Return-Path: X-Original-To: apmail-incubator-ooo-dev-archive@minotaur.apache.org Delivered-To: apmail-incubator-ooo-dev-archive@minotaur.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id DCF6599DE for ; Sat, 24 Mar 2012 13:28:24 +0000 (UTC) Received: (qmail 90174 invoked by uid 500); 24 Mar 2012 13:28:24 -0000 Delivered-To: apmail-incubator-ooo-dev-archive@incubator.apache.org Received: (qmail 90117 invoked by uid 500); 24 Mar 2012 13:28:24 -0000 Mailing-List: contact ooo-dev-help@incubator.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: ooo-dev@incubator.apache.org Delivered-To: mailing list ooo-dev@incubator.apache.org Received: (qmail 90109 invoked by uid 99); 24 Mar 2012 13:28:24 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Sat, 24 Mar 2012 13:28:24 +0000 X-ASF-Spam-Status: No, hits=-0.0 required=5.0 tests=SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: domain of dennis.hamilton@acm.org designates 216.119.133.2 as permitted sender) Received: from [216.119.133.2] (HELO a2s42.a2hosting.com) (216.119.133.2) by apache.org (qpsmtpd/0.29) with ESMTP; Sat, 24 Mar 2012 13:28:16 +0000 Received: from 71-217-30-179.tukw.qwest.net ([71.217.30.179] helo=Astraendo) by a2s42.a2hosting.com with esmtpa (Exim 4.69) (envelope-from ) id 1SBR0d-000O6O-Jq for ooo-dev@incubator.apache.org; Sat, 24 Mar 2012 09:27:55 -0400 Reply-To: From: "Dennis E. Hamilton" To: References: <4F672B1E.5050401@googlemail.com> <4F6731C1.30502@cfl.rr.com> <4F673912.8070504@googlemail.com> <4F6C54C1.8080100@a-w-f.de> <4F6CC04C.6060104@cfl.rr.com> <011101cd0932$d5faca50$81f05ef0$@acm.org> In-Reply-To: Subject: RE: [RELEASE,CODE]: Bug 119090 - Default Encryption Fails for Down-Level Implementations Date: Sat, 24 Mar 2012 06:28:03 -0700 Organization: NuovoDoc Message-ID: <006801cd09c1$f140db30$d3c29190$@acm.org> MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable X-Mailer: Microsoft Outlook 14.0 Thread-Index: AQMQ+hhS+KDgpe9TgY60RZGXpgI5/wIfSeokAnfRMeECelzICwGOzbPaAYOE1RkDWlr165OFmh4w Content-Language: en-us X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - a2s42.a2hosting.com X-AntiAbuse: Original Domain - incubator.apache.org X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12] X-AntiAbuse: Sender Address Domain - acm.org X-Virus-Checked: Checked by ClamAV on apache.org Rob, 1. It is absurd to make headway to strengthen security without = addressing the weakest links first. When has that ever been a design = principle?=20 2. The proposal is not to abandon AES but to not make it the default. = Folks for whom AES is imperative can elect it. Packagers in enterprises = can even configure it. If it is as easy as claimed, why do this instead = of a silent, forced change that causes the most pain to the = least-expert? 3. To address a check-off item without addressing the actual security = situation and what is achieved in actual context brands us as the = amateurs. For me, it is an ethical issue I can't step over as a = computer-system professional. (The fact that I can see this much as an = amateur document-security wonk is an indication of how fragile, and = amateurish, the security of ODF document encryption is.) - Dennis -----Original Message----- From: Rob Weir [mailto:robweir@apache.org]=20 Sent: Friday, March 23, 2012 17:32 To: ooo-dev@incubator.apache.org Subject: Re: [RELEASE,CODE]: Bug 119090 - Default Encryption Fails for = Down-Level Implementations On Fri, Mar 23, 2012 at 4:23 PM, Dennis E. Hamilton [ ... ] Yes, security is only as strong as the weakest link. But that is an argument for improving all the links. It is not an argument for undoing improvements that have already been made to some of the links. We're not required to refurbish the battleship all in one day. We can work deck-by-deck. The advantage of AES is that it is a known quantity, a standard, and is called out as a requirement for government procurement in several countries, including the US. [ ... ]