05.14.08

MLS for Thunderbird, updated

Publié dans Firefox, In English / En anglais, Informatique / Computer science tagged , , , , , , , , , , à 5:48 par yoric

A few months ago, I introduced “MLS for Thunderbird“, an on-going effort to add support for confidentiality in Thunderbird. After long months of silence, it seems that this student project, undertaken by Vincent Tarbouriech and Roland Thaisong, two Master Students in ENSI Bourges, is finally getting somewhere.

This extension interfaces with the underlying operating system (SELinux for now) to determine your security level and, if possible, that of your correspondants. If you attempt to send an e-mail to some recipient whose security level is inferior to yours, Thunderbird will warn you that a declassification is going to happen.

Multi-Layer Security for Thunderbird, prototype 1

The illustration on the left shows Thunderbird warning the user that sending this message will require declassification. The box in the lower-left corner may be used to manually ask for declassification. Obviously, some more work is needed on the actual message.

If the user decides to proceed and/or to manually declassify the message, a special header is added, to permit additional server-side checks :
Return-Path: <mls.secu@laposte.net>
Received: from murder ([unix socket]) by [...] (Cyrus
v2.2.12-Invoca-RPM-2.2.12-1.1.fc3) with LMTPA; Tue, 13 May 2008 09:20:06
+0200
X-Sieve: CMU Sieve 2.2
Received: from [...] ([...]
[194.167.30.176]) by [...] (Postfix) with ESMTP id
1A72E81DC for <[...]>; Tue, 13 May 2008 09:20:06
+0200 (CEST)
Received: from [...] (localhost [127.0.0.1]) by
[...] (Postfix) with ESMTP id 8AAA012B405 for
<[...]>; Tue, 13 May 2008 09:20:05 +0200 (CEST)
Received: from localhost.localdomain ([...] [195.221.38.254])
by [...] (Postfix) with ESMTP id 751D832983 for
<[...]>; Tue, 13 May 2008 09:20:04 +0200 (CEST)
Received: from [127.0.0.1] (labsdsp4 [127.0.0.1]) by localhost.localdomain
(8.14.2/8.14.1) with ESMTP id m4DAiDRr007599 for
<[...]>; Tue, 13 May 2008 12:44:14 +0200
Message-ID: <482970FD.6080208@laposte.net>
Date: Tue, 13 May 2008 12:44:13 +0200
From: [...]
User-Agent: Thunderbird 2.0.0.6 (X11/20071016)
MIME-Version: 1.0
To: [...]
Subject: mls
X-Message-MLS-Level: root;sysadm_r;sysadm_t;SystemLow;s6
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 8bit
[...]

The next step will be to provide that server-side treatment, as a procmail script. Stay tuned for more information.

Apporter un Commentaire