Re: Review of draft-hartman-webauth-phishing-05

To: Eric Rescorla <ekr at networkresonance.com>
Subject: Re: Review of draft-hartman-webauth-phishing-05
From: Eliot Lear <lear at cisco.com>
Date: Sat, 18 Aug 2007 07:25:14 +0200
Authentication-results: ams-dkim-1; header.From=lear@cisco.com; dkim=pass (s ig from cisco.com/amsdkim1002 verified; );
Cc: ietf at ietf.org, iesg at ietf.org
Dkim-signature: v=0.5; a=rsa-sha256; q=dns/txt; l=1868; t=1187414745; x=1188278745; c=relaxed/simple; s=amsdkim1002; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=lear@cisco.com; z=From:=20Eliot=20Lear=20<lear@cisco.com> |Subject:=20Re=3A=20Review=20of=20draft-hartman-webauth-phishing-05 |Sender:=20; bh=sViva01GXHauibfphPhoiofXF2dAw4b0YlZlanYGG4U=; b=ob3De8KFlcqvr8FGVW7sNJtwPoHtrrZ3fKPD9hnAjiWo55GQM9JyKS8cLRLVdD4XetTB+gq1 sjhgEkdl+oFnEhrZbuwiYbVw6NAiJQ9AyKtpEDA2KNeh9C92aOW8Azxj;
In-reply-to: <20070817171724.005EE33C23@delta.rtfm.com>
List-help: <mailto:ietf-request@ietf.org?subject=help>
List-id: IETF-Discussion <ietf.ietf.org>
List-post: <mailto:ietf@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
References: <20070817171724.005EE33C23@delta.rtfm.com>
User-agent: Thunderbird 2.0.0.6 (Macintosh/20070728)

Hi Eric,

I have one overall comment and one specific comment on your comments ;-)

The overall comment is that we need a starting point to improve HTTP. Sam's draft seems to me at least a stake in the ground from which to work with. I'm all for the document being improved. It would be helpful if you could suggest changes to the text to do that. I realize that's a lot more work, but I think we really can put a huge dent in phishing, and we don't need to wait around for academia on this one. The IETF needs to address areas where protocols are currently unable to support secure authentication methods.

S 4.1.
A solution to these requirements MUST also support smart cards and other authentication solutions. Some environments have security requirements that are strong enough that passwords simply are not a viable option.

This seems premature. Moreover, it again confuses interface with protocol. To take an example, SRP can be used perfectly well with smartcards: you do the client-side computation on the smartcard. Pretty much any password-based solution can be ported to smartcards simply by placing the password on the card. Calling out smartcards in particular is also way too specific.

I think perhaps we have a terminology issue. By password, I think Sam means those things people type into UIs. By smartcards I think he means something that does it for you in some secure way not specific to the IEEE standard. The major point that Sam is calling out, and he is doing so at my urging, is that we need to be able to support a solution where the authentication component is separate from the host operating system, yet having a secure communication channel from end to end. This may need to be wordsmithed but that's the intent.

Thanks,

Eliot

_______________________________________________
Ietf mailing list
Ietf at ietf.org
https://www1.ietf.org/mailman/listinfo/ietf

Follow-Ups:
- Re: Review of draft-hartman-webauth-phishing-05
  - From: Eric Rescorla

References:
- Review of draft-hartman-webauth-phishing-05
  - From: Eric Rescorla

Prev by Date: Re: IPv6 addresses really are scarce after all
Next by Date: Re: Review of draft-hartman-webauth-phishing-05
Previous by thread: Review of draft-hartman-webauth-phishing-05
Next by thread: Re: Review of draft-hartman-webauth-phishing-05
Index(es):
- Date
- Thread

Note Well: Messages sent to this mailing list are the opinions of the senders and do not imply endorsement by the IETF.

Re: Review of draft-hartman-webauth-phishing-05

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.