Proposal of OpenPGP Email Validation

MFPA 2014-667rhzu3dc-lists-groups at riseup.net
Fri Jul 31 13:13:34 CEST 2015 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Hi


On Friday 31 July 2015 at 6:43:29 AM, in
<mid:55BB0B01.4020907 at gmail.com>, Viktor Dick wrote:


> On 31.07.2015 01:11, MFPA wrote:
>> Only if you download the key from the GPGTools website and find the
>> key-id first. (If the GPGTools team shows their key ID or Fingerprint
>  on their website, I failed to find it.)
> On the front page they have 'to verify the signature, please download
> and import our <updated key>' right below the download button. There is
> no fingerprint, but the whole key is there.
> But I was talking about the fact that of the six results, one has
> hundreds of signatures.

OK, you can go to a keyserver's web interface and see there are lots
of signatures there. But you cannot see that when searching the
keyserver using GnuPG, quite rightly since any signature you have not
(yet) been able to check and establish you trust it is just background
noise.



> Sure, in the web of trust concept this doesn't
> mean anything unless there is a (short) trust chain from me to one of
> these, but in practice this still significantly rises the chance that it
> is the correct key

Anybody of that opinion could be easily fooled by creating a few dozen
"fake" keys and signing one with the rest.



>> My output from searching a keyserver for
>> "gpgtools.org":-
> 'gpg --search-keys' does not seem to give a list of signatures (which
> explains why enigmail also doesn't), I was searching using a web
> interface. I guess this is because it is assumed that signatures do not
> mean anything without a trust chain.

It's a fact, not just an assumption.



> But if I had to bet money on one of
> the keys, I would still take the one with hundreds of signatures.

How much would you pay for somebody to create a few dozen "fake" keys
and sign one with the rest?



>> However, what would be different if one of the keys
>> found happened to carry one of your proposed email
>> address validation signatures?
> If I could quickly check (or rather, my client could do that
> automatically) that the signature is also found on their web page, I can
> assume that either the web page is fake (which is unlikely for something
> known like ccc.de), it has been hacked (unlikely for a random troll) or
> someone intercepted either my HTTP request or the original verification
> e-mail (possible with a secret service, unlikely with a troll).
> Therefore, it will raise my estimated probability that the owner of the
> key also has access to the mailbox, which will pretty surely now be much
> higher than for any fake key.

I guess your mail client would have to automatically check what is at
a URL given in a (self-)certification. Is that not an attack vector in
itself?

And wouldn't you have to download all the keys offered and check the
signatures in order to find the URLs to follow (or, indeed, the email
validation certificate notations)?



> The advantage with respect to the proof of work concept is that the
> procedure is asymmetric: it costs much more to troll than to verify a
> genuine key.

Could the troll not reduce the cost by using something optimised for
the task, like a Bitcoin mining box as Werner mentioned? Or farm the
cost out by using a botnet to perform the PoWs?


- --
Best regards

MFPA                  <mailto:2014-667rhzu3dc-lists-groups at riseup.net>

Hard work never killed anyone, but why take a risk?
-----BEGIN PGP SIGNATURE-----

iQF8BAEBCgBmBQJVu1hkXxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w
ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXRCM0FFN0VDQTlBOEM4QjMwMjZBNUEwRjU2
QjdDNzRDRUIzMUYyNUYwAAoJEGt8dM6zHyXwlwwIAJPFsAlAKmCQKqHTPzjFP0aW
qHVl9B7JMUPm3A5l2TXDWz3Ie64+E3P+0IoGXqMc19at4xdz6gJhm6rcEJVUkmvX
hD4q81+ie9gw4BRAIqUMlqx6pHFvDun+YpR9hnsRhyugseVJp60zjz0Su0ehb1Mm
Yn/Q4vDH/jmydGpRfJKjEE2Hqw98OJcee3PlJGo9gF/R3bdP9ZI8+9nz0XT1Tx0o
d7ZT4pII0DJ5DejnHsX4yR71RawaYNGYIuY7leP9P6B8fQg1JPIuh6VvUY/ycDGb
gaPxc7Nal5U7UywUTaK8OCGz0Lav7A23RnRKvAjOz2gaMUeE/KzhIYJUZZvSGBaI
vgQBFgoAZgUCVbtYaV8UgAAAAAAuAChpc3N1ZXItZnByQG5vdGF0aW9ucy5vcGVu
cGdwLmZpZnRoaG9yc2VtYW4ubmV0MzNBQ0VENEVFOTEzNEVFQkRFNkE4NTA2MTcx
MkJDNDYxQUY3NzhFNAAKCRAXErxGGvd45P5cAQCsXJP6dCn171lXW4OV47HNPyhR
fOG3KSxF3fTa7/1r8QEA6zn1yhpdDc+fZCWPLvkPOByW/sXY0ukJJr3lGt/maw4=
=KiYV
-----END PGP SIGNATURE-----

More information about the Gnupg-users mailing list