[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Ayatana] Secure Identity Design

To: Ayatana <ayatana@xxxxxxxxxxxxxxxxxxx>, starfish-team@xxxxxxxxxxxxxxxxxxx
Subject: Re: [Ayatana] Secure Identity Design
From: Matthew Paul Thomas <mpt@xxxxxxxxxxxxx>
Date: Wed, 30 Jun 2010 09:53:11 +0100
In-reply-to: <1277146547.2956.46.camel@delen>
List-archive: <http://lists.launchpad.net/ayatana>
List-help: <https://help.launchpad.net/ListHelp>
List-id: <ayatana.lists.launchpad.net>
List-owner: <https://launchpad.net/~ayatana>
List-post: <mailto:ayatana@lists.launchpad.net>
List-subscribe: <https://launchpad.net/~ayatana>
List-unsubscribe: <https://launchpad.net/~ayatana>
Organization: Canonical Ltd
References: <1277146547.2956.46.camel@delen>
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.1.9) Gecko/20100423 Thunderbird/3.0.4

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Martin Owens wrote on 21/06/10 19:55:
>...
> Myself and a few others have been working on a concept to improve the
> functionality and ease of use of the gpg key system we use. This
> project code named starfish[1] would be hopefully something average
> users can discover and take advantage of as well as making it easier
> for us geeks to deal with.

- From what I've seen, the Seahorse developers have been quite eager to
improve its design and understandability. I suggest trying to work with
them before resorting to a replacement.

> I would really like your critique of these rough designs for the
> system:
> 
> https://wiki.ubuntu.com/Starfish/Design
> 
> I have attempted to show the workflow from not having an identity
> (published gpg key) to discovering the possibility, setting it up and
> then creating a network of trust.
>...

That's an interesting start, but it doesn't seem to cover anything
practical yet. There's nothing there, for example, about verifying that
an e-mail message came from the person it looks like, or encrypting a
chat session, or opening an encrypted file that someone has sent you.

Everything you have shown is bureaucracy -- it's the stuff you don't
really want to do, but need to do, to get those other things working.
But if you don't design the process end-to-end, you won't know how much
of that stuff is really necessary, or mundane details like what kinds of
window it should use.

So, start with some use cases and some misuse cases, and work out the
most delightful way of satisfying them or foiling them respectively. For
example:

*   Abigail finds out that she could encrypt her e-mail messages to
    Bertrand if she wanted to, and understands what this means, without
    any effort on Bertrand's part.

*   Praneeth is borrowing a friend's computer, and is chatting to Vikil
    from an Ubuntu guest session. Vikil wants to know that it's really
    Praneeth and not someone else.

*   Timon wants to send a file to Androu, Neola, and Marcus so that only
    they can read it. (How does the encryption process work? How does
    Timon come to understand that any of the recipients might still pass
    the file on unencrypted?)

*   Claudia is 15, doesn't take computers that seriously, and thinks
    it's funny to "add as a friend" anyone who asks. Derek tries to join
    her web of trust. (How does the system discourage her effectively?
    What is Ubuntu using the web of trust for in the first place?)

- -- 
Matthew Paul Thomas
http://mpt.net.nz/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAkwrBfYACgkQ6PUxNfU6ecrPbQCeMy3Knga1ZKzBPZD6/B9sXw3D
wKkAn10rqtaMZA+UznaAYvfX6ydycIeh
=I3nh
-----END PGP SIGNATURE-----

Follow-Ups:
- Re: [Ayatana] [Starfish-team] Secure Identity Design
  - From: Paul Tagliamonte

References:
- [Ayatana] Secure Identity Design
  - From: Martin Owens

Prev by Date: Re: [Ayatana] Brainstorming the Me Menu again
Next by Date: Re: [Ayatana] Updating UI issues
Previous by thread: Re: [Ayatana] [Starfish-team] Secure Identity Design
Next by thread: Re: [Ayatana] [Starfish-team] Secure Identity Design
Index(es):
- Date
- Thread