From: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
To: Notmuch Mail <notmuch@notmuchmail.org>
Subject: Easing access to the cryptographic envelope
Date: Wed, 24 Apr 2019 14:31:09 -0400 [thread overview]
Message-ID: <20190424183113.29242-1-dkg@fifthhorseman.net> (raw)
E-mail structures are potentially arbitrarily complicated.
Cryptographic protection standards like S/MIME and OpenPGP or PGP/MIME
are often applicable to some elements of some messages.
Last year's "E-Fail" attacks made it clear that trying to provide
normal users with cryptographic protections on piecemeal parts of an
e-mail message is a recipe for disaster, both from an implementation
perspective and a user experience perspective.
I've argued in more detail at [0] about the need to treat
cryptographic protections at the message level, rather than at the
subpart level.
[0] https://dkg.fifthhorseman.net/blog/e-mail-cryptography.html
This series makes "notmuch show" track and emit message-wide
cryptographic state, providing an interface that simple clients that
use "notmuch show" can rely on for their UI and UX.
It doesn't yet apply this layer to the emacs interface, because at the
moment many users of the emacs interface are nerds who are as likely
to understand the intricacies of MIME structure as anyone, and for the
moment, just augmenting the notmuch show schemata in a sensible way is
enough of a chunk to bite off.
(though i'd be happy to review and support the use of this
per-message cryptographic state in notmuch-emacs if/when this lands!)
I'd appreciate any review and feedback!
Regards,
--dkg
next reply other threads:[~2019-04-24 18:31 UTC|newest]
Thread overview: 5+ messages / expand[flat|nested] mbox.gz Atom feed top
2019-04-24 18:31 Daniel Kahn Gillmor [this message]
2019-04-24 18:31 ` [PATCH 1/4] util/crypto: _notmuch_message_crypto: tracks message-wide crypto state Daniel Kahn Gillmor
2019-04-24 18:31 ` [PATCH 2/4] cli: expose message-wide crypto status from mime-node Daniel Kahn Gillmor
2019-04-24 18:31 ` [PATCH 3/4] mime-node: track whole-message crypto state while walking the tree Daniel Kahn Gillmor
2019-04-24 18:31 ` [PATCH 4/4] cli/show: emit new whole-message crypto status output Daniel Kahn Gillmor
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
List information: https://notmuchmail.org/
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20190424183113.29242-1-dkg@fifthhorseman.net \
--to=dkg@fifthhorseman.net \
--cc=notmuch@notmuchmail.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
Code repositories for project(s) associated with this public inbox
https://yhetil.org/notmuch.git/
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).