HackerTrans
TopNewTrendsCommentsPastAskShowJobs

ekr____

851 karmajoined 5 yıl önce

Submissions

Understanding Age Assurance Accuracy

educatedguesswork.org
3 points·by ekr____·geçen ay·0 comments

How not to mandate device-based age assurance

educatedguesswork.org
3 points·by ekr____·3 ay önce·0 comments

Let's build a tool-using agent

educatedguesswork.org
1 points·by ekr____·4 ay önce·0 comments

I automatically generated minutes for five years of IETF meetings

educatedguesswork.org
4 points·by ekr____·6 ay önce·0 comments

Government IDs for age assurance: from selfies to zero-knowledge proofs

educatedguesswork.org
2 points·by ekr____·9 ay önce·2 comments

comments

ekr____
·3 gün önce·discuss
No disagreement there.
ekr____
·4 gün önce·discuss
I have no opinion on ULA+NPTv6, other than Experimental doesn't mean you shouldn't use it. How else would people experiment. It does mean that the level of vetting by the IETF is potentially lower.

WRT IPv4 NAT, I'm not sure how much we can infer from the status. Many people at IETF were (and some still are) very anti-NAT, in part because they felt that IPv6 was the right solution. As a result, the IETF really avoided doing anything that looked like it was endorsing NAT, even though it's obviously just a fact of the Internet.
ekr____
·4 gün önce·discuss
In fairness, I do think that this situation is somewhat different. As I noted above (https://news.ycombinator.com/item?id=48812792), there are two main routes to an Informational RFC of this kind.

* Through the IETF

* Through the Independent Stream

The GOST documents went through the Independent Stream and therefore do not have IETF imprimateur. These documents are proposed for the IETF Stream and therefore require IETF Consensus to publish.

I know this is all super confusing. The basic problem is that the vast majority of RFCs come out of the IETF and so people often act as if all RFCs do. This is of course in part why people pursue Independent Stream publication rather than just publishing things on their own..
ekr____
·4 gün önce·discuss
This document actually is being advanced as Informational, though there are also non-IETF Informational RFCs (see upthread).
ekr____
·4 gün önce·discuss
> What’s his next step if the authors publish as an information RFC? He can’t stop that, right?

This is a slightly complicated question. There are several main routes to an Informational RFC.

* Through the IETF Stream, either through the Working Group (what is happening now) or via sponsorship by an Area Director. The former is what is happening now (this document is not up for Proposed Standard). I don't think the latter is likely to happen if TLS WG decides not to publish. If the TLS WG does decide to publish, then there are a number of steps afterward (AD review, IETF Last Call, IESG Review), plus potential avenues for appeal at some of these stages.

* Through the Independent Submissions Editor (ISE) (though in another comment wbl says that the ISE is not going to publish cryptography standards https://news.ycombinator.com/item?id=48812844). This is essentially at the sole discretion of the ISE and can't be appealed.

In either case, if the document makes it through all these gates and is eventually published as an RFC, then that's pretty much it, as RFCs aren't changed once published.
ekr____
·4 gün önce·discuss
Good question.

If the document is dropped by the IETF, nothing at all would happen. It's already a valid code point registration, and indeed the authors could have just published the document, registered the code points, and stopped (see: https://datatracker.ietf.org/doc/draft-barnes-tls-this-could...).

If the authors decided to later pick up the document somewhere else, then they could probably get the reference changed to whatever that was, as long as the semantics were identical.
ekr____
·4 gün önce·discuss
You're right. Bad writing on my part. Edited to make it clear.
ekr____
·4 gün önce·discuss
Adding a little color here... There are already code points registered for pure ML-KEM on the basis of the draft.

The hybrid code point you reference is "preliminary" in the sense that when the RFC for hybrid ECC/ML-KEM is published (it's already been approved, https://datatracker.ietf.org/doc/draft-ietf-tls-ecdhe-mlkem/), it will replace the reference in the registry. However, it will have the same code point and the same semantics. If, for some reason, the IETF were to change the semantics, a new code point would have to be assigned for interop reasons.
ekr____
·4 gün önce·discuss
> (2) The RFC at issue documents the possibility of running TLS with pure MLKEM rather than in a hybrid configuration with ECDH. Hybrid TLS is already the mainstream, documented, standardized method for using PQC in a TLS connection. Bernstein is canvassing opposition to any documentation of the possibility of pure MLKEM in TLS.

Two more pieces of context here: 1. The IETF allows code point registrations based purely on the existence of a specification, and the pure ML-KEM code points have already been assigned (https://www.iana.org/assignments/tls-parameters/tls-paramete...). The question at hand is whether the IETF will publish an RFC documenting the ML-KEM cipher suites [edited to make clear that ML-KEM is documented already].

2. It is also possible to publish an RFC via what's called "Independent Submission" (https://www.rfc-editor.org/authors/rfc-independent-submissio...), which is not subject to the IETF Consensus process. This is, for instance, how the GOST RFC (https://datatracker.ietf.org/doc/rfc9367/) was published. If the IETF opts not to publish this draft, the authors can still submit it to the Independent Submissions Editor.
ekr____
·9 gün önce·discuss
That's not really possible to explain in this space, unfortunately, but the overall idea is that there are mathematical techniques that allow you to prove that you have a valid certificate without revealing which one it is.
ekr____
·9 gün önce·discuss
This isn't correct. With ZKP-based systems even the CA can't track you. That's the "zero-knowledge" part.
ekr____
·9 gün önce·discuss
The proof is bound to a cryptographic key stored in a tamper-resistant module (as in a phone).

See https://educatedguesswork.org/posts/age-verification-id/#dev... for some more detail.
ekr____
·12 gün önce·discuss
Note that the EU is proposing to do this [0]. The ZKP part is a bit of a WIP and there have been some questions about the quality [1].

[0] https://digital-strategy.ec.europa.eu/en/faqs/eu-age-verific...

[1] https://proton.me/blog/eu-age-verification-app-hacked
ekr____
·12 gün önce·discuss
My sense is that many jurisdictions do not consider this sufficient, as they want to prevent parents from allowing their children to access restricted material (as happens fairly frequently). However, I guess we'll see.
ekr____
·12 gün önce·discuss
> You don't wind up in a database for buying alcohol.

I don't think this is a good assumption. It's not uncommon for stores to scan your ID when you buy alcohol.

> This proposal puts your name right next to the category of porn you're into, which will be a great way to coerce all those politicians into voting for the "correct" bill. Would be a shame if they found out a state senator watched porn, so maybe they'd better vote yes on the proposal.

This is not quite how typical systems are structured. Rather, the service provider outsources the age assurance to some third party Age Verification Provider (AVP), which then just returns an age estimate or a yes/no. Commonly, the AVP will have a stated policy that they don't share your identity with the client.

Obviously, you have to trust the AVP to comply with this policy, which is not ideal. There are approaches (e.g., zero-knowledge proofs) that provide some technical privacy protections, but they're not currently in wide use.

Note: this is not an endorsement of age assurance; I'm just trying to clarify the situation.
ekr____
·12 gün önce·discuss
Note that California AB1043 isn't actually age verification; rather it just requires the OS to ask for your age, not check it.
ekr____
·13 gün önce·discuss
Hence Encrypted Client Hello (https://datatracker.ietf.org/doc/rfc9849/), though deployment is still thin.
ekr____
·18 gün önce·discuss
Typically these APIs are designed so you can't make arbitrary queries, but rather there are fixed age brackets.
ekr____
·24 gün önce·discuss
RFC 10000 will not be published. They're just going to skip past the number.

https://mailarchive.ietf.org/arch/msg/tools-discuss/EpoQcVt_...

RFC #s are issued sometime before publication, so they can come out out of order. I would expect 9999, 10001, etc. to show up eventually.
ekr____
·29 gün önce·discuss
Original author here: Yeah a lot of the evergreening techniques (chiral switch, etc.) don't prevent anyone from getting the original, though of course doctors may try to switch you. The inhaler thing is double bad because of the CFC ban.

I didn't dig into the details of the fluticasone HFA switch, but my impression is that while it's obvious to replace the propellant, apparently you do need to do some engineering (e.g., on the nozzle) to make it work right. I don't know enough about what they actually had to do to know if the patent should have been granted or not.