Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Email, Messaging, and SSI/DID (再放送)

sylph01
November 19, 2020
Technology
0
1k

Email, Messaging, and SSI/DID (再放送)

@ #idcon vol.28
https://idcon.connpass.com/event/191305/

sylph01

November 19, 2020
Tweet

More Decks by sylph01

See All by sylph01
Community & RubyKaigi Showcase @ Ehime.rb Reboot Meetup
sylph01
0
91
Build and Learn Rails Authentication
sylph01
8
1.4k
DNS Encryption and Its Controversies
sylph01
0
510
Action Mailbox in Action
sylph01
1
2.6k
Keebs-n-Kaigi
sylph01
1
130
Email, Messaging, and SSI/DID
sylph01
0
700
IETF 107 Report Session: OAuth/TxAuth
sylph01
0
64
OAuth, Transactional Authorization @ IETF106
sylph01
1
460
Email in Rails (and/or introduction to "Dark Depths of Email")
sylph01
0
780

Other Decks in Technology

See All in Technology
ワイヤレス電力伝送について
sbtechnight
PRO
0
430
様々な環境へコマンドラインツールを提供する上での苦労とその対策 / YAPC::Kyoto 2023
konboi
0
2.3k
大規模レガシーテストを 倒すための CI基盤の作り方 / #CICD2023
udzura
4
1.4k
Autonomous Database - Dedicated 技術詳細 / adb-d_technical_detail_jp
oracle4engineer
PRO
1
2.4k
チームにスクラムを導入してみた
sbtechnight
PRO
0
380
就活は相談したもの勝ち
carta_engineering
0
120
“品質”をみんなのものにするために行なっている入社者オンボーディング/Onboarding new members to think about "quality" together
mii3king
0
220
量子コンピュータ時代のプログラミングセミナー / 20230316_Amplify_seminar _route_planning_optimization
fixstars
0
170
マネジメント3.0モデル入門(120分版)
takufujii
11
2.7k
可読性を高めるためのコードレビューテクニック
sbtechnight
PRO
0
470
スタートアップだからこそ考えるフロントエンドのテスト戦略
yoshinagaiwnl
4
550
Bluesky と Android / Bluesky and Android
akiomik
0
110

Featured

See All Featured
Sharpening the Axe: The Primacy of Toolmaking
bcantrill
7
670
Keith and Marios Guide to Fast Websites
keithpitt
407
21k
Java REST API Framework Comparison - PWX 2021
mraible
PRO
14
5.6k
Six Lessons from altMBA
skipperchong
15
2.4k
Robots, Beer and Maslow
schacon
154
7.4k
The Straight Up "How To Draw Better" Workshop
denniskardys
226
130k
Principles of Awesome APIs and How to Build Them.
keavy
118
16k
Testing 201, or: Great Expectations
jmmastey
25
5.8k
Distributed Sagas: A Protocol for Coordinating Microservices
caitiem20
318
19k
Reflections from 52 weeks, 52 projects
jeffersonlam
339
18k
Bash Introduction
62gerente
602
210k
How STYLIGHT went responsive
nonsquared
89
4.2k

Transcript

  1. Email, Messaging, and
    SSI/DID
    Ryo Kajiwara / sylph01
    @ #idcon, 2020/11/19, ೔ຊޠ࠶์ૹ

    View Slide

  2. ஫ҙࣄ߲
    • ͜Ε͸ͲͪΒ͔ͱ͍͏ͱҙݟද໌ͷΑ͏ͳੑ࣭ͷൃදͰ͢
    • Ұ࣌ظͷQiitaͰ͍͏ͱ͜ΖͷʮϙΤϜʯ
    • ٞ࿦ͷͨΊͷΞΠσΞग़͠Λ͢Δੑ࣭ͷ΋ͷͰ͢
    • ΑͬͯɺϓϩμΫτ΍։ൃ੒ՌͷσϞͰ͸͋Γ·ͤΜ
    • ·ͨɺٞ࿦΍લఏʹൈ͚΍݀͸༨༟Ͱଘࡏ͢Δ͸ͣͰ͢

    View Slide

  3. View Slide

  4. TL;DR

    View Slide

  5. SMTPΛ
    ΍ΊΖ

    View Slide

  6. Ͳ͏΍ͬͯ
    ΍ΊΔʁ

    View Slide

  7. View Slide

  8. ϝοηʔδϯάʹٻΊΔੑ࣭
    • End-to-End҉߸Խ
    • ࠷֤ۙࠃ͕ban͠Α͏ͱ͍ͯ͠Δͬͯʁ
    • ҉߸Խ͞Εͨάϧʔϓϝοηʔδϯά
    • σʔλͷ੍ޚ
    • identityදݱͷ੍ޚ

    View Slide

  9. Q: ͳΜͰLINE /
    Facebook Messenger /
    WhatsApp etc.͕͋Δͷ
    ʹϝʔϧͳΜ͔࢖ͬͯ
    Δͷʁ

    View Slide

  10. Q: ͳΜͰLINE / Facebook
    Messenger / WhatsApp etc.͕͋Δͷ
    ʹϝʔϧͳΜ͔࢖ͬͯΔͷʁ
    • SMTP͸े෼ͳ҉߸Խ΍ೝূΛ͍࣋ͬͯͳ͍
    • Eϝʔϧ͸௨ৗEnd-to-End҉߸ԽΛ͍࣋ͬͯͳ͍
    • PGP΍S/MIMEΛ࢖ͬͨͱ͜ΖͰάϧʔϓʹର͢Δ҉߸Խί
    ϛϡχέʔγϣϯ͸Ͱ͖ͳ͍
    • Eϝʔϧʹ͸spam͕͋Δ

    View Slide

  11. Q: ͳΜͰLINE / Facebook
    Messenger / WhatsApp etc.͕͋Δͷ
    ʹϝʔϧͳΜ͔࢖ͬͯΔͷʁ
    A: ࣄલͷ৴པؔ܎ͷͳ͍ਓ͔Β΋
    ϝοηʔδΛड͚औΔ͜ͱ͕Ͱ͖Δ

    View Slide

  12. Eϝʔϧʹ͸spam͋Δ
    ͡ΌΜʂ

    View Slide

  13. Eϝʔϧʹspam͕͋Δ
    ͷ͸ϓϩτίϧʹ૊Έ
    ࠐ·Εͨಗ໊ੑ͕ݪҼ

    View Slide

  14. Eϝʔϧͷಗ໊ੑ
    ʮࣄલͷ৴པؔ܎ͷͳ͍ਓ͔ΒϝοηʔδΛड͚औΕΔʯͱ͍͏
    ੑ࣭͸ి࿩ʹ΋͋ͯ͸·Δ͕ɺEϝʔϧʹ͸ి࿩໢ʹ͋ΔΑ͏ͳ
    anti-abuse mechanismΛ͍࣋ͬͯͳ͍ɻ͜Ε͸Eϝʔϧͷಗ໊ੑʹ
    ΑΔ΋ͷͰ͋Δɻ
    • ి࿩໢Λabuseͨ͠৔߹ٯ୳஌͕Մೳ
    • Eϝʔϧʹ͓͍ͯ͸identityͷspoofing͕༰қͰɺั·͑Δ͜ͱ͕
    ࠔ೉
    • ͱ͍͏͔Eϝʔϧʹ͸·ͱ΋ͳidentity layer͕ͳ͍

    View Slide

  15. spammer͸Eϝʔϧͷ
    ಗ໊ੑΛ࢖ͬͯѱࣄΛ
    ಇ͘

    View Slide

  16. ͦ΋ͦ΋ಗ໊ͷEϝʔϧɺཉ
    ͍͠ʁ
    ಗ໊ͷEϝʔϧ͸ߴ֬཰Ͱspamɻ
    ৽ͨʹ৴པؔ܎݁ͼ͍ͨ৔߹ಗ໊Ͱ͋Δ͜ͱʹ͍͍͜ͱ͸ͦΜͳ
    ʹͳ͍ɻ

    View Slide

  17. ͡Ό͋S/MIMEΛશҬత
    ʹ࢖͑͹͍͍ͷͰ͸ʁ

    View Slide

  18. S/MIMEͷ໰୊
    • ߴ͍
    • ൃߦ͞Εͨ༻్ʹറΒΕΔ
    • ͋Δূ໌ॻ͸ಛఆͷorganizationʹ͓͚ΔॴଐΛূ໌ͯ͘͠Ε
    Δ͔΋͠Εͳ͍͕
    • ΠϯλʔωοτͰৗʹͦͷಛఆͷ๧ࢠΛͣͬͱ͔Ϳ͍ͬͯͨ
    ͍͔ͱ͍͏ͱͦ͏Ͱ͸ͳ͍
    • ෳ਺ͷূ໌ॻ࢖͑͹͍͍͡ΌΜʁ1ߦ໨ʹ໭Δ

    View Slide

  19. ΋ͬͱυϥεςΟοΫͳղ๏:
    ϚΠφϯόʔΧʔυͷ
    ূ໌ॻͰsign͞Εͨ
    ϝʔϧͳΒࣗಈతʹड
    ͚ೖΕΔ

    View Slide

  20. ୭΋ϚΠφϯόʔʹඥ
    ෇͍ͨΞΧ΢ϯτͰ
    spamͳΜ͔͠ͳ͍Ͱ
    ͠ΐʁ

    View Slide

  21. ·͋Θ͟Θ͟SSI/DIDͷ
    ࿩ฉ͖ʹདྷΔํͳΒ͜
    ΕͷԿ͕ා͍͔͸Θ͔
    Δͱࢥ͍·͕͢

    View Slide

  22. View Slide

  23. Eϝʔϧͷself-sovereignੑ
    SMTP/POP/IMAP͸΋ͱ΋ͱself-sovereignੑΛຬͨ͢ϓϩτίϧͰ
    ͋ͬͨɻࣗ෼ͰαʔόʔཱͯΔݶΓ͸ɻ
    • ࣗ෼ͰIDΛൃߦͰ͖Δ
    • ༻్ʹԠͯ͡IDΛ࢖͍෼͚Δ͜ͱ͕Ͱ͖Δ
    • ࣗ෼ͷσʔλͷίϯτϩʔϧ͸ࣗ෼Ͱ࣋ͭ͜ͱ͕Ͱ͖Δ

    View Slide

  24. Eϝʔϧͷself-sovereignੑ
    ࠷ۙ͸୭΋ͦΜͳ͜ͱ͠ͳ͍ɻ
    • SMTP: ద੾ʹೝূ͢Δͷ͕೉͍͠ɻઃఆ1ݸͰ΋ؒҧ͑Δͱ
    spamͷ౿Έ୆ɻ
    • IMAP: ϚϧνσόΠεΞΫηεͳΒඞਢɻ͚ͩͲετϨʔδ؅ཧ
    ஍ࠈʹؕΔ
    ݁Ռɺຊདྷself-sovereignͰ͋Δ͸ͣͷϓϩτίϧͳͷ͕ͩɺதԝ
    ूݖԽΛڐͯ͠͠·ͬͨ

    View Slide

  25. Eϝʔϧͷself-sovereignੑ
    EϝʔϧͷதԝूݖԽ͸spamͷ໰୊ΛΑΓѱԽ͍ͤͯ͞Δɻதԝ
    ूݖతEϝʔϧϓϩόΠμͷspamϑΟϧλͷಈ࡞ʹे෼ͳಁ໌ੑ͕
    ͳ͘ɺѱҙͷͳ͍ϝʔϧͰ͢ΒspamϑΟϧλʹҿ·ΕΔɻதԝू
    ݖతEϝʔϧϓϩόΠμΛར༻͍ͯ͠ͳ͍ϝʔϧ͸spamϑΟϧλΛ
    ৴༻ͤ͞Δ͜ͱ͕೉͘͠ͳΓɺΑΓதԝूݖԽ͕ਐΉ
    ʢಁ໌ੑ͕͋ͬͨΒ͋ͬͨͰspamۀऀ͕ͦΕΛᷖճͯ͘͠ΔͷͰ
    Ϛζ͍ͱ͍͑͹ͦͷͱ͓Γ͕ͩ…ʣ

    View Slide

  26. "Principles of User Sovereignty /
    Fundamental Problems of Distributed
    Systems" @ IIW30
    ʮ෼ࢄγεςϜͷ๊͑Δࠜຊతͳ໰୊ΛղܾͰ͖ͳ͍ͱ͖ɺͦΕ
    ͸اۀʹΑΔதԝूݖԽ(corporate capture)ΛࣗΒڐͯ͠͠·͏ʯ
    Eϝʔϧ͸·͞ʹ͜ͷ࠷ͨΔྫͰ͋Δɻ෼ࢄγεςϜ๊͕͑Δຊ࣭
    తͳ໰୊ʹରͯ͠े෼ͳղܾ͕ͳ͞Εͳ͔ͬͨͨΊɺاۀ͸ͦ͜
    ʹϚωλΠζͷػձΛݟग़͠ɺதԝूݖԽͯ͠͠·ͬͨɻ

    View Slide

  27. "Fundamental Problems of
    Distributed Systems"
    ྫ:
    • ϊʔυͷσΟεΧόϦʔ(Eϝʔϧͷ৔߹ૹ৴ઌͷ֬ఆʹඞཁ)
    • ϊʔυ͕ωοτϫʔΫʹࢀՃ͢Δࡍͷηογϣϯͷཱ֬
    (introduction)
    • ϓϥΠόγʔ(௕ظతͳؔ࿈෇͚ͷ๧ࢠ)
    • τϥετ

    View Slide

  28. Eϝʔϧ͕digital identityͷ֩ͱͳΔ
    ͜ͱͷා͍఺
    ύεϫʔυ๨Εͨͱ͖ͷϦηοτ͸͍͍ͩͨEϝʔϧΛ௨ͯ͠ߦΘ
    Ε·͢Ͷʁ
    →Eϝʔϧ͕৐ͬऔΒΕΔͱ͋ͳͨͷΠϯλʔωοτ্ͷidentity
    ͸શͯ৐ͬऔΕ·͢ɻ
    secure messaging͕୅ସͰ͖Δ͔Ͳ͏͔͸͓͖ͯ͞ɺे෼ʹηΩϡ
    ΞͰͳ͍ϓϩτίϧ/ΤίγεςϜΛdigital identityͷ֩ͱ͢Δͷ͸
    ةݥͰ͋Γɺ୅ସΛߟ͑Δඞཁ͕͋Δɻ

    View Slide

  29. View Slide

  30. Ͳ͏ͨ͠ΒղܾͰ͖
    Δʁ

    View Slide

  31. ༧๷ઢ:
    ͜Εͬͯཁ͢ΔʹBetter
    PGPͷ࿩ͩΑͶʁ
    →஌ͬͯΔɻ

    View Slide

  32. Verifiable CredentialΛ༻͍ͨEϝʔϧ
    ֤τϥϯβΫγϣϯʢ͜͜Ͱ͸Eϝʔϧͷ΍ΓͱΓʹ૬౰͢Δʣ͝
    ͱʹҟͳΔidentityͷදݱΛ੾Γग़ͯ͠࢖͏ʹ͸Ͳ͏͢Ε͹Α͍
    ͔ʁˠಛఆͷidentityͷදݱʹରԠ͢Δverifiable credentialΛ࢖͑͹
    Α͍
    spamϑΟϧλ͸Eϝʔϧʹؔ࿈͍ͮͨVCͷਖ਼౰ੑɾ৴པ౓Λ൑ఆ
    ͢Δ

    View Slide

  33. Verifiable CredentialΛ༻͍ͨEϝʔϧ
    Կ͕خ͍͠ʁ
    • ૹ৴ऀ: ʢϝʔϧ͕ਖ਼౰ͳ༻్Ͱ͋ΔݶΓʣspamϑΟϧλʹ
    ͻ͔͔ͬΔ͜ͱ͕ݮΔ
    • ͍ͭͰʹɺৗʹެࣜͳ๧ࢠ͔Ϳͬͯͳͯ͘΋Α͍
    • ड৴ऀ: spam͕ݮΔɺ·ͱ΋ͳϝʔϧ͕ड৴ശʹೖͬͯ͘Δ
    • ͪΌΜͱͨ͠ϓϩτίϧ֦ுΛ͢Ε͹ݱࡏͷSMTPͷΤίγες
    ϜͱڞଘͰ͖Δ

    View Slide

  34. Messaging Layer Security
    https://messaginglayersecurity.rocks/
    ηΩϡΞͰinteroperableͳάϧʔϓϝοηʔδϯάͷͨΊͷϓϩτ
    ίϧΛఆٛ͠Α͏ͱ͍ͯ͠ΔIETFͷWGɻ
    End-to-End҉߸ԽΛ࣋ͭʢͦΕ͸ͦ͏ʣɺ҉߸Խάϧʔϓϝο
    ηʔδϯά͕Մೳ
    ಛఆͷϓϥοτϑΥʔϜʹ͓͚ΔID͕ඞཁ

    View Slide

  35. DIDComm
    Aries RFC 0005: DID Communication Ͱઆ໌͞Ε͍ͯΔDID Agentಉ࢜
    ͷίϛϡχέʔγϣϯϝΧχζϜɻ
    DIDCommͱ͍͏ϓϩτίϧ͕͋Δɺͱ͍͏ΑΓ΋DIDCommͷ্ʹ
    ֤ΞϓϦέʔγϣϯ͝ͱͷϓϩτίϧΛ࣮૷͢Δɺͱ͍͏΄͏͕
    ౰ͯ͸·ΔɻExplainerͰ͸˓×ήʔϜ༻ͷϓϩτίϧΛDIDCommͷ
    ্Ͱ࣮૷͍ͯ͠Δɻ

    View Slide

  36. DIDComm
    ओͳಛ௃ͱͯ͠ɺʮඇಉظɺ୯ํ޲(simplex)ͷϝοηʔδϯάͰ͋
    ΔʯʮτϥϯεϙʔτґଘੑΛ࣋ͨͳ͍(transport-agnostic)ʯ
    ʮEnd-to-end҉߸Խ͞Ε͍ͯΔʯͱ͍͏ੑ࣭͕͋Δɻ
    ૹΓઌͷൃݟ(discovery)͸DID RelationshipͷߏஙʹΑͬͯߦΘΕ
    Δɻ

    View Slide

  37. View Slide

  38. ·ͱΊ
    • Eϝʔϧͷ໰୊ͱͯ͠ʮ҉߸Խ͕े෼Ͱͳ͍ʯ͜ͱʹՃ͑ͯʮ·
    ͱ΋ͳidentity layer͕ͳ͍ʯͱ͍͏໰୊͕͋Δ
    • identity layerͷߏஙΛதԝूݖԽ͞ΕͨEϝʔϧϓϩόΠμʹ·
    ͔ͤͯ͠·͏ͱEϝʔϧͷ಺ࡏతͳself-sovereignੑΛࣦͬͯ͠
    ·͏
    • DID΍VCٕज़ͰEϝʔϧͷidentity layerΛ࡞Δ͔ɺͦ΋ͦ΋DIDʹ
    ΑΔidentity layerΛ࣋ͭϓϩτίϧͰ͋ΔDIDCommʹ৐͔ͬͬ
    ͯ͠·͏ͷ͕Α͍ͷͰ͸ʁ

    View Slide