090804@jbcrawford.us>
 <54A917E2.3010502@metaverse.org>
In-Reply-To: <54A917E2.3010502@metaverse.org>
Subject: Re: [tor-talk] Giving Hidden Services some love
X-BeenThere: tor-talk@lists.torproject.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: tor-talk@lists.torproject.org
List-Id: "all discussion about theory, design,
 and development of Onion Routing" <tor-talk.lists.torproject.org>
List-Unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
List-Archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-Post: <mailto:tor-talk@lists.torproject.org>
List-Help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-Subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: tor-talk-bounces@lists.torproject.org
Sender: "tor-talk" <tor-talk-bounces@lists.torproject.org>

On 2015-01-04 02:37, Peter Tonoli wrote:
> EV certificates don't fix any problem. The validation of a 'legal
> entity' is purely due to an agreed policy. A rogue, compromised, or
> alternate CA could release certificates with EV fields that don't
> 'rigorously' validate the organisation that applies for the certificate.

I am assuming here that users trust CAs - I think a fair assumption for
practical purposes since this is the foundation of the current
open-internet system. Fixing the problem in a general way is a much more
ambitious goal than just extending this assurance to Tor.

> Which contradicts with the point of hidden services in the first place,
> that neither party knows the others identity [1].
> 
> [1] https://www.torproject.org/docs/hidden-services.html.en

Yet organizations like Facebook, DuckDuckGo, and others that do not
intend to remain anonymous operate hidden services. Clearly there are
use cases where anonymity is not a requirement and is even undesirable.
These are probably a minority I agree, making this a small issue in the
grand scheme of things. Just one I thought worth explaining since SSL
came up.

jc
--
Jesse B. Crawford
Student, Information Technology
New Mexico Inst. of Mining & Technology

https://jbcrawford.us // jesse@jbcrawford.us
https://cs.nmt.edu/~jcrawford // jcrawford@cs.nmt.edu
-- 
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

