MSC2882: [WIP] Tempered Transitive Trust

[uhoreg]

Rendered

would fix https://github.com/matrix-org/matrix-doc/issues/1886

[tanriol]

I thought that the modern Matrix way of providing such a stream of data would be to have a special-purpose room for the user's public verifications, no? This would also solve the limited distribution problem by, for example, having an additional invite-only stream?

[uhoreg]

That would be the future-Matrix way; "*-as-rooms" is still being worked on. We may switch to that for key distribution in the future, but it's not ready for that yet, and it would be a completely separate MSC.

[Sorunome]

If you publish now signatures visible for others, the need to unpublish signatures you previously published is greater and greater. Perhaps it is a good idea to tackle that, too? Maybe in another MSC?

[uhoreg]

Yup, good point. It may make sense to include it in this MSC, but we'll see how it goes.

[Sorunome]

#2757 also introduces a new key, an event-signing key. Implementations might want to create both keys at the same time to only have to do one migration for both features.

[Sorunome]

For consistency, shouldn't the usage be called public_user_signing?

[Sorunome]

What limits, if any, does this bring?

[Sorunome]

Account data is private anyways, shouldn't signing with the event signing MSC be sufficient? Otherwise we also end in a situation that the user will have to enter their recovery passphrase on every single device every time they updated their trust model.

As only the homeserver admin could review whom bob trusts, one could argue that that isn't much of a breach as the homeserver admin sees whom bob communicates with, anyways.

[Sorunome]

What if signatures are only made public to all users of a specific homeserver?

[Sorunome]

or, if the keyword public and private are lacking, it does the fallback by key type

[Sorunome]

Fluffychat at least currently only subscribes to the device list of people you share an e2ee room with, currently.

If soru understands this correctly, this will also have to expand to all people who are part of a signature chain you want to potentially verify, is that correct?

[uhoreg]

Yes. I think this is also a limitation on the server side, where it will only send you device updates from people that you share rooms with. I should probably note that in this MSC somewhere.

It may or may not be a problem in practice since you'll want to verify people in the signature chain, which generally involves creating a DM with them.

[Sorunome]

It'll be a problem as soon as there is an additional hop: we don't only trust who bob trusts, we also trust people who bob trusts and who those trust. This MSC doesn't cover that usecase, so maybe it is enough to state this "for later".

Sorus usecase is again with a "trust management" of a company, that if you query the "trust management" keys separately and verify them somehow, without needing a DM (remember the talk / suggestion of other kind of signatures to master keys we had?) an external person can easily know who all in that company is trusted, without having to create a DM with "trust management"

[Sorunome]

Just for some clarification help:

Let's say we have a company with a trust managing team, said trust managing team signs the master key of all their employees with their public user signing key.

Now, if someone from outside the company wants to contact that company, after verifying the trust management team somehow (up to the future / a future MSC?) they can then see that the specific device was signed by trust management and trust management is valid. What they CAN'T do, though, is query all signatures that trust management made, so they CAN'T just query the entire list of employee accounts, as the signatures are attached to the device that got signed. Is that correct?

[uhoreg]

Yes. If "Trust Management" signs Alice's key, then Bob will only see that signature when he queries Alice's key. Nothing from "Trust Management" will point to Alice just by querying "Trust Management"

[Sorunome]

perhaps also a user suggesting what to trust for them, that way for e2be the bridge bot could suggest @_discord_*:example.org or something

[Sorunome]

though it might be easier to only add that once profiles-as-rooms is a thing

[uhoreg]

Yup, agreed on both points (that it would be a good feature, and that it may be better to wait for profiles-as-rooms).

[Sorunome]

Another good thing might be, again in profiles-as-rooms, define in a signed event whom all to use as trust source, too.

Example of what soru means:
A company has a trust management, with which each new employee verifies. Now, the company grows, and the need for multiple trust managements arise. So, the company sets up a "Main Trust", with sub-trust-managements for different parts., so like

    Main trust
     /        \
Trust A     Trust B

A new employee should now be able to verify with either Trust A, or Trust B. Those, in turn, say things trusted by "Main trust" are to be trusted, and "Main trust" says people trusted by both "Trust A" and "Trust B" are to be trusted.

This could be modeled by having a signed event in profile-as-room with an array of MXIDs whos transitive-trust level are to be seen the same as your own.

[erikjohnston]

I don't think we need a requirement that they both trust the middleman to mediate? If Alice wants to verify Bob via Michael, then Alice needs to trust Michael, but Bob doesn't get a say in whether Michael signs and publishes Bob's key?

[erikjohnston]

Do these need to be users? I think the common case is for these to be more organisation level stuff, e.g. a business publishing a list of signed employee keys. It would be nice to be able to support very noddy implementations that don't require a real account and client

[Sorunome]

It would be trivial to make a trust-signing-only client and making it users reduces the need to introduce a new entity which can have device keys etc.

If you are more thinking about third party signatures, that's a separate MSC: #2961

[erikjohnston]

Yeah, I guess I'm mostly just saying let's keep that use case in mind. Especially if it actually becomes the dominant use of this feature (which I think it very well might).

[erikjohnston]

I think we need to be careful here, handing out trust is quite a big deal to begin with, and doing so transitively to large degrees is going to lead to some surprising situations where someone in Alaska has accidentally verified a scammer and now I trust the scammer because I'm friends of friends of friends of someone in Alaska. I don't really think saying that you should trust who you trust really works here.

[erikjohnston]

So this actually touches on my main concern with transitive trust, and that's that verification is really the linchpin of our security model: if someone manages to break it then it opens up lots of attacks. This then leads to some competing concerns:

1. we're saying you should be really careful who you trust, and that you should trust how they handle security of their devices; and
2. we want to allow users to easily verify organisations and large groups of people at once, to avoid everyone having to manually verify each other.

Now, saying that we only trust Bob to verify on behalf of *:example.com sort of alleviates this, but a) doesn't help for groups/organisations that have users from multiple (or event just public) homeservers.

One suggestion here would be that all transitive trust are associated with a label (that the user can select, though the remote user can give a default), and every time we render that user in the app we include the label, e.g.:

or with some other wording.

If we have verified the user then we don't show a label.

[erikjohnston]

We should be explicit that we trust local verification over transitive ones, i.e. if we have verified Bob then we ignore any other claims for Bob (concretely, if a transitive user has verified a different key than we have, we should not trust the other key)

[erikjohnston]

If Bob trusts Alice to verify people, and Alice uploads new signatures, how does Bob get those updates? Do those get pushed to him?

[Sorunome]

Probably the same as with x-singing: Bob trusts alice to verify people, and alice adds a signature to....clair.

If Bob already has an open room with Clair, bob will get in his /sync that clairs device is out-of-date and re-query it, including alice new signature

[erikjohnston]

Should we add an option for a single snapshot approach? I.e. Bob can verify everyone who Alice has currently verified? That way you can a) manually see who Alice has verified (you could even have an advanced mode where you select a subset of users to copy across), and b) you don't need to worry about Alice doing something stupid later.

[Sorunome]

Isn't that an implementation detail, for when a client generates signatures of other devices directly?

[erikjohnston]

Yup, though I think its probably worth calling out explicitly as something clients can/should support

[NHAS]

This may be an entirely naive suggestion, but would it be possible limit the web of trust to spaces?

E.g admins of a space pin/add their transitive public key to the space, and people who are in the space then trust that key.

This allows for closer management of the 'web of trust', getting around the "one dude in Alaska trusts a scammer and then the whole world is now open to them".