The document discusses Trustedbird, an open source secure email client based on Mozilla Thunderbird. It was created by the French Ministry of Defense to provide security features for the military, industry, and government. Trustedbird provides services like encrypted signatures, secure headers, multiple LDAP directory support, and an extended email format called XIMF that allows custom headers for security classification and project identification. A demonstration showed features of signed and encrypted emails using Trustedbird. The conclusion discusses plans for Trustedbird to be integrated into more French government systems and to contribute patches to Thunderbird where possible.
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Trusted bird mozilla - dgami - fossa2010
1. .
French Ministry of Defense - DGA
Laurent CAILLEUX
MINISTÈRE DE LA DÉFENSE
DGA MI 2010 Diapositive N°1
2. Introduction
Why Trustedbird ?
What is Trustedbird ?
Services provided by Trustedbird
Demonstration
Conclusion
MINISTÈRE DE LA DÉFENSE
DGA MI 2010 Diapositive N°2
3. Why Trustedbird ?
Main goals
Initiate an open source community
Mail client for the military, industry,
administration and civilian environments
PEA Project (PEA COMLL)
Participants
MINISTÈRE DE LA DÉFENSE
DGA MI 2010 Diapositive N°3
4. What is Trustedbird ?
Trustedbird is a secure mail client
TrustedBird is based on Thunderbird
Trustedbird is open source
All modules are distributed under free software
licenses
MPL version 1.1+,
GPL version 2+
LGPL version 2.1+
Trustedbird is cross platform
Trustedbird is based on
Open standards
IETF Standards (RFC)
MINISTÈRE DE LA DÉFENSE
DGA MI 2010 Diapositive N°4
5. TrustedBird - roadmap
Start of project (2006)
State of the art
Definition of technical and functionnal scope
Validation of the military requirements
Study of messaging clients
Mozilla Thunderbird
Study of different types of licenses
MPL 1.1+, GPL 2+, LGPL 2.1+
On january 2007, first developments
MINISTÈRE DE LA DÉFENSE
DGA MI 2010 Diapositive N°5
6. TrustedBird - roadmap
First release on may 2007, version 0.1
Mail client, MDN, DSN, basic functionality
Milimail
Second release on july 2008, version
provided with security extensions
On march 2009
TrustedBird
Specifications of the latest features
On october 2010, final release
MINISTÈRE DE LA DÉFENSE
DGA MI 2010 Diapositive N°6
7. Services provided by Trustedbird
2 modes of development:
Patchs
Add-ons
Services
Security services
Security label
request receipts
SASL external
Secure headers
Directory services (Multi LDAP, Directory contact tabs …)
Notification services (DSN, MDN with deletion receipt)
Advanced format services (XIMF)
Others services
MINISTÈRE DE LA DÉFENSE
DGA MI 2010 Diapositive N°7
8. Services provided by TrustedBird –
Secure headers
Secure headers
Extension of S/MIME
Work of DGA MI
Headers
Signature of
body part
and headers
Body fields
Signature
SMIME + Secure
headers
MINISTÈRE DE LA DÉFENSE
DGA MI 2010 Diapositive N°8
9. Services provided by TrustedBird - XIMF
eXtended Internet Message Format
XIMF = Engine + instance(s)
XIMF instance = Exchange format + forms
XML
technology Use of customs forms
Instances Engine Instances Engine
XIMF message
Sender Recipient
MINISTÈRE DE LA DÉFENSE
DGA MI 2010 Diapositive N°9
10. Services provided by TrustedBird - XIMF
Custom header fields
Use of XIMF and secure headers
Work of DGA MI
From: Org1 <Org1@example.fr> From: Org1 <Org1@example.fr>
To: Org2 <Org2@example.fr> To: Org2 <Org2@example.fr>
Subject: Ceci concerne le projet Theos Subject: Ceci concerne le projet Theos
Date: Thu, 22 Oct 2009 17:01:28 +0200 Date: Thu, 22 Oct 2009 17:01:28 +0200
Message-ID: <FDA72FF60379E588@example.fr> Message-ID: <FDA72FF60379E588@example.fr>
X-XIMF-Version: 2.0
Pouvez vous, SVP, …….. X-XIMF-Instance: Ent1V1
. X-XIMF-Primary-Precedence: priority
X-XIMF-Correspondence-Type: official
X-XIMF-Security-Policy-Identifier: 1.3.28.0.0.5.1
X-XIMF-Security-Classification: CONFIDENTIAL
X-XIMF-Project: THEOS
X-XIMF-Attribution-Key-Word: PROJECT
Pouvez vous, SVP, ……..
.
IMF message XIMF message
MINISTÈRE DE LA DÉFENSE
DGA MI 2010 Diapositive N°10
11. Demonstration
Demonstration environment Windows client
Windows client Virtualized Linux server
Virtualized Linux server
Postfix
Postfix
Trustedbird 3.1.5 Cyrus IMAP
Cyrus IMAP
OpenLDAP
OpenLDAP
OpenSSL
OpenSSL
S/MIME signature
Secure headers Trustedbird 3.1
Trustedbird 3.1
XIMF,
Multi LDAP
Thunderbird 3.1.5
Scenarios
signed message and verification
signed message with secure headers
signed XIMF message with secure headers
Access to multiple LDAP servers
MINISTÈRE DE LA DÉFENSE
DGA MI 2010 Diapositive N°11
13. Conclusion and future
Concept of toolbox
Feedback of open source community management
Trustedbird will be the messaging client of several
french MoD systems
Integration of patchs in the future release of
Thunderbird (if possible) to avoid a fork
Some components are already used in ministries
Companies integrate TrustedBird in their solutions
http://www.trustedbird.org
MINISTÈRE DE LA DÉFENSE
DGA MI 2010 Diapositive N°13
14. Thank you for your attention
Questions
MINISTÈRE DE LA DÉFENSE
DGA MI 2010 Diapositive N°14