Re: [Isms] (D)TLS question (#1): selecting a client certificate touse

To: <isms at ietf.org>
Subject: Re: [Isms] (D)TLS question (#1): selecting a client certificate touse
From: "Randy Presuhn" <randy_presuhn at mindspring.com>
Date: Fri, 3 Jul 2009 14:57:39 -0700
Delivered-to: isms at core3.amsl.com
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=dk20050327; d=mindspring.com; b=rcyZ6nOv9wl9F1T1E3iea0M70zlu1U8ClyWrhqQSmejoRhjQ1kPtaBxymXTF9yX5; h=Received:Message-ID:From:To:References:Subject:Date:MIME-Version:Content-Type:Content-Transfer-Encoding:X-Priority:X-MSMail-Priority:X-Mailer:X-MimeOLE:X-ELNK-Trace:X-Originating-IP;
List-archive: <http://www.ietf.org/mail-archive/web/isms>
List-help: <mailto:isms-request@ietf.org?subject=help>
List-id: Mailing list for the ISMS working group <isms.ietf.org>
List-post: <mailto:isms@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/isms>, <mailto:isms-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/isms>, <mailto:isms-request@ietf.org?subject=unsubscribe>
References: <sdprcls3zo.fsf at wes.hardakers.net><E6658A5CB6378B46A7F9C43757A73977044944E2 at de01exm63.ds.mot.com><sdy6r72ecc.fsf at wes.hardakers.net><E6658A5CB6378B46A7F9C43757A7397704494BE6 at de01exm63.ds.mot.com><sdfxddk863.fsf at wes.hardakers.net><004801c9fc04$913973a0$6801a8c0 at oemcomputer> <sdljn5ipen.fsf at wes.hardakers.net>

Hi -

> From: "Wes Hardaker" <wjhns1 at hardakers.net>
> To: "Randy Presuhn" <randy_presuhn at mindspring.com>
> Cc: <isms at ietf.org>
> Sent: Friday, July 03, 2009 11:37 AM
> Subject: Re: (D)TLS question (#1): selecting a client certificate touse
...
> Thanks for the opinion.  I do see advantages to having the row in the
> tlstmParamsTable be removed when the snmpTargetParamsTable is removed,
> because I think it's cleaner to do complete removal when the base config
> for anything is destroyed.
> 
> But, I'm not going to take a hard stand on it either way.  I think it'd
> work either way.  And I don't think there is a security concern with
> leaving a reference to the client side key to use around even if the
> parent row gets replaced again.

Look at it from the perspective of a management application which
provisions / performs updates to snmpTargetParamsTable.
Depending on who wrote the code and the underlying support
libraries, applications can make updates by incrementally
updating individual variables, by setting several at once, or
by deleting a row and then creating its replacement.  That
application may well be ignorant of tlstmParamsTable.

If there is no fate sharing, then none of the possible implementation
strategies could have bad side-effects.  If there is fate sharing,
then any management applications that use the delete-and-create-afresh
strategy would have the unintended side-effect of trashing entries
in the tlstmParamsTable.  I think we should avoid situations where
adding a new capability to a system requires changing the behaviour
of software that doesn't know (or care) about that capability.

> (A reference to the expected server side key, however, I'm more
> concerned with and was a future topic I was going to bring up but didn't
> want muddy the waters with more than one topic at a time)

When an application decides to stash sensitive bits here and there
in the network, it needs to take responsibility for issuing the
instructions to wipe that information when the time comes.
Anything beyond that starts entering the realm of tamper-proof
self-destruct memories.  I don't think this is substantially different
from shared keys for notifications in USM.

Randy

Follow-Ups:
- Re: [Isms] (D)TLS question (#1): selecting a client certificate touse
  - From: Wes Hardaker

References:
- [Isms] (D)TLS question (#1): selecting a client certificate to use
  - From: Wes Hardaker
- Re: [Isms] (D)TLS question (#1): selecting a client certificate to use
  - From: Donati Andrew-MGIA0477
- Re: [Isms] (D)TLS question (#1): selecting a client certificate to use
  - From: Wes Hardaker
- Re: [Isms] (D)TLS question (#1): selecting a client certificate to use
  - From: Donati Andrew-MGIA0477
- Re: [Isms] (D)TLS question (#1): selecting a client certificate to use
  - From: Wes Hardaker
- Re: [Isms] (D)TLS question (#1): selecting a client certificate touse
  - From: Randy Presuhn
- Re: [Isms] (D)TLS question (#1): selecting a client certificate touse
  - From: Wes Hardaker

Prev by Date: Re: [Isms] (D)TLS question (#1): selecting a client certificate touse
Next by Date: Re: [Isms] (D)TLS question (#1): selecting a client certificate touse
Previous by thread: Re: [Isms] (D)TLS question (#1): selecting a client certificate touse
Next by thread: Re: [Isms] (D)TLS question (#1): selecting a client certificate touse
Index(es):
- Date
- Thread

Re: [Isms] (D)TLS question (#1): selecting a client certificate touse

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.