Re: [dix] Updated phishing requirements draft

To: Digital Identity Exchange <dix at ietf.org>
Subject: Re: [dix] Updated phishing requirements draft
From: Eliot Lear <lear at cisco.com>
Date: Thu, 29 Jun 2006 07:21:00 +0200
Authentication-results: sj-dkim-3.cisco.com; header.From=lear@cisco.com; dkim=pass ( sig from cisco.com verified; );
Dkim-signature: a=rsa-sha1; q=dns; l=877; t=1151558463; x=1152422463; c=relaxed/simple; s=sjdkim3001; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=lear@cisco.com; z=From:Eliot=20Lear=20<lear@cisco.com> |Subject:Re=3A=20[dix]=20Updated=20phishing=20requirements=20draft; X=v=3Dcisco.com=3B=20h=3DbHfn+Wi9qKEgmFr54rdZGVUfPM0=3D; b=nF7U9dy1BSHDSzrtLwOvU/Ygx1EXLcJd/0oDBavGBhOZbemhWjwmGtfYaHiDc6oVNCL+KzzH b1oaMmNQoh1KvKXZbfDw6s8Y2yrnLAjtm6STn1NGnI0ka84usGXxXcHG;
In-reply-to: <tslac7x6x98.fsf@cz.mit.edu>
List-archive: <http://www1.ietf.org/pipermail/dix>
List-help: <mailto:dix-request@ietf.org?subject=help>
List-id: Digital Identity Exchange <dix.ietf.org>
List-post: <mailto:dix@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/dix>, <mailto:dix-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/dix>, <mailto:dix-request@ietf.org?subject=unsubscribe>
References: <tslac7x6x98.fsf@cz.mit.edu>
Reply-to: Digital Identity Exchange <dix at ietf.org>
User-agent: Thunderbird 1.5.0.4 (Macintosh/20060530)

Sam,

I understand your objection to the solution depending on smart cards,
but I think it still MUST support some form of  external authentication
component - not just X.509 based smart cards.  For one, a substantial
threat is the computer itself.  If it is compromised one way to prevent
access to services is by requiring such an external authentication. 
These cards also provide a trusted UI and should be listed as a
possibility in your next section.

Furthermore, in section 4.5, (1) simply having X.509 server certificates
is not sufficient defense due to iDNS (homoglyphic?) attacks and the
like.  I think there is no perfect way to accomplish 4.5.

Section 4.6 assumes that there is a third party identity provider.  This
needn't be the case, but if it is, it is sufficient to have a name, a
nonce, and a public/private key pair, is it not?

Eliot

_______________________________________________
dix mailing list
dix at ietf.org
https://www1.ietf.org/mailman/listinfo/dix

Follow-Ups:
- Re: [dix] Updated phishing requirements draft
  - From: Sam Hartman

References:
- [dix] Updated phishing requirements draft
  - From: Sam Hartman

Prev by Date: Re: [dix] An HTTP-based solution for digital identity
Next by Date: [dix] Google Account Authorization - slightly off topic
Previous by thread: [dix] Updated phishing requirements draft
Next by thread: Re: [dix] Updated phishing requirements draft
Index(es):
- Date
- Thread

Re: [dix] Updated phishing requirements draft

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.