CURRENT_MEETING_REPORT_


Reported by Steve Kent/BBN

Minutes of the Privacy Enhanced Mail Working Group (PEM)

The PEM Working Group met at the 26th IETF, with approximately 45
attendees.  The meeting began with a status update.  It was noted that
the PEM RFCs were published in February as Proposed Standards.  The
TISPEM implementation has been available for awhile and a revised
version, with improved documentation and CRL support, will become
available in April.  Plans are underway to transition TISPEM from use of
BSAFE to RSAREF for cryptographic algorithms and to make installation
easier, especially for single- user systems.  Plans for easier
distribution of TISPEM, perhaps via anonymous FTP with suitable export
control warnings, are also under review.

PEM implementations will soon become available in the United Kingdom and
Germany as a result of work under the EC PASSPORT program.  Testing of
these implementations is taking place with the TISPEM and other PEM
implementations.  An authentication-only (MIC-ONLY and MIC-CLEAR)
version will be available from University College London (UCL) to
facilitate international distribution.  A full PEM (including
encryption) implementation is expected to be available via anonymous FTP
in Germany.

RSADSI noted that an updated PEM toolkit will be available for testing
this summer.  RSADSI announced that a ``commercial assurance PCA,'' was
suitable for use in a variety of high assurance environments.  It was
noted that users of Apple's OCE will be registered under this PCA.
RSADIS also announced the creation of a ``low assurance'' PCA with two
classes of CAs.  One class is a for CAs suitable for support of testing,
and these CAs can be registered at no cost now and at a minimal cost in
the future.  A Persona CA, operated as an automated responder, soon will
be instantiated under this PCA, providing free certificates with
unauthenticated names.

Trusted Information Systems (TIS) announced that it was planning to
operate a ``medium assurance'' PCA and had developed a draft policy
statement.  UCL observed that it was planning to become a PCA and wished
to examine the PCA statements from TIS and RSADSI in order to get a
better understanding of the form of such statements.

In addition to providing its TISPEM status update, TIS introduced two
discussion topics:  use of mailbox names, (rather than distinguished
names), in certificates and relaxing the certification hierarchy
constraints.  It was suggested that Domain Name System (DNS) names could
be encoded in X.509 certificate format by creating a new attribute, the
value of which would be a DNS mailbox name.  An alternative suggestion
was put forth to represent a mailbox name as a sequence of AVAs, each
corresponding to one component of a DNS name (plus the user name).
Several motivations for this proposal were provided, including:

                                   1





   o It permits a user to become a PEM user more easily as it does not
     require the user to determine his distinguished name

   o It allows a user to employ his existing mailbox name for
     authentication.


It was observed that this naming proposal is not likely to scale as well
as the use of true distinguished names nor does it provide users with
authenticated, descriptive identifiers.  It was suggested that the use
of DNS names in certificates might facilitate storage of certificates in
the DNS, but this claim was not substantiated.

TIS also suggested that it would be appropriate to consider relaxing the
current certification system.  The motivations cited here included a
desire to facilitate the deployment of PEM to users not connected to the
Internet and to incorporate trust models not accommodated by the current
certification system.  No specific, detailed proposals were put forth,
but TIS announced plans to make material available later.  It was
observed that if the current certification path validation rules are
substantially relaxed, the result may be a system with functionality no
better than systems such as PGP.

PEM and MIME Integration

The rest of the meeting was devoted to a discussion of the integration
of PEM and MIME. The proposal put forth by the MIME Working Group Chair
was to formally supersede RFC1421 with a specification for PEM which
requires a minimal MIME implementation.  The requirements for a
minimally compliant MIME mailer, from both submission and delivery
perspectives was presented.  Changes required relative to existing PEM
processing includes recognition of static MIME header fields, adding the
quoted-printable transformation, generation and parsing of multipart and
text content types, support of ISO 8859-n character sets, and support
for parameterized boundary markers (not compatible with the current PEM
boundary markers).

There were some strong objections to this proposal, on several grounds.
For example, the MIME-PEM specification is not yet complete and there
are a number of details in the currently published MIME-PEM
specification which are contentious (e.g., the use of inband markers for
local control of PEM submission processing and delivery indication of
applied PEM processing), so a gap of six or more months would result if
deployment 822-PEM implementations were discouraged or halted until
MIME-PEM is available.  Also, this proposal would disenfranchise
non-MIME users, which was viewed as an unacceptable result.  Other
attendees argued that they would not consider implementing 822- PEM and
would wait for MIME-PEM because of a desire to support only MIME users.

There was general agreement that it would be advantageous for users to
migrate to MIME-PEM. There was little or no support for the concept of
requiring gateways to translate between 822- PEM and MIME-PEM users.
Thus an outstanding question is whether there is any way to provide

                                   2





interoperability between 822-PEM and MIME-PEM users with minimal changes
to 822-PEM and/or minimal extensions to MIME-PEM. A related question is
the extent to which MIME-PEM can be profiled for 822 users, to minimize
the burden for such users.

The Working Group agreed that revision of the MIME-PEM specification
should be aggressively pursued with the intent that the revised
specification should be thoroughly reviewed prior to the next IETF
meeting in Amsterdam, when the PEM Working Group will meet.  In
parallel, an examination of options for 822-PEM and MIME-PEM
interoperability, e.g., minor 822-PEM revisions and suitable profiling
of MIME-PEM for use with text-only messages, will be undertaken.

Attendees

Harald Alvestrand        Harald.Alvestrand@delab.sintef.no
Jules Aronson            aronson@nlm.nih.gov
Richard Bjers            rich.bjers@uc.edu
Nathaniel Borenstein     nsb@bellcore.com
Sandy Bryant             slb@virginia.edu
John Campbell            jrcamp@nosc.mil
William Chung            whchung@watson.ibm.com
Steve Dusse              spock@rsa.com
Antonio Fernandez        afa@thumper.bellcore.com
Michael Fidler           fidler@mitre.org
Barbara Fraser           byf@cert.org
Ned Freed                ned@innosoft.com
Raphael Freiwirth        5242391@mcimail.com
James Galvin             galvin@tis.com
Christine Garland        garland@ihspa.att.com
Jisoo Geiter             geiter@mitre.org
Terry Gray               gray@cac.washington.edu
Richard Harris           rharris@atc.boeing.com
Gerd Holzhauer           holzhauer1@applelink.apple.com
Alton Hoover             hoover@ans.net
Christian Huitema        christian.huitema@sophia.inria.fr
David Katinsky           dmk@pilot.njin.net
Charles Kaufman          kaufman@zk3.dec.com
Stephen Kent             kent@bbn.com
Peter Kirstein           P.Kirstein@cs.ucl.ac.uk
Jim Knowles              jknowles@binky.arc.nasa.gov
John Linn                linn@gza.com
Kent Malave              kent@bach.austin.ibm.com
Bob Morgan               morgan@networking.stanford.edu
Noel Nazario             nazario@sdns.ncsl.nist.gov
Emmanuel Pasetes         ekp@enlil.premenos.sf.ca.us
Bradley Rhoades          bdrhoades@mail.mmmg.com
April Richstein          amr@tycho.ncsc.mil
Gary Rowe                gjrowe@attmail.com
Jeffrey Schiller         jis@mit.edu
Wolfgang Schneider       schneider@gmd.de
Einar Stefferud          stef@nma.com
Stuart Stubblebine       stubblebine@isi.edu

                                   3





Louisa Thomson           louisa@whitney.hac.com
Klaus Truoel             truoel@gmd.de
Theodore Ts'o            tytso@mit.edu
Gregory Vaudreuil        gvaudre@cnri.reston.va.us
Chuck Warlick            warlick@theophilis.nsfc.nasa.gov
James Weatherford        weatherf@nosc.mil



                                   4