Re: [Isms] What granularity of attributes do we need for thesecuretransport?

To: <isms at ietf.org>
Subject: Re: [Isms] What granularity of attributes do we need for thesecuretransport?
From: "Randy Presuhn" <randy_presuhn at mindspring.com>
Date: Wed, 9 Apr 2008 11:21:54 -0600
Delivered-to: ietfarch-isms-web-archive at core3.amsl.com
Delivered-to: isms at core3.amsl.com
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=dk20050327; d=mindspring.com; b=M6rtVsW5fpfnlUNjKp4d54Opav8dO1Q2mmQ4ne/3mQQZ3Wbln+vqSMZiyssVYrE9; h=Received:Message-ID:From:To:References:Subject:Date:MIME-Version:Content-Type:Content-Transfer-Encoding:X-Priority:X-MSMail-Priority:X-Mailer:X-MimeOLE:X-ELNK-Trace:X-Originating-IP;
List-archive: <http://www.ietf.org/pipermail/isms>
List-help: <mailto:isms-request@ietf.org?subject=help>
List-id: Mailing list for the ISMS working group <isms.ietf.org>
List-post: <mailto:isms@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/isms>, <mailto:isms-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/isms>, <mailto:isms-request@ietf.org?subject=unsubscribe>
References: <sd7if8pa0v.fsf at wes.hardakers.net> <001a01c8999c$22b38f40$6801a8c0 at oemcomputer> <20080409133928.GB16117 at elstar.local>
Sender: isms-bounces at ietf.org

Hi -

> From: "Juergen Schoenwaelder" <j.schoenwaelder at jacobs-university.de>
> To: "Randy Presuhn" <randy_presuhn at mindspring.com>
> Cc: <isms at ietf.org>
> Sent: Wednesday, April 09, 2008 7:39 AM
> Subject: Re: [Isms] What granularity of attributes do we need for thesecuretransport?
...
> Randy, can you check the text in <draft-ietf-isms-secshell-10.txt>?
> There is already text talking about this - if you think the text needs
> improvement, please post suggested changes.
...

You asked for it.

Existing text:
   The SSH Transport Model has no way to verify that server
   authentication was performed, to learn the host's public key in
   advance, or verify that the correct key is being used.  The SSH
   Transport Model simply trusts that these are properly configured by
   the implementer and deployer.

Add:
  Consequently, within a management domain using this transport
  model, steps outside the scope of this document MUST be taken
  to ensure that all systems within that domain have indeed been
  correctly implemented, deployed, and configured, and that those
  configurations cannot be modified in inappropriate ways.

That might be the intent of the following sections in the security
considerations section, but I must admit that they leave me with the
feeling of relying on "and then a miracle occurs", even with the level
of detail that's there.  Perhaps it's just the sheer number of assumptions.
But others in this thread have articulated those issues more clearly.

Randy

_______________________________________________
Isms mailing list
Isms at ietf.org
https://www.ietf.org/mailman/listinfo/isms

Follow-Ups:
- Re: [Isms] What granularity of attributes do we need for thesecuretransport?
  - From: Juergen Schoenwaelder

References:
- Re: [Isms] What granularity of attributes do we need for the securetransport?
  - From: Wes Hardaker
- Re: [Isms] What granularity of attributes do we need for the securetransport?
  - From: Randy Presuhn
- Re: [Isms] What granularity of attributes do we need for the securetransport?
  - From: Juergen Schoenwaelder

Prev by Date: Re: [Isms] What granularity of attributes do we need for the secure transport?
Next by Date: [Isms] review of draft-ietf-isms-radius-usage
Previous by thread: Re: [Isms] What granularity of attributes do we need for the securetransport?
Next by thread: Re: [Isms] What granularity of attributes do we need for thesecuretransport?
Index(es):
- Date
- Thread

Re: [Isms] What granularity of attributes do we need for thesecuretransport?

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.